fix: Update Dataguidance News API Url

[harveyqiu]

Involved Issue / 该 PR 相关 Issue

Close #

Example for the Proposed Route(s) / 路由地址示例

/dataguidance/news

New RSS Route Checklist / 新 RSS 路由检查表

• New Route / 新的路由
  • Follows Script Standard / 跟随 路由规范
• Anti-bot or rate limit / 反爬/频率限制
  • If yes, do your code reflect this sign? / 如果有, 是否有对应的措施?
• Date and time / 日期和时间
  • Parsed / 可以解析
  • Correct time zone / 时区正确
• New package added / 添加了新的包
• Puppeteer

Note / 说明

[github-actions]

Successfully generated as following:

http://localhost:1200/dataguidance/news - Success ✔️

<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" version="2.0">
  <channel>
    <title>Data Guidance News</title>
    <link>https://www.dataguidance.com/info?article_type=news_post</link>
    <atom:link href="http://localhost:1200/dataguidance/news" rel="self" type="application/rss+xml"></atom:link>
    <description>Data Guidance News - Powered by RSSHub</description>
    <generator>RSSHub</generator>
    <webMaster>[email protected] (RSSHub)</webMaster>
    <language>en</language>
    <lastBuildDate>Fri, 14 Feb 2025 14:11:08 GMT</lastBuildDate>
    <ttl>5</ttl>
    <item>
      <title>Tennessee: Bill on requirements for health insurance issuers using AI introduced to General Assembly</title>
      <description>On February 10, 2025, Senate Bill 1261 and House Bill 1382 were introduced to the General Assembly. On the same day, Senate Bill 1261 was passed on First Consideration and on February 12, 2025:Senate Bill 1261 was passed on Second Consideration and referred; andHouse Bill 1382 was assigned to the Insurance Subcommittee after having been referred to the Insurance Committee – Government Operations for Review.The bill would impose requirements for health insurance issuers using artificial intelligence (AI) algorithms, or other software for utilization review or utilization management functions. These requirements include ensuring that the AI algorithm or other software tool:bases its determinat&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641340</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641340</guid>
      <pubDate>Fri, 14 Feb 2025 15:10:51 GMT</pubDate>
    </item>
    <item>
      <title>Tennessee: Bill on affirmative defense in data breach cases introduced to General Assembly</title>
      <description>This story has been updated - please see the most recent update below.On February 5, 2025, House Bill 1033 on an Act to amend Tennessee Code Annotated, Title 20; Title 29 and Title 47, Chapter 18, relative to data security was introduced to the House of Representatives. On February 10, 2025, its companion bill, Senate Bill 1421 was introduced to the State Senate and passed on first consideration.If enacted, the bill would allow for covered entities that are subject of a data breach to utilize an affirmative defense if the covered entity&#39;s cybersecurity program meets the following requirements at the time the breach occurs:the program is designed to:protect against a breach of security;pr&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641339</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641339</guid>
      <pubDate>Fri, 14 Feb 2025 14:37:03 GMT</pubDate>
    </item>
    <item>
      <title>Finland: Traficom reminds companies of security requirements for radio equipment</title>
      <description>On February 10, 2025, the Finnish Transport and Communications Agency (Traficom) published a press release reminding companies to check the level of information security in products to ensure compliance with the EU Radio Equipment Directive. Traficom states that the Radio Equipment Directive will be applicable from August 1, 2025, and from that date, equipment such as internet-connected devices mu&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641337</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641337</guid>
      <pubDate>Fri, 14 Feb 2025 13:40:05 GMT</pubDate>
    </item>
    <item>
      <title>Indonesia: Komdigi announces draft regulation on age limit for children to access digital platforms</title>
      <description>On February 7, 2025, the Ministry of Communication and Digital Affairs (Komdigi) announced that it is drafting strict regulations to protect children from the negative impacts of the digital world. The regulations will include an age limit for children to access digital platforms and a classification of digital platforms that children can access based on their risk profile. &amp;nbsp;Komdigi outlined that&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641336</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641336</guid>
      <pubDate>Fri, 14 Feb 2025 12:32:46 GMT</pubDate>
    </item>
    <item>
      <title>China: CAC publishes Personal Information Protection Compliance Audit Management Measures</title>
      <description>On February 14, 2025, the Cyberspace Administration of China (CAC) announced that it approved the Personal Information Protection Compliance Audit Management Measures and its appendix on May 20, 2024.ScopeThe measures apply to personal information protection compliance audits, meaning reviewing and evaluating whether personal information processors&#39; personal information processing activities comply with Chinese laws and administrative regulations. The measures do not apply to audits of state organs and organizations managing public affairs.Frequency of auditsUnder the measures, personal information handlers must regularly conduct compliance audits following the Guidelines for Personal Inform&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/china-cac-publishes-personal-information-protection</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/china-cac-publishes-personal-information-protection</guid>
      <pubDate>Fri, 14 Feb 2025 12:23:41 GMT</pubDate>
    </item>
    <item>
      <title>Alberta: OIPC releases statement on PowerSchool platform cybersecurity incident</title>
      <description>On February 12, 2025, the Office of the Information and Privacy Commissioner of Alberta (OIPC) announced that it had received 31 breach notices to date from Alberta educational institutions regarding unauthorized access to personal information of students attending those educational institutions, which were using the PowerSchool platform. The OPIC highlighted that the personal information of educators was also mentioned in some of the breach notices.According to PowerSchool there was an unauthorized exfiltration of personal information through one of its community-focused customer support portals. According to one breach notice received by the OIPC, the personal information of students that&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641333</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641333</guid>
