Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Privacy

U.S. Unveils First Step Toward New Online Privacy Rules

The US administration called Tuesday for public comments on a “new approach to consumer data privacy” that could trigger fresh regulations of internet companies.

The US administration called Tuesday for public comments on a “new approach to consumer data privacy” that could trigger fresh regulations of internet companies.

The Commerce Department said the announcement is part of an effort to “modernize US data privacy policy for the 21st century.”

The move follows the implementation this year of ramped up data protection rules imposed by the European Union, and a new privacy law enacted in California.

Both measures will impact internet firms whose websites can be accessed around the globe.

Privacy and data protection have come into greater focus in response to these new laws, and also because of growing concerns on how private data is handled following revelations on the hijacking of millions of Facebook user profiles by a political consultancy ahead of the 2016 election.

“The United States has a long history of protecting individual privacy, but our challenges are growing as technology becomes more complex, interconnected and integrated into our daily lives,” said David Redl, who heads the agency’s National Telecommunications and Information Administration (NTIA).

The Trump administration is beginning this conversation to solicit ideas on a path for adapting privacy to today’s data-driven world.”

The agency said it was also developing a voluntary privacy framework to help organizations manage risk and working on ways “to increase global regulatory harmony.”

Advertisement. Scroll to continue reading.

The Commerce Department statement said the agency is focused on “desired outcomes” for privacy rather that dictating specific practices.

But it plans to seek public comment on transparency practices — how data is collected and used — as well as security safeguards.

Users of online platforms “should be able to reasonably access and correct personal data they have provided,” the statement added. “Organizations should take steps to manage the risk of disclosure or harmful uses of personal data.”

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Artificial Intelligence

Two of humanity’s greatest drivers, greed and curiosity, will push AI development forward. Our only hope is that we can control it.

Cybersecurity Funding

Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta...

Privacy

Many in the United States see TikTok, the highly popular video-sharing app owned by Beijing-based ByteDance, as a threat to national security.The following is...

Privacy

Employees of Chinese tech giant ByteDance improperly accessed data from social media platform TikTok to track journalists in a bid to identify the source...

Application Security

Open banking can be described as a perfect storm for cybersecurity. At one end, small startups with financial acumen but little or no security...

Mobile & Wireless

As smartphone manufacturers are improving the ear speakers in their devices, it can become easier for malicious actors to leverage a particular side-channel for...

Government

The proposed UK Online Safety Bill is the enactment of two long held government desires: the removal of harmful internet content, and visibility into...

Cloud Security

AWS has announced that server-side encryption (SSE-S3) is now enabled by default for all Simple Storage Service (S3) buckets.