The House Commerce Committee on Thursday unanimously passed legislation (see 2403050051) that could lead to a U.S. ban on the popular Chinese-owned social media app TikTok. The legislation is poised for floor action after gaining public support from House Speaker Mike Johnson, R-La., on Thursday.
The House Commerce Committee on Thursday will mark up two national security-related bills targeting TikTok, including one from Chair Cathy McMorris Rodgers, R-Wash., and ranking member Frank Pallone, D-N.J.
President Joe Biden on Wednesday signed an executive order directing DOJ to establish rules blocking large-scale transfers of Americans’ personal data to entities in hostile nations.
Avast misrepresented itself and sold user data without consent, the FTC alleged in a $16.5 million settlement announced with the U.K.-based software company Thursday. Since at least 2014, Avast has collected consumer browsing data through its browser extensions and antivirus software, according to the FTC complaint. Until 2020, Avast’s subsidiary Jumpshot sold the browsing information to more than 100 third parties, including “advertising, marketing and data analytics companies and data brokers,” the agency said. The company claimed it used an algorithm that removed identifying information but failed to “sufficiently anonymize consumers’ browsing information that it sold in non-aggregate form through various products,” the agency said. Chair Lina Khan said in a joint statement with Commissioners Rebecca Kelly Slaughter and Alvaro Bedoya: “Exposing people’s detailed browsing data in ways that can be traced back to them marks an invasion of privacy and is likely to cause substantial injury. ... Businesses that sell or share browser history data without affirmatively obtaining people’s permission may be in violation of the law.” An attorney for Avast didn't comment.
The lower 3 GHz band, a top target for wireless carriers for reallocation for full-power licensed use, remains critical to DOD as well, DOD Chief Information Officer John Sherman said Thursday at NTIA's spectrum policy symposium. The band is one of five targeted for study in the national spectrum strategy (see 2311130048).
Director of National Intelligence Avril Haines should direct intelligence agencies to limit purchases of data about Americans when collection of the data meets FTC standards, Sen. Ron Wyden, D-Ore., wrote in a letter Thursday. Wyden released documents he said confirm that the NSA “buys Americans’ internet records, which can reveal which websites they visit and what apps they use.” He noted the FTC issued a recent order (see 2401090081) holding “that data brokers must obtain Americans’ informed consent before selling their data.” The federal government shouldn’t be “funding and legitimizing a shady industry whose flagrant violations of Americans’ privacy are not just unethical, but illegal,” Wyden wrote. “To that end, I request that you adopt a policy that, going forward, IC elements may only purchase data about Americans that meets the standard for legal data sales established by the FTC.” He urged the DNI to direct agencies to inventory purchased data, determine whether it meets FTC standards, and purge whatever doesn’t. DNI didn’t comment.
The FTC is examining Alphabet, Amazon and Microsoft to see if they are unfairly exerting undue control over AI markets, Chair Lina Khan announced Thursday.
Passing a data broker registration bill would help Washington state better understand the industry's scope, Rep. Shelley Kloba (D) said Friday as the state’s House Consumer Protection Committee heard testimony on Kloba’s HB-2277 during a livestreamed hearing. The bill would require data brokers to register with the state. Submitted information would appear on a public website. Brokers are selling data that people generate during daily activities online, through connected devices and while driving cars, said Kloba: It often happens without a person’s permission. The committee also mulled multiple AI bills, including HB-1934, which would establish an AI task force and HB-1951, which attempts to prevent algorithmic discrimination. "Sometimes we have to put guardrails around things to protect people's civil liberties and to keep people safe,” said HB-1934 sponsor Rep. Travis Couture (R). Rep. Clyde Shavers (D) said his HB-1951 is an “incremental first step to make sure that the use of artificial intelligence helps, not harms us."
Most early comments supported a proposal in a November FCC NPRM letting schools and libraries apply for funding from the E-rate program for Wi-Fi hot spots and wireless internet access services that can be used off-premises. The agency approved the NPRM 3-2, with Commissioners Brendan Carr and Nathan Simington dissenting (see 2311090028). Comments were due Monday in docket 21-31.
The California Privacy Protection Agency, the nation's first dedicated privacy regulator, has “many investigations underway,” Executive Director Ashkan Soltani said at a partially virtual CPPA board meeting Friday. Soltani estimated that the agency has received about 100 complaints from consumers since forming in 2021. The CPPA’s data broker registry is up and running after a 2023 bill transferred it to the agency from the California DOJ, Soltani said. Many have since registered and CPPA plans to publish a list of registrants in March, he said. Staff is preparing a proposed rulemaking package including cybersecurity risk assessments, automated decision-making technology for the next board meeting, said Soltani: Staff is incorporating feedback from board members after the Dec. 8 meeting (see 2312080064). In addition, staff is writing draft language and speaking with possible legislative authors for a potential bill that would require browser vendors to let users exercise their California privacy rights through a global opt-out signal, said Maureen Mahoney, deputy director-policy and legislation. “We’re confident that we have adequate resources to effectively sponsor the bill.” CPPA's board voted at last month’s meeting to advance the legislative proposal. The board considered a draft 2024-27 strategic plan with the mission statement: “Protect consumers’ privacy, ensure that businesses and consumers are well-informed about their rights and obligations, and vigorously enforce the law against businesses that violate consumers’ privacy rights.”