      <pubDate>Fri, 14 Feb 2025 12:07:36 GMT</pubDate>
    </item>
    <item>
      <title>Alberta: Court fines former employee of Alberta Health Services $2,000 for unlawfully disclosing health information</title>
      <description>On February 12, 2025, the Office of the Information and Privacy Commissioner of Alberta (OIPC) announced that a former employee of Alberta Health Services pleaded guilty to unauthorized disclosure of health information of one person in 2020, violating the&amp;nbsp;Health Information Act&amp;nbsp;(HIA).Background to the caseThe former employee was working as an Administrative IV Medical Secretary at the University of Alberta Hospital in Edmonton. In their position, the former employee had access to Connect Care, a centralized patient information system, and Netcare, the provincial electronic health information system, in order to perform their duties working from home or on shift at the hospital.Findings of th&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641332</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641332</guid>
      <pubDate>Fri, 14 Feb 2025 12:06:47 GMT</pubDate>
    </item>
    <item>
      <title>UK: UK AI Safety Institute becomes &#39;UK AI Security Institute&#39;</title>
      <description>On February 14, 2025, the Department for Science, Innovation and Technology (DSIT) announced that the UK AI Safety Institute was renamed as the &#39;UK AI Security Institute.&#39; Moreover, DSIT highlighted an agreement between the UK and&amp;nbsp;AI&amp;nbsp;company Anthropic.UK AI Security InstituteThe Institute will reflect its focus on serious&amp;nbsp;artificial intelligence (AI)&amp;nbsp;risks with security implications, such as how the technology can be used to develop chemical and biological weapons, how it can be used to carry out cyber-attacks, and enable crimes such as fraud and child sexual abuse.Moreover, the Institute will also partner across the Government, including with the&amp;nbsp;Defence Science and Technology Laboratory, a&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641331</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641331</guid>
      <pubDate>Fri, 14 Feb 2025 12:01:54 GMT</pubDate>
    </item>
    <item>
      <title>Spain: AEPD fines Caixa Popular €35,000 for data security failures</title>
      <description>On January 17,&amp;nbsp;2025, the&amp;nbsp;Spanish data protection authority (AEPD) published&amp;nbsp;its decision in Proceeding No. PS/00008/2024, in which it imposed a fine of €35,000, which was subsequently reduced to&amp;nbsp;€28,000, on Caixa Popular - Caixa Rural Coop de Crédito V (Caixa Popular) for a violation of&amp;nbsp;the General Data Protection Regulation (GDPR), following a data breach.Background to the decisionThe AEPD stated that it was notified of a breach of security of personal data at Caixa Popular. The AEPD explained that as a result of the security breach, cyberattackers were able to access the personal data of customers of Caixa Popular. According to the AEPD, the personal data breach occurred due to a vulnerabi&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641330</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641330</guid>
      <pubDate>Fri, 14 Feb 2025 11:50:53 GMT</pubDate>
    </item>
    <item>
      <title>New Zealand: OPC updates guidance in rental sector for landlords and tenants</title>
      <description>On February 12, 2025, the Office of the Privacy Commissioner of New Zealand (OPC) announced that it had updated its guidance for the rental sector to help educate landlords and tenants and to help make sure that privacy is respected throughout the application process.The OPC clarified that guidance is for tenants, landlords, and others in the rental accommodation sector to clarify what information may be requested at every stage of the rental process. It also announced that it launched a new monitoring and compliance programme to ensure that rental agencies and landlords stay on the right side of the Privacy Act.The resource for landlords provides key facts, in a question-and-answer format,&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641329</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641329</guid>
      <pubDate>Fri, 14 Feb 2025 11:22:38 GMT</pubDate>
    </item>
    <item>
      <title>Spain: AEPD fines Caja Rural del Sur €20,000 for data security failures</title>
      <description>On January 17,&amp;nbsp;2025, the&amp;nbsp;Spanish data protection authority (AEPD) published&amp;nbsp;its decision in Proceeding No. PS/00011/2024, in which it imposed a fine of €20,000, which was subsequently reduced to&amp;nbsp;€16,000, on Caja Rural del Sur, S. Coop. de Crédito (Caja Rural del Sur) for a violation of&amp;nbsp;the General Data Protection Regulation (GDPR), following a data breach.Background to the decisionThe AEPD stated that it was notified of a breach of security of personal data at Caja Rural del Sur. The AEPD explained that as a result of the security breach, cyberattackers were able to access the personal data of customers of Caja Rural del Sur. According to the AEPD, the personal data breach occurred due to a&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/spain-aepd-fines-caja-rural-del-sur-eu20000-data</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/spain-aepd-fines-caja-rural-del-sur-eu20000-data</guid>
      <pubDate>Fri, 14 Feb 2025 11:13:16 GMT</pubDate>
    </item>
    <item>
      <title>EU: Commission endorses voluntary Code of Practice on Disinformation under DSA</title>
      <description>On February 13, 2025, the European Commission announced that, together with the European Board for Digital Services, it endorsed the integration of the voluntary Code of Practice on Disinformation, including several companies designated as Very Large Online Platforms and Search Engines (VLOPEs) under the Digital Services Act (DSA) as signatories.&amp;nbsp;What is the Code of Practice?The Commission explained that the Code of Practice is a robust set of commitments constituting appropriate risk mitigation measures for DSA compliance. Compliance with these will be part of the annual independent audit. The Code of Practice includes, among other things:demonetization of purveyors of disinformation;transp&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641327</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641327</guid>
