Europese banken en fondsen investeerden eind 2025 minstens 27 miljard dollar in Palantir Technologies, ondanks zware kritiek op mensenrechten en democratische waarden. Het aandeel van Europese investeerders groeide met ruim 60%, terwijl het bedrijf gelinkt blijft aan surveillance, militaire operaties en migratiebeleid. Experts waarschuwen dat deze investeringen indirect een anti-democratische agenda versterken, mede door nauwe […]
De Autoriteit Persoonsgegevens waarschuwt dat de aanpak van schulden steeds vaker ten koste gaat van privacy. Bij vroegsignalering worden kleine betalingsachterstanden al snel gezien als problematische schulden.Gegevensdeling gebeurt regelmatig zonder duidelijke kaders of medeweten van betrokkenen. Ook ontstaan initiatieven buiten de wet, die soms overgaan in ongewenste bemoeizorg. De AP roept op tot strengere naleving […]
On 23 February 2026, a coalition led by the Global Privacy Assembly warned about AI systems generating realistic images and videos of individuals without consent. They highlighted rising harms such as non-consensual intimate imagery, defamation, cyberbullying, and risks to children. Organizations are urged to follow privacy laws, build strong safeguards, ensure transparency, and provide fast […]
Switzerland rejected Palantir after a technical review found data leakage cannot be reliably prevented—an architectural, not legal, flaw. The concern isn’t analytics power, but loss of control over data flows, updates, access, and revocation. Germany faces a contradiction: promoting digital sovereignty while using Palantir in several federal states. Bavaria’s Palantir-based VeRA system triggered legal challenges, […]
Simple prompt injections can trick LLM agents into exposing sensitive personal data. Even with safeguards, attackers extract details like balances, transactions, or identifiers. Such attacks succeed in ~20% of cases and degrade agent performance by 15–50%. Defensive measures exist but remain incomplete, leaving users exposed. Bottom line: data sovereignty requires stronger guardrails. Trusting LLMs “as […]
The Austrian Federal Administrative Court confirmed that DerStandard’s “Pay or Okay” model breaches the GDPR. Users had to either accept tracking by hundreds of third parties or pay a subscription. Authorities ruled that this coercive model invalidates consent, which must be free and specific. Real consent rates drop to 1–7% when asked transparently, but the […]
Researchers found millions of passports, credit cards, résumés, and faces in DataComp CommonPool, a massive AI training dataset scraped from the web. Auditing just 0.1% revealed hundreds of millions of likely PII (personally identifiable information) items, including sensitive job and health details. Despite face-blurring tools, researchers estimate 102 million faces were missed, and metadata/captions still […]
The U.S. Federal Trade Commission (FTC) is emailing 3.7 million Avast customers, informing them they may be eligible for compensation due to Avast’s deceptive privacy practices. Avast collected and sold users’ browsing data without proper consent while falsely claiming its software protected privacy. The FTC ruled that this practice violated U.S. law. Avast’s data was […]
Apple has stopped offering end-to-end encrypted iCloud backups in the UK due to government demands. UK authorities issued a Capability Notice requiring Apple to provide access to encrypted backups. As a result, the ‘Advanced Data Protection’ feature, which enables full encryption, will no longer be available to new UK users. Existing UK users who already […]
Wiz Research uncovered a publicly accessible ClickHouse database belonging to DeepSeek, a Chinese AI startup. The database exposed over a million sensitive log entries, including chat history, API keys, and backend details. The database was entirely open, allowing full control without authentication. This posed severe security risks, making it vulnerable to unauthorized access and potential […]