Great website, via @sarahalsherif

https://tech-litigation.com/

detailing lots of case law on automated decision making

"The Court of Appeals for the Ninth Circuit, which covers California and most of the Western U.S., just delivered good news for digital privacy: abandoning a phone doesn’t abandon your Fourth Amendment rights in the phone’s contents. In United States v. Hunt, the court made clear that no longer having control of a device is not the same thing as surrendering the privacy of the information it contains. As a result, courts must separately analyze whether someone intended to abandon a physical phone and whether they intended to abandon the data stored within it. Given how much personal information our phones contain, it will be unlikely for courts to find that someone truly intended to give up their privacy rights in that data."

https://www.eff.org/deeplinks/2025/09/appeals-court-abandoned-phones-dont-equal-abandoned-privacy-rights

"Now, Ireland has officially announced that it hands over the Chair of the DPC to a US Big Tech lobbyist that defended Meta in a time where it was involved in the "Cambridge Analytica" scandal or when it got a € 390 million fine over not collecting consent from users or a € 1.2 billion fine over illegally transferring personal data to the US, where such data is used by the US secret services. These cases are right now on appeal between the DPC and Meta - where Mrs Sweeney will now switch from defending Meta to managing the regulator that pursues these cases.

Max Schrems: "We now literally have a US big tech lobbyist policing US big tech for Europe. For 20 years, Ireland did not actually enforce EU law, but at least they had enough shame to undermine enforcement secretly."

Ireland officially kisses US Big Tech's Ass. The announcement by the Irish governemnt follows a US playbook, where merely pleasing Big Tech or the Republican agenda behind the scenes is not sufficient anymore. US Big Tech and the Trump Administration now demands that such pleasing is done publicly and officially. In a way this may be "more honest" but also marks a U-turn, where politicians where at least ashamed of such dealings and tried to camouflage them in the public."

https://noyb.eu/en/former-meta-lobbyist-named-dpc-commissioner-meta-now-officially-regulates-itself

"The Mexican government passed a package of outrageously privacy-invasive laws in July that gives both civil and military law enforcement forces access to troves of personal data and forces every individual to turn over biometric information regardless of any suspicion of crime.

The laws create a new interconnected intelligence system dubbed the Central Intelligence Platform, under which intelligence and security agencies at all levels of government—federal, state and municipal—have the power to access, from any entity public or private, personal information for “intelligence purposes,” including license plate numbers, biometric information, telephone details that allow the identification of individuals, financial, banking, and health records, public and private property records, tax data, and more.

You read that right. Banks’ customer information databases? Straight into the platform. Hospital patient records? Same thing.

The laws were ostensively passed in the name of gathering intelligence to fight high-impact crime. Civil society organizations, including our partners RD3 and Article 19 Mexico, have raised alarms about the bills—as R3D put it, these new laws establish an uncontrolled system of surveillance and social control that goes against privacy and free expression rights and the presumption of innocence."

https://www.eff.org/deeplinks/2025/09/mexican-allies-raise-alarms-about-new-mass-surveillance-laws-call-international

*** 𝟰𝟳𝘁𝗵 𝗚𝗹𝗼𝗯𝗮𝗹 𝗣𝗿𝗶𝘃𝗮𝗰𝘆 𝗔𝘀𝘀𝗲𝗺𝗯𝗹𝘆 - 𝗖𝗹𝗼𝘀𝗲𝗱 𝘀𝗲𝘀𝘀𝗶𝗼𝗻 ***

Today, we participate in the closed session of the #GPASeoul, a moment dedicated to members and observers of the Global Privacy Assembly to exchange best practices, discuss ongoing developments and set priorities on pressing challenges in the field of data protection and artificial intelligence.

Olivier Matter, Head of International Cooperation at the EDPS, reported on the activities of the Council of Europe, where the EDPS represents the GPA in the meetings of the Consultative Committee of Convention 108.

He underlined the importance of ensuring that the actions of these fora mutually reinforce one another, contributing to efforts towards normative convergence and the establishment of international standards for the effective protection of human rights, in particular the rights to privacy and data protection.
#GPA25 #dataprotection #internationalcooperation

This is fine.

"Phones in the data could be tracked back to specific residential addresses after entering high-security prisons, military bases, and Leinster House, as well as sensitive locations like health clinics and mental health facilities."

https://www.rte.ie/news/primetime/2025/0918/1534034-security-concern-as-tens-of-thousands-of-phone-locations-for-sale/

By Kate McDonald, Aaron Heffernan, Kristo Mikkonen, and Katie-Marie Murnane for Prime Time (#RTÉPT) on RTÉ.

Fox has been named Head of the Hen House in #Ireland.

https://www.irishtimes.com/business/2025/09/17/ex-tech-lobbyist-named-to-data-protection-commission/

#DataProtection #privacy #GDPR #Meta #lobbying #facebook #RevolvingDoor cc @lobbyctrl_tech @corporateeurope

"Question. For many years, you’ve been trying to get U.S. technology companies to process the data of European citizens according to EU standards. Is that possible with Trump in the White House?

Answer. A legal system has to be stable precisely in situations where you have a crazy president. If everyone were nice and friendly, we wouldn’t need laws. A big issue is how much the whole data economy has become part of this trade war. One of the only things that Europe can retaliate [against] is going to be the digital industry. It’s one of the things where [Americans] make shitloads of money. It’s the financial industry, digital industry… and that’s about it.

The [EU] Commission just fined Meta and Apple… and the former responded with a very Trumpian press release, saying, “Oh, this is a tariff.” You broke the law and you knew you were doing it, so now you can’t just say it’s a tariff. It’s like someone driving their Porsche at 180 miles an hour and, when they get fined, they say, “Oh, you just hate rich people.”