      <pubDate>Fri, 14 Feb 2025 11:03:37 GMT</pubDate>
    </item>
    <item>
      <title>Canada: OPC announces PowerSchool data breach</title>
      <description>This story has been updated - please see the most recent update below.On January 20, 2025, the Office of the Privacy Commissioner of Canada (OPC) issued a statement regarding a privacy breach at PowerSchool Holdings, Inc.The OPC stated that it is in contact with PowerSchool to obtain more information about the breach and to provide them with information about breach response and reporting requirements under privacy legislation. The OPC noted that this will allow them to convey their expectations to PowerSchool regarding their response to the breach and to determine the next steps.You can read the press release here.Update: February 14, 2025&amp;nbsp;Privacy Commissioner provides update on PowerSchool&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/canada-opc-announces-powerschool-data-breach</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/canada-opc-announces-powerschool-data-breach</guid>
      <pubDate>Fri, 14 Feb 2025 10:55:45 GMT</pubDate>
    </item>
    <item>
      <title>Italy: Garante issues warning for Graphite spyware users</title>
      <description>On February 14, 2025, the Italian data protection authority&amp;nbsp;(Garante) issued a warning regarding the use of a spyware denominated Graphite made by Paragon Solutions ltd or other similar spyware, following complaints from individuals.The Garante noted that Graphite, once installed in electronic communication systems, would be able to copy every single piece of data contained therein. According to j&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/italy-garante-issues-warning-graphite-spyware-users</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/italy-garante-issues-warning-graphite-spyware-users</guid>
      <pubDate>Fri, 14 Feb 2025 10:51:50 GMT</pubDate>
    </item>
    <item>
      <title>India: MeitY extends feedback deadline for draft data protection rules</title>
      <description>On February 14, 2025, the Ministry of Electronics and Information Technology (MeitY) announced that it is extending the deadline for feedback for the draft data protection rules.&amp;nbsp;The feedback from the stakeholders on the draft rules is extended until March 5, 2025, in response to the representations received from several stakeholders from the earlier deadline of February 18, 2025.The feedback on t&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/india-meity-extends-feedback-deadline-draft-data</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/india-meity-extends-feedback-deadline-draft-data</guid>
      <pubDate>Fri, 14 Feb 2025 10:45:13 GMT</pubDate>
    </item>
    <item>
      <title>Mississippi: AI in Education Task Force Act referred to Senate Committees</title>
      <description>This story has been updated - please see the most recent update below.On January 17, 2025, Senate Bill 2059 on Artificial Intelligence in Education Task Force Act was referred to the Senate Technology and Education Committees.The bill aims to establish the artificial intelligence (AI) in Education Task Force within the State to evaluate the potential applications of AI in K-12 and to develop policy recommendations for responsible and effective uses of AI by students and educators.&amp;nbsp;Additionally, the Task Force may identify workforce needs related to AI and provide policy recommendations to ensure that the State develops education and workforce training programs in line with changing industry&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/mississippi-ai-education-task-force-act-referred</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/mississippi-ai-education-task-force-act-referred</guid>
      <pubDate>Fri, 14 Feb 2025 09:56:23 GMT</pubDate>
    </item>
    <item>
      <title>Canada: Bill C-27 dies after Parliament is prorogued</title>
      <description>On January 6, 2025, the Governor General of Canada prorogued Parliament following the resignation of Prime Minister Justin Trudeau. Parliament was prorogued under the Proclamation of the Governor General until March 24, 2025.The prorogation, in ending the parliamentary session, ended the debate on Bill C-27 for the Digital Charter Implementation Act, 2022. Bill C-27 sought to enact the Consumer Pr&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/canada-bill-c-27-dies-after-parliament-prorogued</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/canada-bill-c-27-dies-after-parliament-prorogued</guid>
      <pubDate>Thu, 13 Feb 2025 22:53:17 GMT</pubDate>
    </item>
    <item>
      <title>EU: EIOPA requests comments on Opinion regarding insurance, DORA, and AI</title>
      <description>On February 12, 2025, the European Insurance and Occupational Pensions Authority (EIOPA) requested public comments on its Opinion on Artificial Intelligence Governance and Risk Management.The Opinion provides a comprehensive framework for the governance and risk management of&amp;nbsp;artificial intelligence (AI) systems in the insurance sector.Legal basisEIOPA&#39;s&amp;nbsp;Opinion is based on several EU regulations and directives, including:the Insurance Distribution Directive (IDD)&amp;nbsp;and&amp;nbsp;Solvency II Directive, in relation to insurance undertakings and intermediaries;the Digital Operational Resilience Act (DORA), regarding ICT governance and risk management; andthe EU Artificial Intelligence Act (the AI Act), in&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/eu-eiopa-requests-comments-opinion-regarding-insurance</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/eu-eiopa-requests-comments-opinion-regarding-insurance</guid>
      <pubDate>Thu, 13 Feb 2025 19:50:14 GMT</pubDate>
    </item>
    <item>
      <title>Vermont: Bill on data broker registration introduced to House</title>
      <description>On February 12, 2025, House Bill 211 for an Act relating to data brokers and personal information was introduced to the Vermont House of Representatives, read for the first time, and referred to the Committee on Commerce and Economic Development on the same date.ScopeA data broker refers to a business that collects and sells or licenses brokered personal information of a consumer with whom they do not have a direct relationship. The bill clarifies businesses that do and do not qualify as a data broker.Prohibitions on Data UseThe bill establishes prohibitions, including:prohibiting the use of personal information for purposes other than those certified by the data broker;prohibiting the sale&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/vermont-bill-data-broker-registration-introduced-house</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/vermont-bill-data-broker-registration-introduced-house</guid>
