Data Privacy Roundup

Regulators care about privacy in practice, not just in theory. Simply having a tool or partnership in place isn’t enough to demonstrate effective compliance.

There’s a saying in Texas: “All hat and no cattle.” It means all talk and no action. That idiom does not apply to the folks within the Consumer Protection Division of the Texas attorney general’s office.

Add digital health and wellness publisher Healthline to the growing list of companies hit with fines under California’s privacy law.

A UK-based early-stage startup called Paapi, which just closed its pre-seed funding round last month, is building a platform to help advertisers with privacy-safe ad measurement.

Whatever your take on the FTC’s oddly conditional green light for the Omnicom/IPG merger, one thing’s clear: The agency is being more active than expected.

But publishers have more power than they think to authenticate their audiences – they’ve just gotta learn how to wield it.

Google released a proposal for a Chrome feature called script blocking as part of a broader effort to mitigate API misuse for broader reidentification. In short: It’s a crackdown on fingerprinting in Incognito mode.

Despite all the cookie drama, companies haven’t completely abandoned the Chrome Privacy Sandbox, and BU marketing professor Garrett Johnson has the receipts to prove it.

There’s a reason ad tech is no longer in a position to self regulate. Somewhere along the way, companies forgot to respect their consumers and so regulators stepped in.

Google isn’t a regulator. From an attorney’s point of view, its decrees don’t carry the force of law, and that’s what lawyers are concerned with: the law.