Facebook acquired GIPHY and will integrate the GIF database into Instagram and other apps, said Facebook Vice President-Product Vishal Shah Friday. The platform uses the GIPHY application programming interface in Instagram, the Facebook app, Messenger and WhatsApp. The deal shouldn’t be allowed because it will strengthen Facebook’s social media monopoly, said Freedom From Facebook & Google co-Chairs Sarah Miller and David Segal in a statement. The acquisition shows how little the company regards antitrust scrutiny from Congress, state attorneys general, the FTC and DOJ, they added: “They couldn’t care less and are moving full speed ahead with new acquisitions.” A Facebook spokesperson emailed that the “vast majority” of GIPHY users are Instagram users: “Of all the GIPHY API integrations, Instagram is the largest and most engaged with ~50% of traffic coming from FB properties. We will continue to invest in the GIPHY library, including its global content collection and GIPHY's API partners will retain access.”

The Commerce Department Bureau of Industry and Security allowed more time for comments on an information collection about technology letters of explanation, until June 15, said Friday's Federal Register. The letters provide assurance to BIS and require the “consignee” to certify an export involving controlled technical data won't be released to blocked countries. BIS requested comment in February.

TikTok is still collecting children’s personal data without parental consent, privacy advocates wrote the FTC Thursday, demanding an investigation. The Campaign for a Commercial-Free Childhood, Center for Digital Democracy and some 20 organizations said TikTok is violating its 2019 order with the agency, which included a $5.7 million fine due to apparent Children’s Online Privacy Protection Act violations (see 1902270059). The company failed to delete data collected before the 2019 order and hasn’t given parents access to review or delete personal information, the groups alleged. The FTC confirmed receiving the complaint. “We take privacy seriously and are committed to helping ensure that TikTok continues to be a safe and entertaining community for our users,” emailed a spokesperson for the platform.

Weakening encryption would jeopardize the health and security of billions around the world, some 30 advocacy groups said Wednesday, launching the Global Encryption Coalition. The Center for Democracy & Technology, Internet Society and Global Partners Digital will lead the steering committee. Members include the American Civil Liberties Union, Electronic Frontier Foundation and New America’s Open Technology Institute. The coalition will “alert technologists to encryption threats around the world, and create mechanisms through which they can deliver expert analysis to mitigate those threats,” said CDT Chief Technology Officer Mallory Knodel.

ICANN's rejection of the Public Internet Registry deal won't affect the .org community, a PIR spokesperson emailed us. "PIR will continue to be an exemplary registry" that supports the work of the mission-driven .org community, he said. Internet Society President Andrew Sullivan said he expects PIR to continue running its registries "in an exemplary fashion and in strict conformance" with its agreements with ICANN. The domain name industry has changed in recent years, so registries need to adapt, Sullivan emailed us. ISOC, which had hoped to sell PIR to private equity firm Ethos Capital, "believed that a specialist investor would be in a better position to support" PIR's stability, but since ICANN "has refused its consent (see 2005010003) that avenue is not open to PIR." Ethos Capital didn't comment Wednesday. The registry "did not ask to be sold and it was far from fun to be constantly attacked for it, but the work we did supporting the .ORG Community in spite of it was phenomenal," blogged CEO Jon Nevett. PIR plans to expand the .org community to underserved regions in Africa, Latin and Central America and Southeast Asia, he said. Regardless of what ISOC and ICANN do, the matter highlighted the extent to which the current domain name ecosystem "depends on informal understandings of what the various actors are going to do," rather than formal commitments, said Firefox Chief Technology Officer Eric Rescorla. Many who opposed the sale expected ISOC would continue to manage .org in the public interest even though PIR's registry agreement doesn't include such an obligation. The deal's opponents and supporters seemed to have "radically different expectations" about ICANN's role, said Rescorla: "It remains to be seen whether this is an isolated incident or whether this is a sign of a deeper disconnect that will cause increasing friction."

Cisco clarified its privacy policy for Webex videoconferencing after a Consumer Reports study on data protection (see 2005010059), CR said Tuesday. The clarification makes it easy to determine what data is collected and how it’s used, CR said. Cisco didn’t comment.

Congress should support three amendments to the USA Freedom Act, which would strengthen civil liberties against improper intelligence agency spying, said the American Civil Liberties Union Tuesday. ACLU supported amendments (see 2003180042): one from Sens. Mike Lee, R-Utah, and Patrick Leahy, D-Vt.; another from Sens. Steve Daines, R-Mont., and Ron Wyden, D-Ore.; and a third from Sen. Rand Paul, R-Ky. The amendments would stop browsing history spying without probable cause, strengthen independent “friend-of-the-court” provisions before the secret intelligence court, and prevent the “use of the Foreign Intelligence Surveillance Act against people in the United States,” the group said.

Sonos and Tile landed List 4 tariff exclusions for wireless devices imported from China under the Harmonized Tariff Schedule’s 8517.62.0090 subheading. Sonos won exemption for its wireless mesh network audio components. Tile’s exclusion was for a Bluetooth tracking device that meshes with a smartphone app for finding misplaced keys and other common household articles. The exclusions are retroactive to Sept. 1 when List 4 took effect and expire Sept. 1. About 50 exclusion requests were filed for 8517.62.0090 goods, mostly for Bluetooth devices, of which 45 remained in a stage 1 or stage 2 administrative hold when we checked the docket Monday. Sonos landed an exemption on its wireless network speakers in March, as did the Apple Watch and Fitness activity trackers.

The FTC requested comment Friday on potential changes to the health breach notification rule, which dictates data breach guidelines for health record vendors and related entities. Commissioners voted 5-0 to publish a rule review notice in the Federal Register, at which point the agency will accept comment for 90 days. In effect since 2009, the rule requires entities not covered by the Health Insurance Portability and Accountability Act to provide data breach notifications within 60 days after discovery, or 10 days if it affects more than 500 people. The agency is seeking comment on whether the rule is working adequately, in terms of definitions, timing requirements and enforcement implications.

Zoom agreed to implement enhanced data security and user controls, New York Attorney General Letitia James (D) announced Thursday (see 2004070053). The company will maintain a “comprehensive data security program,” increase video access controls for users, update its acceptable use policies and provide additional abuse reporting tools. “Our lives have inexorably changed over the past two months, and while Zoom has provided an invaluable service, it unacceptably did so without critical security protections,” James said. The agreement reflects work Zoom completed during a 90-day security and privacy plan, “including making a number of our pre-existing security features on by default and also introducing new security enhancements,” a company spokesperson emailed.