GigaTap articles tagged privacy.
- US Government AI Inventory Raises Privacy Questions - US agencies list 3,611 AI use cases, exposing gaps in transparency and raising questions about automated decision-making and privacy.
- Canada’s Bill C-22 Pushes Encryption Toward Built-In Access Risk - Bill C-22 expands surveillance powers in Canada and introduces mechanisms that could force access paths into encrypted systems, raising structural privacy
- Schibsted Pay or Okay raises consent legality questions - Schibsted’s Pay or Okay rollout faces a complaint in Norway over whether paid opt-outs still count as freely given consent under GDPR.
- California Targets Surveillance Pricing and Privacy Risk - A California bill would ban surveillance pricing, where personal data influences what customers pay for the same product.
- EFF restarts LGBT Q&A Season 2 for digital privacy questions - EFF brings back LGBT Q&A Season 2, focusing on privacy risks, surveillance exposure, and anonymous digital rights questions.
- SignalTrace ALPR: From vehicle tracking to identity graphs - Roadside ALPR systems are merging plate reads with device signals, shifting surveillance from vehicles to probabilistic identity inference.
- Koofr Vault and the Trust Shift Behind Zero-Knowledge Storage - A look at Koofr Vault's open-source, zero-knowledge design, what it changes in the trust model, and what users should verify before relying on it.
- Age-Gates Turn Access Into a Privacy Check - Age-gates are expanding from youth-safety policy into an identity-exposure problem for ordinary internet users.
- AI Speeds Up Bug Discovery. Repair Is the Real Test - AI can make vulnerability discovery faster than disclosure and patch workflows can absorb. The privacy risk sits in old systems, weak inventory, and slow r
- CA's AB 1856: Open-Source Relief Amid Wider Age-Gating Risks - AB 1856 exempts open-source OS from age-gating but extends obligations to browsers and websites, raising privacy risks.
- FBI Crime Data Highlights Persistent Privacy Risks - The FBI’s latest Internet Crime Report offers a practical view of how identity exposure, fraud, and privacy failures continue to drive online crime.
- Tails 7.8 Fixes a Security Weak Point - Tails 7.8 addresses privilege-escalation vulnerabilities and changes how Thunderbird updates are delivered to reduce security lag.
- Age Checks Turn Web Access Into Identity Exposure - EFF warns that age verification mandates create new privacy risk by forcing users to disclose sensitive identity data just to access the web.
- AI Opt-Outs Are Starting to Look Like Data-Broker Playbooks - A new study argues that major AI providers are adopting privacy opt-out patterns long criticized in the data-broker industry. The key issue is not whether
- Android VPN leaks can still happen below the app layer - Mullvad says an Android 16 bug can let apps send certain QUIC traffic outside the VPN tunnel, even with Android’s strongest VPN blocking settings enabled.
- Encrypted Messaging Got a Win. Check the Fine Print - EFF’s latest note highlights progress for end-to-end encrypted messaging. The real question is where the protection starts, where it stops, and what users
- Monero GUI 0.18.5.0: small fixes, real wallet edges - Monero GUI 0.18.5.0 is a recommended maintenance release with fixes around URI parsing, QR handling, offline transactions, and Windows P2Pool paths. Verify
- Tails 7.8 closes privilege-escalation paths - Tails 7.8 fixes kernel and haveged vulnerabilities that could let an application gain admin privileges. Existing users should upgrade carefully to preserve
- Statement end: why ISS World Europe now needs scrutiny - EDRi’s call to cut ties with ISS World Europe turns a surveillance trade fair into an operational due-diligence problem for public bodies, universities, an
- Why Vermont's Privacy Bill Is Facing Privacy Advocate Opposition - EPIC and Consumer Reports say Vermont's S. 71 would weaken existing privacy protections, raising questions about what the bill actually changes.
- A Bluetooth Name Turned a United Flight Into a Security Event - United flight 236 returned to Newark after a Bluetooth speaker name raised security concerns. The lesson is operational: visible device names are not priva
- AgentStop shows the hidden cost of local AI agents - Brave’s AgentStop research highlights a practical browser security issue: local AI protects data from cloud logs, but failed agent loops can drain endpoint
- Boston Children’s AI case: useful signal, hard checks - Boston Children’s uses OpenAI technology in care and operations, including rare disease diagnosis support. The real test is governance, privacy, and workfl
- Local AI on iPhone: useful privacy, real limits - Engadget’s guide shows local iPhone chatbots are now practical, but the trade is clear: more privacy and offline use, less cloud-level power.
- EPIC Coalition Targets ALPR Creep With a Tolling-Only Line - EPIC and more than 40 groups are urging Congress to limit automatic license plate readers to tolling. The practical issue is purpose control, not just data
- What behind EU digitalisation: rights or control? - EDRi argues the EU’s digitalisation push is not just a service upgrade. The operational risk sits in identity, welfare access, health data reuse, and syste
- When Privacy Risk Becomes a Chilling Effect - Schneier’s item points to a sharper privacy issue: people may stop acting publicly when identity exposure feels durable, searchable, and costly.
- Czech stadium facial recognition hits a legal push back - A Prague derby security failure triggered calls for facial recognition. The push back shows why biometric systems need legal and operational checks first.
- Failed YouTube warrants exposed a wider privacy risk - Unsealed records show failed warrants targeting journalists’ YouTube accounts. The key risk is not only press freedom, but platform metadata and sealed pro
- Bill C-22 makes VPN metadata a security issue - Tailscale warns that Canada’s Bill C-22 could push secure services to collect more data, retain more metadata, and build new access paths.
- Plate Readers Are Becoming School Residency Tools - EFF’s ALPR audit-log analysis shows police using Flock Safety data for school residency checks and other low-level matters, not only serious crime.