      <pubDate>Thu, 13 Feb 2025 17:41:19 GMT</pubDate>
    </item>
    <item>
      <title>International: OECD publishes report on intellectual property issues in AI trained on scraped data</title>
      <description>On February 9, 2025, the Organization for Economic Cooperation and Development (OECD) published a report titled &#39;Intellectual Property Issues in Artificial Intelligence Trained on Scraped Data.&#39; The report examines the legal and regulatory challenges associated with the practice of data scraping to obtain artificial intelligence (AI) training data and its impact on intellectual property (IP) rights.&amp;nbsp;What is data scraping?The report defines data scraping as the automated extraction of information from third-party websites, databases, or social media platforms. According to the report, advances in generative AI have led to an increase in demand for training data, with data scraping emerging as&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/international-oecd-publishes-report-intellectual</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/international-oecd-publishes-report-intellectual</guid>
      <pubDate>Thu, 13 Feb 2025 15:52:20 GMT</pubDate>
    </item>
    <item>
      <title>Utah: Bill on AI and mental health introduced to House</title>
      <description>On February 10, 2025, House Bill 452 on Artificial Intelligence Applications Relating to Mental Health was introduced to the Utah House of Representatives, read for the first time, and referred to the House Rules Committee on the same date.DefinitionsThe bill defines &#39;generative artificial intelligence&#39; as &#39; an artificial system that:is trained on data;interacts with a person using text, audio, or visual communication; andgenerates non-scripted outputs similar to outputs created by a human, with limited or no human oversight.A &#39;Mental health chatbot&#39; is defined as an artificial intelligence (AI) technology that:&#39;uses generative artificial intelligence to engage in interactive conversations w&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/utah-bill-ai-and-mental-health-introduced-house</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/utah-bill-ai-and-mental-health-introduced-house</guid>
      <pubDate>Thu, 13 Feb 2025 15:35:01 GMT</pubDate>
    </item>
    <item>
      <title>Utah: Bill for Government Data Privacy Amendments introduced to House</title>
      <description>On February 7, 2025, House Bill 444 modifying provisions related to governmental data privacy and privacy oversight was introduced to the Utah House of Representatives, and was thereafter referred, following its first reading, to the House Rules Committee on the same date.Specifically, the bill provides that Utah State agencies must complete an accurate privacy annotation for reach record series containing personal data that the State agency collects, maintains, or uses. The bill prohibits the collection, maintenance, or use of personal data contained in record series that do not have a privacy annotation. Where a record series is determined not to include personal data, the bill provides th&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641304</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641304</guid>
      <pubDate>Thu, 13 Feb 2025 14:57:51 GMT</pubDate>
    </item>
    <item>
      <title>Vermont: Consumer data privacy and online surveillance bill introduced to House</title>
      <description>On February 12, 2025, House Bill 208 for an Act relating to consumer data privacy and online surveillance was introduced to the Vermont House of Representatives, read for the first time, and referred to the Committee on Commerce and Economic Development on the same date.ScopeThe bill provides for its application to a person that conducts business in Vermont or a person who produces products or service that are targeted to residents of Vermont and that during the preceding calendar year controlled or processed the personal data of not fewer than:25,000 consumers, excluding personal data controlled or processed solely for the purpose of completing a payment transaction; or12,500 consumers and&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/vermont-consumer-data-privacy-and-online-surveillance</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/vermont-consumer-data-privacy-and-online-surveillance</guid>
      <pubDate>Thu, 13 Feb 2025 14:35:42 GMT</pubDate>
    </item>
    <item>
      <title>California: Bill on deceptive terms in health care and AI introduced to Assembly</title>
      <description>On February 10, 2025, Assembly Bill 489 Health care professions: deceptive terms or letters: artificial intelligence was introduced to the California State Assembly. On the same day, it was read for the first time.The bill would prohibit the following:the use of specified terms, letters, or phrases to falsely indicate or imply possession of a license or certificate to practice a health care profes&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641298</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641298</guid>
      <pubDate>Thu, 13 Feb 2025 14:05:03 GMT</pubDate>
    </item>
    <item>
      <title>Netherlands: AP publishes report on chatbots used for friendship and mental health</title>
      <description>On February 12, 2025, the Dutch data protection authority (AP) announced the publication of an artificial intelligence (AI) and algorithm risk report on chatbots. The AP noted that the report was the fourth such report on AI and algorithms.&amp;nbsp;The AP highlighted the report studied nine popular chatbot apps, noting that the chatbots had been trained on English language models and gave poorer answers when chatting in Dutch.The Report outlined a series of findings:AI chatbots gave unqualified, inappropriate, and potentially even harmful responses to users who brought up mental health issues;AI chatbots failed to refer users to professional help regarding mental health issues;AI chatbots were not t&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/netherlands-ap-publishes-report-chatbots-used</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/netherlands-ap-publishes-report-chatbots-used</guid>
      <pubDate>Thu, 13 Feb 2025 13:56:24 GMT</pubDate>
    </item>
  </channel>
</rss>

