IT Security & Privacy

Californians are about to gain one of the most sweeping digital privacy tools in the country. The California Privacy Protection Agency (CalPrivacy) confirmed at last week’s Board meeting that the state’s Office of Administrative Law has approved regulations to implement the Delete Act, a move that paves the way for a single-click mechanism allowing residents to wipe their personal information from hundreds of data brokers.

‍New Zealand’s privacy regulator is sounding the alarm as privacy complaints and serious breach notifications surge across the country. In its latest Annual Report, the Office of the Privacy Commissioner warned that New Zealanders’ rising anxiety about personal data isn’t just theoretical anymore, it reflects a real increase in harm.

After a bruising year of cyber incidents that exposed the fragility of the UK’s digital defenses, the government has presented its long-awaited Cyber Security and Resilience Bill to Parliament, a huge step intended to move the country from guidance to enforcement in its approach to cyber risk.

The Washington Post has confirmed that it was among the organizations affected in a broader hacking campaign exploiting vulnerabilities in Oracle’s E-Business Suite, a set of corporate software tools widely used to manage HR systems, business operations, and sensitive internal data.

Australia’s privacy and information rights regulator says it made meaningful strides in enforcement, transparency, and public trust over the past year, according to the Office of the Australian Information Commissioner’s (OAIC) newly released Annual Report for 2024–25.

The Federal Energy Regulatory Commission (FERC) has released an updated set of “Lessons Learned” from Commission-led audits of the Critical Infrastructure Protection (CIP) Reliability Standards, offering a clearer picture of where compliance programs are improving and where common gaps are still appearing across the electric sector.

The Danish Data Protection Agency (Datatilsynet) and the Confederation of Danish Industry (DI) have opened a constructive dialogue on how to make GDPR compliance less of a bureaucratic burden and more of a workable reality for businesses.