home.social

#compliance — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #compliance, aggregated by home.social.

  1. Hero Sued for CO2 After Saving Earth

    Fined ¥300B for CO2, hero starts a 'garbage sorting arc' after saving Earth.

    #AltAndPaperEN #SDGs #Compliance #Webcomic

  2. Four questions every leader should answer about their data: where is it, who owns it, who has access, what would it cost to leave. We always asked the operational ones. Never the ones that assume the relationship ends.

    #DataLeadership #Governance #Leadership #AI #Compliance

  3. Four questions every leader should answer about their data: where is it, who owns it, who has access, what would it cost to leave. We always asked the operational ones. Never the ones that assume the relationship ends.

    #DataLeadership #Governance #Leadership #AI #Compliance

  4. 🤖🎩 Ah yes, the #AI #Law #Tracker, because nothing screams #accessibility like 841 pages of #bureaucratic bedtime reading! Who knew #compliance could be this thrilling? 🥱📜 Meanwhile, we'll just sit back and let the AI write its own #citations. 🚓💡
    ai-law-tracker.com #reading #HackerNews #ngated

  5. 🤖🎩 Ah yes, the #AI #Law #Tracker, because nothing screams #accessibility like 841 pages of #bureaucratic bedtime reading! Who knew #compliance could be this thrilling? 🥱📜 Meanwhile, we'll just sit back and let the AI write its own #citations. 🚓💡
    ai-law-tracker.com #reading #HackerNews #ngated

  6. Judge: #Trump can’t deport #researchers just for working in #contentModeration

    This week, the Coalition for Independent Technology Research (CITR) won a key battle in its fight to reverse a visa-restriction policy that the Trump administration had used to attempt to revoke #greencards and #deport non-US citizens who work on #misinformation , #disinformation , fact-checking, content moderation, #compliance , and trust and safety.

    In an opinion published Tuesday, US District Judge James Boasberg granted a preliminary #injunction blocking the #StateDepartment from enforcing the policy until the CITR’s lawsuit is resolved.

    On its face, the policy does not require #visa denials or #deportations. Instead, it authorizes #immigration investigations into individuals suspected of helping foreign adversaries attempt to manipulate public opinion by suppressing US speech.
    #privacy #security

    arstechnica.com/tech-policy/20

  7. Judge: #Trump can’t deport #researchers just for working in #contentModeration

    This week, the Coalition for Independent Technology Research (CITR) won a key battle in its fight to reverse a visa-restriction policy that the Trump administration had used to attempt to revoke #greencards and #deport non-US citizens who work on #misinformation , #disinformation , fact-checking, content moderation, #compliance , and trust and safety.

    In an opinion published Tuesday, US District Judge James Boasberg granted a preliminary #injunction blocking the #StateDepartment from enforcing the policy until the CITR’s lawsuit is resolved.

    On its face, the policy does not require #visa denials or #deportations. Instead, it authorizes #immigration investigations into individuals suspected of helping foreign adversaries attempt to manipulate public opinion by suppressing US speech.
    #privacy #security

    arstechnica.com/tech-policy/20

  8. Judge: can’t deport just for working in

    This week, the Coalition for Independent Technology Research (CITR) won a key battle in its fight to reverse a visa-restriction policy that the Trump administration had used to attempt to revoke and non-US citizens who work on , , fact-checking, content moderation, , and trust and safety.

    In an opinion published Tuesday, US District Judge James Boasberg granted a preliminary blocking the from enforcing the policy until the CITR’s lawsuit is resolved.

    On its face, the policy does not require denials or . Instead, it authorizes investigations into individuals suspected of helping foreign adversaries attempt to manipulate public opinion by suppressing US speech.

    arstechnica.com/tech-policy/20

  9. Judge: #Trump can’t deport #researchers just for working in #contentModeration

    This week, the Coalition for Independent Technology Research (CITR) won a key battle in its fight to reverse a visa-restriction policy that the Trump administration had used to attempt to revoke #greencards and #deport non-US citizens who work on #misinformation , #disinformation , fact-checking, content moderation, #compliance , and trust and safety.

    In an opinion published Tuesday, US District Judge James Boasberg granted a preliminary #injunction blocking the #StateDepartment from enforcing the policy until the CITR’s lawsuit is resolved.

    On its face, the policy does not require #visa denials or #deportations. Instead, it authorizes #immigration investigations into individuals suspected of helping foreign adversaries attempt to manipulate public opinion by suppressing US speech.
    #privacy #security

    arstechnica.com/tech-policy/20

  10. Judge: #Trump can’t deport #researchers just for working in #contentModeration

    This week, the Coalition for Independent Technology Research (CITR) won a key battle in its fight to reverse a visa-restriction policy that the Trump administration had used to attempt to revoke #greencards and #deport non-US citizens who work on #misinformation , #disinformation , fact-checking, content moderation, #compliance , and trust and safety.

    In an opinion published Tuesday, US District Judge James Boasberg granted a preliminary #injunction blocking the #StateDepartment from enforcing the policy until the CITR’s lawsuit is resolved.

