iapp.org

Thought for the week: What an accidental hack of robot vacuums can teach us about the next generation of cyberattacks

The IAPP is policy neutral. We publish contributed opinion pieces to enable our members to hear a broad spectrum of views in our domains. This article is part of an ongoing series that will explore ...
iapp.org

Data Act: Mapping the Interplays with the GDPR

This infographic is part of a series that maps different EU digital laws with the GDPR. The full series can be accessed here. The EU Data Act creates new rules on who can access and use data generated ...
iapp.org

FTC policy statement signals COPPA enforcement flexibility around age verification practices

The U.S. Federal Trade Commission is signaling a notable shift in how it expects companies to approach children's privacy compliance, encouraging organizations' broad deployment of age verification ...
iapp.org

What 2026 may bring for Canada's federal privacy reform efforts

Efforts to pass Canada's federal private-sector privacy law modernization bill were derailed last year by the resignation of former Prime Minister Justin Trudeau and a snap general election afterward ...
iapp.org

Notes from the IAPP Europe: A February in the lives of European privacy regulators

The IAPP is policy neutral. We publish contributed opinion pieces to enable our members to hear a broad spectrum of views in our domains. Artificial intelligence has been a well-established discussion ...
iapp.org

Notes from the IAPP Canada: Who protects privacy when technology outruns the law?

The IAPP is policy neutral. We publish contributed opinion pieces to enable our members to hear a broad spectrum of views in our domains. When technology outruns the law, who fills the gap? The past ...
iapp.org

Glossary of privacy terms

The IAPP is a policy neutral, not-for-profit association founded in 2000 with a mission to define, promote and improve the professions of privacy, AI governance and digital responsibility globally.
iapp.org

Agentic AI and Automation Governance: Practical Controls for Data Risk

In enterprises environments, the biggest automation and AI risk is not “AI hype.” It is unmonitored Python running across endpoints and teams, quietly touching company data through internal APIs, ...
iapp.org

Notes on the updated Global Privacy Law and DPA Directory and major privacy developments

The IAPP Research and Insights team updated its Global Privacy Law and DPA Directory. This latest version includes both new, amended, and draft comprehensive data ...
iapp.org

Taiwan's strategic leap into AI: Enacting the AI Basic Act to foster innovation, governance

Taiwan has long been recognized as a pivotal player in the global technology landscape, particularly in semiconductor manufacturing and chip production. As artificial intelligence continues to reshape ...
iapp.org

OAIC's privacy sweep highlights new enforcement powers, in-person data collection concerns

The Office of the Australian Information Commissioner launched its first privacy sweep in January, with plans to investigate the personal data collection practices of approximately 60 organizations.
iapp.org

California's attorney general issues largest CCPA fine to date

California Attorney General Rob Bonta announced his office reached the largest California Consumer Privacy Act settlement to date, a USD2.75 million penalty and ...