[github-actions]

Successfully generated as following:

http://localhost:1200/dataguidance/news - Success ✔️

<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" version="2.0">
  <channel>
    <title>Data Guidance News</title>
    <link>https://www.dataguidance.com/info?article_type=news_post</link>
    <atom:link href="http://localhost:1200/dataguidance/news" rel="self" type="application/rss+xml"></atom:link>
    <description>Data Guidance News - Powered by RSSHub</description>
    <generator>RSSHub</generator>
    <webMaster>[email protected] (RSSHub)</webMaster>
    <language>en</language>
    <lastBuildDate>Wed, 19 Feb 2025 02:18:55 GMT</lastBuildDate>
    <ttl>5</ttl>
    <item>
      <title>Mississippi: Bill on AI regulation task force referred to House Technology Committee</title>
      <description>This story has been updated - please see the most recent update below.On January 20, 2025, House Bill 1535 for an act to establish the artificial intelligence regulation (AIR) Task Force and for related purposes was referred to the Mississippi State House of Representatives&#39; Technology Committee.&amp;nbsp;On the same date, Senate Bill 2426 for an act to establish the artificial intelligence regulation (AIR) Task Force was referred to Mississippi State Senate Technology Committee.What is the AIR Task Force?The bills establishes the AIR Task Force consisting of seven voting members as appointed in the bills. Under the bills, the task force shall serve as a regulatory sandbox, responsible for balancing&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/mississippi-bill-ai-regulation-task-force-referred</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/mississippi-bill-ai-regulation-task-force-referred</guid>
      <pubDate>Tue, 18 Feb 2025 22:26:50 GMT</pubDate>
    </item>
    <item>
      <title>Nigeria: FCCPC&#39;s regulatory authority upheld by court in telecommunications case</title>
      <description>On February 9, 2025, the Federal Competition and Consumer Protection Commission (FCCPC) announced that the Federal High Court in Lagos had affirmed its regulatory authority over competition and consumer protection across all sectors, including telecommunications. The FCCPC noted that this ruling, delivered on February 7, 2025, reinforces its mandate to prevent anti-competitive practices and protect consumers in Nigeria.Background to the CaseThe case was initiated by a legal practitioner, who is also a shareholder of MTN, who sought to stop the FCCPC&#39;s investigation of MTN Nigeria, a mobile network operator. He argued that the inquiry could breach data protection laws and insisted that the Ni&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641630</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641630</guid>
      <pubDate>Tue, 18 Feb 2025 18:22:03 GMT</pubDate>
    </item>
    <item>
      <title>Guernsey: ODPA announces fourth quarter breach statistics</title>
      <description>On February 13, 2025, the Office of Data Protection Authority (ODPA) published fourth-quarter breach statistics. The ODPA stated that from October 1, 2024, until December 31, 2024, 33 personal data breaches were reported, which affected 44,914 people. The ODPA also noted that 187 people were affected by &#39;high-risk&#39; data breaches.The ODPA mentioned a recent case where a USB storage device containin&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641629</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641629</guid>
      <pubDate>Tue, 18 Feb 2025 18:13:13 GMT</pubDate>
    </item>
    <item>
      <title>Virginia: Bill for High-Risk AI Developer and Deployer Act passes both Houses</title>
      <description>On February 18, 2025, House Bill 2094 for the High-Risk Artificial Intelligence Developer and Deployer Act was read for a third time and passed by the Senate. The constitutional second reading of the bill was dispensed with in the Senate on February 17, 2025. The bill has now passed both Houses of the Virginia General Assembly.DefinitionsThe bill defines an &#39;artificial intelligence system&#39; as &#39;any machine&amp;nbsp;learning-based system that, for any explicit or implicit objective, infers from the inputs such system receives how to generate outputs, including content, decisions, predictions, and recommendations, that can influence physical or virtual environments.&#39;A &#39;deployer&#39; under the bill is define&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/virginia-bill-high-risk-ai-developer-and-deployer-0</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/virginia-bill-high-risk-ai-developer-and-deployer-0</guid>
      <pubDate>Tue, 18 Feb 2025 16:21:09 GMT</pubDate>
    </item>
    <item>
      <title>EU: ESAs update DORA FAQs on reporting of registers of information</title>
      <description>On February 14, 2025, the European Supervisory Authorities (ESAs) under the Digital Operational Resilience Act (DORA) updated the frequently asked questions (FAQs) for reporting of registers of information under Article 28(3) of DORA.The ESAs are made up of the European Banking Authority (EBA), the European Insurance and Occupational Pensions Authority (EIOPA), and the European Securities and Markets Authority (ESMA). The ESAs clarify that the FAQs are not legal interpretation or guidance.The FAQs include information on the reporting of registers of information in 2025, such as:what needs to be reported to the ESAs starting from 2025?how will the&amp;nbsp;registers be kept at individual, sub-consolid&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/eu-esas-update-dora-faqs-reporting-registers</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/eu-esas-update-dora-faqs-reporting-registers</guid>
      <pubDate>Tue, 18 Feb 2025 16:03:51 GMT</pubDate>
    </item>
    <item>
      <title>Bremen: BremDSGVOAG publishes recommendations on using AI apps from outside the EU</title>
      <description>On February 12, 2025, the Bremen data protection authority (BremDSGVOAG) published recommendations on the use of artificial intelligence (AI) applications from providers outside the EU who have not appointed a legal representative in the EU.The BremDSGVOAG highlighted that, in light of recent developments, particularly when the provider of an AI application is not from the EU or a third country with an adequacy decision under Article 45 of the General Data Protection Regulation (GDPR), the following information should be considered when using an AI app.Transparency and Documentation - ensure the AI provider is transparent and provides appropriate documentation demonstrating compliance with G&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/bremen-bremdsgvoag-publishes-recommendations-using-ai</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/bremen-bremdsgvoag-publishes-recommendations-using-ai</guid>
