Meta Platforms Inc. (META) has been slapped with a €91 million ($101.5 million) fine by Ireland’s Data Protection Commission (DPC) for a 2019 security breach involving the storage of hundreds of millions of user passwords in plaintext. The penalty highlights Meta’s ongoing struggles with privacy compliance and adds to a string of GDPR fines the company has faced in recent years.
The European Union’s data protection regulators are investigating Google’s PaLM2 AI model, raising concerns about its handling of personal data in compliance with the GDPR. This investigation is part of a broader trend in Europe where regulators are scrutinizing the use of AI by major tech companies to ensure data privacy.
A hacker group known as RansomHub has claimed responsibility for a cyberattack that targeted Christie’s auction house earlier this month, disrupting its website and forcing it to suspend online bidding during a high-profile spring sales event. RansomHub claims to have accessed sensitive information about wealthy art collectors and threatens to release it if Christie’s fails to reach an agreement, potentially leading to hefty fines under GDPR regulations.
OpenAI is facing another privacy complaint in the European Union, this one targeting ChatGPT’s inability to correct misinformation it generates about individuals. The complaint, filed by privacy rights nonprofit noyb, alleges that ChatGPT violates the bloc’s General Data Protection Regulation (GDPR), which governs how personal data of regional users can be processed. The complaint follows similar actions in Italy and Poland, highlighting the growing regulatory scrutiny of generative AI tools in the EU.