- Open Source Is a Security Model, Not a Slogan - Guardian Project argues that high-risk privacy tools should be inspectable by design. The useful point is not that open source is automatically safe, but t
- Internet Shutdowns Need a Plan Before the Cut - EFF’s guide is less about one magic app and more about preparation: radios, mesh tools, email fallbacks, satellite links, and the limits of each.
- Tor Browser 15.0.14: a small update worth installing - Tor Browser 15.0.14 brings Firefox ESR and GeckoView updates plus security backports. It is a maintenance release, but users should patch promptly.
- Local Government Cyber Risk Is Now a Data-Rights Fight - CDT’s House testimony frames state and local cybersecurity as a privacy and public trust issue, especially if federal support weakens.
- Secure file sharing is only useful if it can be proven - Many businesses claim secure file sharing. The real test is whether access, encryption, link expiry, logging, and offboarding hold up in daily work.
- Privacy Should Not Be Set in a Product Meeting - EFF’s latest note is a reminder that privacy risk is often decided before users see the product. The issue is bigger than one Meta feature.
- Tor tests crypto funding for internet freedom tools - Tor and Funding the Commons launched a crypto-native matching campaign for privacy, anti-censorship, and public-interest infrastructure projects.
- Surveillance Pricing Moves Into New Jersey’s Policy Lane - EPIC backed a New Jersey bill targeting surveillance pricing. The key issue is not only data collection, but how hidden profiling can shape the price a con
- EFF’s email tracking change tests consent in practice - EFF says most privacy policy changes are clarifications, but one new option matters: explicit opt-in tracking for email opens and clicks.
- Surveillance Abuse Needs Hard Limits - EFF’s new guide argues that weak oversight, vague laws, and poor remedies are letting digital surveillance abuses become routine in the Americas.
- AI Abuse Starts With Ordinary Data - A professional headshot and a private phone number show the same AI-era risk: data shared for one purpose can be reused in ways people never consented to.
- 3D Printer Censorware Is a Privacy Problem - EFF warns California A.B. 2047 could turn 3D printers into locked-down, permissioned devices with DRM-style control.
- ALPR Mission Creep Is Already Writing Tickets - A Georgia phone-use citation shows how license plate reader networks drift from “serious crime” tools into everyday enforcement.
- Utah’s Digital ID Has a Loyalty Problem - Utah frames digital ID as modernization, but the real issue is who the system is built to serve when access and control collide.
- Age Gates Are Becoming Speech Control - California’s social media ban debate shows how age verification can become a privacy and free-speech control layer.
- Online Tracking Is Becoming a Surveillance Pipeline - EFF’s warning is not just about creepy ads. Commercial trackers and data brokers can turn ordinary browsing and location data into a shortcut for governmen
- Canada’s C-22 Revives the Backdoor Fight - EFF says Canada’s Bill C-22 keeps core risks from an earlier surveillance bill: metadata retention, secret access orders, and unclear limits around encrypt
- A Free Signal Guide Worth Passing Along - EFF is offering a free Signal guide in English and Spanish, plus short companion guides, to make secure messaging easier to adopt and share.
- DRØGR asks F-Droid for help without giving up opsec - A developer is asking the F-Droid community to package DRØGR, a serverless P2P messenger that claims zero-persistence design and traffic-resistance feature
- Tor Browser 16.0a6 alpha: updates in, but testing risk stays - Tor Browser 16.0a6 is out on the Alpha channel with Firefox security updates and dependency bumps. Tor Project reiterates: Alpha is for testing, not for at
- apkeep hits 1.0.0 as Android app research gets steadier - EFF says apkeep has reached a stable 1.0.0 release, with new Play Store handling, more metadata support, and continued use in Android research workflows.
- EU Chat Control 1.0 Failed Over Safeguards, Not Just Politics - The EU’s interim ePrivacy derogation collapsed because lawmakers could not agree on surveillance limits, not because one side dismissed child safety.
- How to Use fingerprint-suite for Safer Browser Scraping - Learn how to generate realistic browser fingerprints with fingerprint-suite for Playwright and Puppeteer scraping.
- Stateless Tor Relays: Why Tor Wants Seized Servers to Remember Nothing - Tor’s stateless relay model aims to make confiscated hardware far less useful by removing disk state from the trust equation.
- Surveillance for Sale Threatens Press Freedom - When agencies buy app-derived location data, they don’t just dodge warrants—they gain a map to journalists’ sources.
- Section 702 Renewal and VPN Users: The Practical Surveillance Risk Nobody Should Ignore - Section 702 renewal could widen surveillance risk for VPN users if their traffic or identity is treated as foreign under US law.
- How Governments Weaponize 'Safety' Laws to Silence Activists and Journalists - EFF exposes the global pattern: governments mask censorship as cybercrime prevention, targeting human rights defenders under the guise of online safety.
- AdGuardHome: Block Ads & Trackers Across Your Network - Learn how to quickly set up AdGuardHome to block ads and trackers network-wide—safer, faster browsing for every device on your network.
- AI Privacy Practical Risks - Overview: where AI systems leak sensitive signals and which mitigations pay off first.
- Browser Hardening Without Breakage - Practical tutorial: browser setup in 30 minutes with minimal breakage and stable privacy gains.
- OPSEC for Everyday Use - Practical guide: daily OPSEC routines that reduce accidental identity leaks without hurting usability.
- Threat Modeling for Regular Users - Guide: build a personal threat model in one session and choose controls that match real risk.
- Secure Comms & Metadata - Overview: what encryption protects, what metadata leaks, and which habits close the gap.
- Digital Footprint Cleanup Checklist - Checklist: identify and reduce the biggest identity traces across public and social platforms.