      <pubDate>Tue, 18 Feb 2025 15:20:15 GMT</pubDate>
    </item>
    <item>
      <title>Spain: AEPD fines Orange Espagne €1.2 million for failure to implement privacy by design</title>
      <description>On October 22, 2024, the Spanish data protection authority (AEPD) published its decision in Proceeding No. PS/00332/2023, in which it imposed a fine of €1.2 million on Orange Espagne, S.A.U., for a violation of the General Data Protection Regulation (GDPR), following a complaint.Background to the decisionThe AEPD outlined that the complainant claimed that a duplicate of their SIM card was created at the Orange Espagne store without properly verifying their identity and without having his ID, thus impersonating him. &amp;nbsp;The complainant alleged that €9,000 was stolen from his bank accounts due to the duplicate.Findings of the AEPDThe AEPD highlighted that Orange Espagne is a large-scale repositor&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641384</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641384</guid>
      <pubDate>Tue, 18 Feb 2025 15:17:30 GMT</pubDate>
    </item>
    <item>
      <title>Texas: Bill on access to health records introduced to Senate</title>
      <description>On February 11, 2025, Senate Bill 1235 for an Act relating to a patient&#39;s access to health records and access to and exchange of certain health benefit plan information was filed with the Texas State Senate.The bill stipulates that a patient or the patient&#39;s legally authorized representative on request is entitled to copies of the patient&#39;s physical or electronic health records. Covered entities that receive a request for a copy of the patient&#39;s health records may charge a fee to produce those records in an amount consistent with the requirements under 45 Code of Federal Regulations (C.F.R.) Section 164.524. However, a covered entity may not charge an aggregate amount that exceeds $100 to pr&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/texas-bill-access-health-records-introduced-senate</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/texas-bill-access-health-records-introduced-senate</guid>
      <pubDate>Tue, 18 Feb 2025 14:42:41 GMT</pubDate>
    </item>
    <item>
      <title>EU: ESAs publish roadmap for designation of CTPPs under DORA</title>
      <description>On February 18, 2025, the European Supervisory Authorities (ESAs) published a roadmap for the designation of Critical ICT third-party service providers (CTPPs) under the Digital Operational Resilience Act (DORA).The ESAs are made up of the European Banking Authority (EBA), the European Insurance and Occupational Pensions Authority (EIOPA), and the European Securities and Markets Authority (ESMA).The ESAs outlined that they will take the following steps to designate CTPPs:firstly, Competent Authorities under DORA are required to submit to the ESAs, by 30 April 2025, the Registers of Information on ICT third-party arrangements they received from financial entities;secondly, the ESAs will perfo&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641382</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641382</guid>
      <pubDate>Tue, 18 Feb 2025 14:27:07 GMT</pubDate>
    </item>
    <item>
      <title>Spain: AEPD fines Caja Rural de Gijón €95,000 for data security failures</title>
      <description>On January 17, 2025, the Spanish data protection authority (AEPD) published its decision in Proceeding No. PS/00006/2024, in which it imposed a fine of €95,000, which was subsequently reduced to €76,000, on Caja Rural de Gijón Sociedad Cooperativa Asturiana de Crédito for a violation of the General Data Protection Regulation (GDPR), following a data breach.Background to the decisionThe AEPD stated that it was notified of a breach of security of personal data at Caja Rural de Gijón Sociedad Cooperativa Asturiana de Crédito, with the initial notification made by its processor, Rural Servicios Informáticos SL. The AEPD explained that as a result of the security breach, cyberattackers were able&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641381</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641381</guid>
      <pubDate>Tue, 18 Feb 2025 13:53:09 GMT</pubDate>
    </item>
    <item>
      <title>Sweden: IMY publishes guidance on DPIAs</title>
      <description>On February 18, 2025, the Swedish data protection authority (IMY) published guidance on Data Protection Impact Assessments (DPIAs). The guidance includes a practical guide on how DPIAs can be carried out and an appendix where IMY includes the most important legal sources and information on interpretation.In the guidance, IMY outlines the following process for carrying out DPIAs:assessing the need to carry out an impact assessment;assembling a working group and planning out work;making a systematic description of personal data processing, including information on the nature, scope, context, and purposes of the processing;conducting a legal analysis, which involves identifying applicable regul&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/sweden-imy-publishes-guidance-dpias</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/sweden-imy-publishes-guidance-dpias</guid>
      <pubDate>Tue, 18 Feb 2025 13:28:27 GMT</pubDate>
    </item>
    <item>
      <title>Mississippi: Bill on liability of commercial entities in a cybersecurity incident transmitted to Senate</title>
      <description>On February 17, 2025, House Bill 1380 for an act providing that state and local governmental entities and certain covered commercial entities are not liable in connection with a cybersecurity incident if the entity involved has adopted certain cybersecurity standards, was transmitted to the Mississippi Senate. The bill was previously passed as amended by the House of Representatives on February 13, 2025.The bill establishes a rebuttable presumption that a commercial entity, among others, that acquires, maintains, stores, or uses personal information is not liable in connection with a cybersecurity incident if it complies with measures to protect and secure data in electronic form containing&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641379</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641379</guid>
      <pubDate>Tue, 18 Feb 2025 12:25:11 GMT</pubDate>
    </item>
    <item>
      <title>Guernsey: ODPA issues guidance on personal data security</title>