Q. Is the European Commission right to fine two tech giants in the middle of a tariff war?

A. The EC is taking things slowly, because it doesn’t want to be the first to throw a stone. But at some point, you have to enforce your law. We must address the issue of technological dependence. In the U.S., there’s even been talk of American companies not offering their services in Greenland and Denmark. It’s crazy, because then no one would trust those companies again… but we also thought no one would ever start a trade war."

https://english.elpais.com/technology/2025-09-13/max-schrems-jurist-the-promise-of-the-cloud-was-that-everything-would-be-much-cheaper-but-it-turns-out-that-it-functions-as-a-monopoly.html

Cybersecurity Checklist for Small Business – Quick Guide

Small businesses are prime targets for cyberattacks. A simple, structured checklist helps reduce risk, protect customer data, and keep operations safe.

Key Items:

Strong Passwords + MFA – Enforce complexity and multi-factor authentication.

Update & Patch – Keep OS, apps, and firmware current.

Secure Wi-Fi – Use WPA3, strong passphrases, and separate guest networks.

Regular Backups – Offline + cloud copies, test restores.

Access Control – Least privilege for staff; disable unused accounts.

Endpoint Protection – Antivirus, EDR, and device encryption.

Phishing Awareness – Train employees to spot suspicious emails.

Firewalls & VPN – Protect remote access and monitor inbound/outbound traffic.

Incident Response Plan – Define who to call, what to do, and test annually.

Vendor & Supply Chain Security – Validate partners, use secure contracts.

Disclaimer:
This checklist is for educational purposes only and should be adapted to your business’s unique risks.

Over half of insider cyberattacks in UK schools are linked to students misusing access! From weak passwords to altering records of thousands, the risk is real. Schools must boost cybersecurity & educate Parents, talk to your kids about online ethics! More info: https://cyberinsider.com/uk-schools-hit-by-cyberattacks-from-their-own-students/ #CyberSecurity #EdTech #DataProtection
xD #lol #newz

RED HOT CYBER CONFERENCE 2026 (V EDIZIONE) - 𝑪𝑨𝑳𝑳 𝑭𝑶𝑹 𝑺𝑷𝑶𝑵𝑺𝑶𝑹

La Red Hot Cyber Conference, è l’appuntamento annuale gratuito, creato dalla community di RHC, per far accrescere l’interesse verso le tecnologie digitali, l’innovazione digitale e la consapevolezza del rischio informatico.

Pagina dell'evento: https://www.redhotcyber.com/red-hot-cyber-conference/rhc-conference-2026/

Per qualsiasi informazione, domande, sponsorizzazioni o supporto potete scriverci a sponsor@redhotcyber.com

𝗦𝗧𝗔𝗬 𝗧𝗨𝗡𝗘𝗗!

Meta: "Data from the Conversions API is less impacted than the Meta Pixel by [...] ad blockers." [*]

What they're really saying is that they've found a way to spy on us that is less affected by our refusal to be tracked by them for their shareholder's profit. This abominable company needs to be sued into oblivion!

[*] https://www.facebook.com/business/help/2041148702652965
--
#privacy #DataProtection #tracking #SocialMedia #Meta #IrresponsibleTech

'Meta said it was proud of its “solid track record” in protecting privacy.'

https://www.heise.de/en/news/Because-of-security-flaws-Ex-security-chief-of-WhatsApp-sues-Meta-10637131.html

My employer (a German university) is trying to force me to permanently run Zoom X on my laptop because they are replacing the office telephones by Zoom. I'm unhappy about this. I guess that Zoom will at the very least collect meta data. With Zoom being a US company the secret service might also have access to basically everything Zoom collects.

Since I'm already using Zoom for video conferences (nothing I can do about that for the moment), what difference would it make to run Zoom X permanently in the background compared to just using Zoom when I have a video call?
Has someone looked into specifically Zoom X from a privacy point of view?
Is there a good article or blog post that you would recommend?

(I should probably add that we are talking about my own device here. The laptop I'm using does not belong to my employer.)

La Red Hot Cyber Conference, è l’appuntamento annuale gratuito, creato dalla community di RHC, per far accrescere l’interesse verso le tecnologie digitali, l’innovazione digitale e la consapevolezza del rischio informatico.

Pagina dell'evento: https://www.redhotcyber.com/red-hot-cyber-conference/rhc-conference-2026/

Per qualsiasi informazione, domande, sponsorizzazioni o supporto potete scriverci a sponsor@redhotcyber.com

𝗦𝗧𝗔𝗬 𝗧𝗨𝗡𝗘𝗗!

Ispirazione quotidiana: la citazione del giorno

"But the GDPR brought us nothing but those obnoxious cookie banners."

Wrong. On so many levels.

First, the GDPR safeguards our right to be asked for our free, informed and explicit consent before we are tracked online. Malicious compliance by those who are hellbent on circumventing our rights to make money brought us those obnoxious consent banners.

Second, the GDPR brought us much more than just that.

Third, cookie consent is an ePrivacy Directive matter.
--
#privacy #DataProtection #GDPR

German woman sues Google over nude pictures and sex videos.

A German woman filed a suit against the US search engine Google after failing to get it to remove intimate pictures of her that were spread online.

HateAid, a German non-profit, hopes that it will be a landmark case.

https://mediafaro.org/article/20250907-german-woman-sues-google-over-nude-pictures-and-sex-videos?mf_channel=mastodon&action=forward