    On its face, the policy does not require #visa denials or #deportations. Instead, it authorizes #immigration investigations into individuals suspected of helping foreign adversaries attempt to manipulate public opinion by suppressing US speech.
    #privacy #security

    arstechnica.com/tech-policy/20

  11. FCC commissioners grabbing $125,000 skyboxes from #Paramount while voting on its $110B merger is not an ethical gray area—it’s a system built for corporate capture. When the regulators who must hold media companies accountable are also guests of those very firms, impartiality evaporates. This isn’t a lapse; it’s institutional corruption that erodes democracy. We don’t need new laws. The machine works exactly as designed. #RegulatoryCapture #MediaMonopoly #FCC #SurveillanceCapitalism #Compliance

  12. FCC commissioners grabbing $125,000 skyboxes from #Paramount while voting on its $110B merger is not an ethical gray area—it’s a system built for corporate capture. When the regulators who must hold media companies accountable are also guests of those very firms, impartiality evaporates. This isn’t a lapse; it’s institutional corruption that erodes democracy. We don’t need new laws. The machine works exactly as designed. #RegulatoryCapture #MediaMonopoly #FCC #SurveillanceCapitalism #Compliance

  13. Should Companies Audit What Employees Post on Social Media?

    Workplace discussions around responsible social media use are becoming a key part of modern corporate governance. Photo: Vitaly Gariev via Unsplash.

    Dear Cherubs, every employee has a smartphone, a social media account, and, occasionally, the confidence to post something that makes the legal department reach for the aspirin. The question isn’t whether companies notice anymore. It’s whether they should actively monitor what relevant employees post online.

    The answer, in many cases, is yes—but with boundaries.

    WHO COUNTS?

    Not every employee represents a company in the same way. The warehouse worker posting holiday photos isn’t in the same position as the CEO announcing “exciting news” before the stock market opens. A software engineer leaking confidential product details isn’t the same as someone sharing pictures of their dog wearing a tiny hat.

    Roles matter. Executives, senior managers, public relations staff, salespeople, recruiters, customer service representatives, and anyone with access to sensitive information can significantly affect a company’s reputation or even its legal standing.

    According to the U.S. Securities and Exchange Commission, companies must ensure material information is disclosed fairly to investors. One careless post from a senior executive could create regulatory headaches and market confusion.

    THE FINE LINE

    Auditing social media shouldn’t mean turning into Big Brother with a Wi-Fi connection.

    Employers generally have legitimate reasons to monitor public posts when they relate directly to company interests, such as confidential information, harassment, discrimination, threats, or conduct that damages the business. What employees discuss privately with friends or within lawful private spaces is a different matter and may be protected by employment laws or privacy legislation depending on the country.

    That’s where many companies stumble. The goal isn’t to police opinions. It’s to manage risk.

    A sensible social media audit focuses on business-related concerns rather than personal beliefs unrelated to work. Otherwise, the company risks becoming the story instead of preventing one.

    COMMON SENSE WINS

    According to the Society for Human Resource Management (SHRM), many employers already include social media expectations in workplace policies. The best policies are surprisingly boring—and that’s a compliment.

    They explain what confidential information is.

    They remind employees not to imply they speak for the company unless authorised.

    They encourage respectful online behaviour.

    And they outline what happens if someone ignores those rules.

    No mystery. No secret surveillance. Just expectations.

    Training may actually be more valuable than monitoring. Many social media disasters aren’t malicious—they’re accidental. A frustrated employee vents after work. An enthusiastic executive posts too early. Someone shares a client story without realising confidentiality applies online just as much as it does in the office.

    According to thisclaimer.com, digital reputation has become one of the fastest-moving business risks because online content spreads globally in minutes while apologies travel considerably slower.

    The smartest companies therefore treat social media governance like cybersecurity: prevention first, enforcement second.

    Ultimately, companies absolutely should pay attention to what relevant employees publicly post when those posts could affect customers, shareholders, confidential information or the organisation’s reputation. But auditing should never become blanket surveillance of employees’ personal lives.

    Good governance protects both the company and its people. Bad governance simply creates another PR crisis waiting to trend.

    The Thisclaimer logo blends a classic warning symbol with a brain icon to represent critical thinking, curiosity, and thoughtful disclaimers. #businessEthics #Compliance #corporateGovernance #employees #humanResources #leadership #privacy #reputationManagement #socialMedia #Workplace
  14. Should Companies Audit What Employees Post on Social Media?

    Workplace discussions around responsible social media use are becoming a key part of modern corporate governance. Photo: Vitaly Gariev via Unsplash.

    Dear Cherubs, every employee has a smartphone, a social media account, and, occasionally, the confidence to post something that makes the legal department reach for the aspirin. The question isn’t whether companies notice anymore. It’s whether they should actively monitor what relevant employees post online.

    The answer, in many cases, is yes—but with boundaries.

    WHO COUNTS?

    Not every employee represents a company in the same way. The warehouse worker posting holiday photos isn’t in the same position as the CEO announcing “exciting news” before the stock market opens. A software engineer leaking confidential product details isn’t the same as someone sharing pictures of their dog wearing a tiny hat.