      <description>On February 11, 2025, the Office of Data Protection Authority (ODPA) announced its findings after investigating the Policy &amp;amp; Resources Committee (P&amp;amp;R), following several incidents that took down certain States of Guernsey&#39;s IT systems between November 2022 and January 2023. After its investigations, the ODPA found that P&amp;amp;R had failed to implement an IT disaster recovery plan necessary to respond to critical incidents effectively. The ODPA provided recommendations to organizations regarding personal data security.What recommendations did the ODPA provide?The ODPA emphasized the importance of organizations identifying and addressing potential risks to personal data security. It highlighted tha&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/guernsey-odpa-issues-guidance-personal-data-security</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/guernsey-odpa-issues-guidance-personal-data-security</guid>
      <pubDate>Tue, 18 Feb 2025 12:18:20 GMT</pubDate>
    </item>
    <item>
      <title>Brazil: ANPD updates activity monitoring report for second half of 2024</title>
      <description>On February 17, 2025, the Brazilian data protection authority (ANPD) updated its activity monitoring report concerning the second half of 2024, following the publishing of the ANPD&#39;s previous report regarding the first half of 2024. The report highlighted the progress made by the ANPD in each of its priority topics.You can read the report, only available in Portuguese, here.&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641377</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641377</guid>
      <pubDate>Tue, 18 Feb 2025 11:44:01 GMT</pubDate>
    </item>
    <item>
      <title>Illinois: Bills on privacy protection for location information introduced to General Assembly</title>
      <description>On February 7, 2025, Senate Bill 2121 for an act concerning civil law and creating the Privacy Protections for Location Information Derived from Electronic Devices Act was filed in the Illinois State Senate, read for the first time, and referred to the Assignments Committed. On the same date, House Bill 3712 for an act concerning civil law and creating the Privacy Protections for Location Information Derived from Electronic Devices Act was filed in the House of Representatives. Both bills have the same text.What are the main provisions of the bills?The bills apply to &#39;covered entities&#39;, defined as any individual, partnership, corporation, limited liability company, association, or other grou&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/illinois-bills-privacy-protection-location-information</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/illinois-bills-privacy-protection-location-information</guid>
      <pubDate>Tue, 18 Feb 2025 11:25:18 GMT</pubDate>
    </item>
    <item>
      <title>Kenya: ODPC orders Wananchi Group (Kenya) Limited to pay KES 500,000 for failing to comply with deletion request</title>
      <description>On February 17, 2025, the Office of the Data Protection Commissioner (ODPC) published its decision in complaint No. 1840 of 2024, as issued on February 15, 2025, in which it ordered Wananchi Group (Kenya) Limited Т/A Zuku Fibre Kenya to pay KES 500,000 (approx. $3,868) as compensation for violating the Data Protection Act of 2019 (the Act) following a complaint.Background to the decisionThe complainant stated that Wananchi Group failed to erase their personal data despite multiple requests. The Complainant noted that they had stopped being Wananchi Group&#39;s client years ago, but Wananchi Group continued to send the complainant promotional messages despite the complainant&#39;s verbal, phone, and&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641374</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641374</guid>
      <pubDate>Tue, 18 Feb 2025 11:04:44 GMT</pubDate>
    </item>
    <item>
      <title>Kenya: ODPC orders Geosky Service Limited to pay KES 450,000 for unlawful data processing</title>
      <description>On February 17, 2025, the Office of the Data Protection Commissioner (ODPC) published its decision in complaint No. 1844 of 2024, as issued on February 10, 2025, in which it ordered Geosky Service Limited to pay KES 450,000 (approx. $3,481) as compensation for violating the Data Protection Act of 2019 (the Act) following a complaint.Background to the decisionThe complainant stated that Geosky used the complainant&#39;s personal data without authorization consent to apply for a tender at the Central Bank of Kenya. Further, the complainant stated that Geosky misrepresented the complainant as Geosky&#39;s employee and falsely included the complainant&#39;s professional membership details to enhance the bid&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/kenya-odpc-orders-geosky-service-limited-pay-kes</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/kenya-odpc-orders-geosky-service-limited-pay-kes</guid>
      <pubDate>Tue, 18 Feb 2025 10:44:39 GMT</pubDate>
    </item>
    <item>
      <title>New York: Bills on children&#39;s online safety introduced in Senate</title>
      <description>On February 10, 2025, Senate bill 4600 for an act to amend the General Business Law, in relation to enacting the New York child data privacy and protection act (bill 4600) was introduced in the New York State Senate and referred to the Internet and Technology Committee on the same day. Also on February 10, 2025, Senate bill 4609 for an act to amend the General Business Law, in relation to establishing the New York children&#39;s online safety act (bill 4609) was introduced in the Senate and referred to the Internet and Technology Committee.What are the main provisions of bill 4600?Bill 4600 defines &#39;child&#39; or &#39;children&#39; as a consumer or consumers under 18 years of age. Additionally, under bill 4&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/new-york-bills-childrens-online-safety-introduced</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/new-york-bills-childrens-online-safety-introduced</guid>
      <pubDate>Tue, 18 Feb 2025 10:42:55 GMT</pubDate>
    </item>
    <item>
      <title>Germany: Data protection authorities initiate coordinated investigation into DeepSeek</title>
      <description>On February 14, 2025, the Baden-Württemberg data protection authority (LfDI Baden-Württemberg) announced a coordinated investigation against Hangzhou DeepSeek Artificial Intelligence Co., Ltd. for violations of the General Data Protection Regulation (GDPR).Background to the investigationLfDI Baden-Württemberg stated that it initiated the investigation into DeepSeek along with the Rhineland-Palatinate data protection authority (LfDI Rheinland-Pfalz), Thuringian data protection authority (TLfDI), Sachsen-Anhalt data protection authority (LfD Sachsen-Anhalt), Hessen data protection authority (HBDI), Bremen data protection authority (the Bremen Commissioner), and Berlin data protection authority&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/germany-data-protection-authorities-initiate</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/germany-data-protection-authorities-initiate</guid>
      <pubDate>Tue, 18 Feb 2025 10:41:26 GMT</pubDate>
    </item>
    <item>
      <title>Kenya: ODPC orders Geosky Service Limited to pay KES 450,000 for unlawful data processing</title>
      <description>On February 17, 2025, the Office of the Data Protection Commissioner (ODPC) published its decision in complaint No. 1844 of 2024, as issued on February 10, 2025, in which it ordered Geosky Service Limited to pay KES 450,000 (approx. $3,481) as compensation for violating the Data Protection Act of 2019 (the Act) following a complaint.Background to the decisionThe complainant stated that Geosky used the complainant&#39;s personal data without authorization consent to apply for a tender at the Central Bank of Kenya. Further, the complainant stated that Geosky misrepresented the complainant as Geosky&#39;s employee and falsely included the complainant&#39;s professional membership details to enhance the bid&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/kenya-odpc-orders-geosky-service-limited-pay-kes</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/kenya-odpc-orders-geosky-service-limited-pay-kes</guid>
      <pubDate>Tue, 18 Feb 2025 10:41:01 GMT</pubDate>
    </item>
    <item>
      <title>New Mexico: Bill for an AI synthetic content accountability act referred to House committee</title>
      <description>On February 12, 2025, House Bill 0401 for an AI synthetic content accountability act was referred to the New Mexico House of Representatives Commerce and Economic Development and Judiciary Committees.Scope and key definitionsThe bill applies to &#39;covered synthetic content,&#39; meaning images, videos, or audio materials that have been produced or significantly modified from their original form by a generative artificial intelligence (AI) system.&#39;Large online platform&#39; is defined by the bill as a public-facing or semi-public-facing, internet-based service or application that does not only provide email or direct messaging communication services and that:has had at least 100,000 users in New Mexico&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/new-mexico-bill-ai-synthetic-content-accountability</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/new-mexico-bill-ai-synthetic-content-accountability</guid>
      <pubDate>Tue, 18 Feb 2025 08:51:17 GMT</pubDate>
    </item>
    <item>
      <title>Mississippi: Bill on liability of commercial entities in a cybersecurity incident recommended to pass in House</title>
      <description>This story has been updated - please see the most recent update below.On January 30, 2025, House Bill 1380 for an act providing that state and local governmental entities and certain covered commercial entities are not liable in connection with a cybersecurity incident if the entity involved has adopted certain cybersecurity standards was recommended to pass as amended by the Mississippi State House of Representatives.&amp;nbsp;Burden of proof in cybersecurity incident actionThe bill puts in place a rebuttable presumption that a commercial entity, among others, that acquires, maintains, stores, or uses personal information is not liable in connection with a cybersecurity incident if it complies with&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/mississippi-bill-liability-commercial-entities</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/mississippi-bill-liability-commercial-entities</guid>
      <pubDate>Tue, 18 Feb 2025 04:53:42 GMT</pubDate>
    </item>
    <item>
      <title>South Korea: PIPC temporarily suspends DeepSeek</title>
      <description>On February 17, 2025, the Personal Information Protection Commission (PIPC) announced that it temporarily suspended Hangzhou DeepSeek Artificial Intelligence Co., Ltd.&#39;s services from February 15, 2025. The PIPC noted that DeepSeek&#39;s services will be resumed&amp;nbsp;after improvements and supplements are made in accordance&amp;nbsp;with the Personal Information Protection Act (as amended) (PIPA).Background to the decisionThe suspension of DeepSeek&#39;s services follows the launch of an investigation by the PIPC. The PIPC noted that it had sent an official inquiry to Deepseek&#39;s headquarters regarding the collection and processing of personal information shortly after the launch of Deepseek&#39;s service.&amp;nbsp;FindingsThe&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/south-korea-pipc-temporarily-suspends-deepseek</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/south-korea-pipc-temporarily-suspends-deepseek</guid>
      <pubDate>Mon, 17 Feb 2025 16:51:22 GMT</pubDate>
    </item>
    <item>
      <title>California: Bill on chatbots and minors introduced to Senate</title>
      <description>This story has been updated - please see the most recent update below.On January 30, 2025, Senate Bill 243 on Chatbots Used by Minors was introduced to the California State Senate and read for the first time on the same date.The bill provides that an operator, who makes a chatbot platform available to a user, must take reasonable steps to prevent a chatbot on its chatbot platform from providing rewards to a minor user at unpredictable intervals or after an inconsistent number of actions or from encouraging increased engagement, usage, or response rates.Notably, the chatbot must provide a clear and conspicuous notification periodically to remind a user that a chatbot is artificially generated&lt;br&gt;</description>
      <link>https://www.dataguidance.com/news/california-bill-chatbots-and-minors-introduced-senate</link>
      <guid isPermaLink="false">https://www.dataguidance.com/news/california-bill-chatbots-and-minors-introduced-senate</guid>
      <pubDate>Mon, 17 Feb 2025 13:00:00 GMT</pubDate>
    </item>
    <item>
      <title>California: Bill on data broker registration for data collection introduced to Senate</title>
      <description>On February 13, 2205, Senate Bill 361 Data broker registration: data collection was introduced to the California State Senate. On the same day, it was read for the first time and referred to the Committee on Rules for assignment.The bill would require data brokers to provide the additional information to the California Privacy Protection Agency (CPPA) on whether it collects the following from consumers:account login or account number in combination with any required security code, access code, or password that would permit access to a consumer&#39;s account with a third party;driver&#39;s license number, identification card number, tax identification number, social security number, passport number,&lt;br&gt;</description>
      <link>https://www.dataguidance.com/node/641361</link>
      <guid isPermaLink="false">https://www.dataguidance.com/node/641361</guid>
      <pubDate>Mon, 17 Feb 2025 12:49:13 GMT</pubDate>
    </item>
  </channel>
</rss>