    Roles matter. Executives, senior managers, public relations staff, salespeople, recruiters, customer service representatives, and anyone with access to sensitive information can significantly affect a company’s reputation or even its legal standing.

    According to the U.S. Securities and Exchange Commission, companies must ensure material information is disclosed fairly to investors. One careless post from a senior executive could create regulatory headaches and market confusion.

    THE FINE LINE

    Auditing social media shouldn’t mean turning into Big Brother with a Wi-Fi connection.

    Employers generally have legitimate reasons to monitor public posts when they relate directly to company interests, such as confidential information, harassment, discrimination, threats, or conduct that damages the business. What employees discuss privately with friends or within lawful private spaces is a different matter and may be protected by employment laws or privacy legislation depending on the country.

    That’s where many companies stumble. The goal isn’t to police opinions. It’s to manage risk.

    A sensible social media audit focuses on business-related concerns rather than personal beliefs unrelated to work. Otherwise, the company risks becoming the story instead of preventing one.

    COMMON SENSE WINS

    According to the Society for Human Resource Management (SHRM), many employers already include social media expectations in workplace policies. The best policies are surprisingly boring—and that’s a compliment.

    They explain what confidential information is.

    They remind employees not to imply they speak for the company unless authorised.

    They encourage respectful online behaviour.

    And they outline what happens if someone ignores those rules.

    No mystery. No secret surveillance. Just expectations.

    Training may actually be more valuable than monitoring. Many social media disasters aren’t malicious—they’re accidental. A frustrated employee vents after work. An enthusiastic executive posts too early. Someone shares a client story without realising confidentiality applies online just as much as it does in the office.

    According to thisclaimer.com, digital reputation has become one of the fastest-moving business risks because online content spreads globally in minutes while apologies travel considerably slower.

    The smartest companies therefore treat social media governance like cybersecurity: prevention first, enforcement second.

    Ultimately, companies absolutely should pay attention to what relevant employees publicly post when those posts could affect customers, shareholders, confidential information or the organisation’s reputation. But auditing should never become blanket surveillance of employees’ personal lives.

    Good governance protects both the company and its people. Bad governance simply creates another PR crisis waiting to trend.

    The Thisclaimer logo blends a classic warning symbol with a brain icon to represent critical thinking, curiosity, and thoughtful disclaimers. #Compliance #privacy #employees #socialMedia #Workplace #leadership #corporateGovernance #businessEthics #reputationManagement #humanResources
  15. 🎉 Ah, the timeless advice of 2009: Never challenge your overlord, lest you win and still lose! 😏 Because nothing says "righteous" IT crusade like meek #compliance and passive-aggressive submission. Who needs critical thinking when you can just nod along and avoid a corporate spanking? 🙄
    righteousit.com/2009/03/12/nev #timelessadvice #corporateculture #criticalthinking #ITcrusade #passiveaggressive #HackerNews #ngated

  16. 🎉 Ah, the timeless advice of 2009: Never challenge your overlord, lest you win and still lose! 😏 Because nothing says "righteous" IT crusade like meek #compliance and passive-aggressive submission. Who needs critical thinking when you can just nod along and avoid a corporate spanking? 🙄
    righteousit.com/2009/03/12/nev #timelessadvice #corporateculture #criticalthinking #ITcrusade #passiveaggressive #HackerNews #ngated

  17. Videokonferenzen Ende-zu-Ende verschlüsselt mit openVisavid!

    In den Desktop-Apps sorgen wir mithilfe von OpenMLS für echte Ende-zu-Ende-Verschlüsselung in unserer #EnterpriseOpenSource Software.

    Wichtig: Nur mit lokaler #Schlüsselverwaltung über eine Desktop-App gibt es wirkliche Ende-zu-Ende-Verschlüsselung.

    #E2EE #ITSecurity #Compliance #OpenSource #Privacy #Cybersecurity #digitaleSouveränität #Tech #OpenMLS

  18. The @EUCommission wants to hear "from cybersecurity professionals and SME stakeholders on how #standards can best support real‑world #compliance needs under the Cyber Resilience Act." Let's make sure they hear from plenty of people who understand #OpenSource and the #CRA.

    cyberstand.eu/cyberstandeu-pub

  19. The @EUCommission wants to hear "from cybersecurity professionals and SME stakeholders on how #standards can best support real‑world #compliance needs under the Cyber Resilience Act." Let's make sure they hear from plenty of people who understand #OpenSource and the #CRA.

    cyberstand.eu/cyberstandeu-pub

  20. On June 30, 2026, New Jersey quietly enacted one of the most onerous and sweeping data broker regimes in the nation, while simultaneously banning the sale of sensitive data.

    #Privacy #DataBrokers #Compliance #StatePrivacyLaws

    zwillgen.com/alternative-data/

  21. Samsung engineers pasted source code into ChatGPT. Once it's in the prompt, it's gone, that's not a mystery. The real gap: nobody wrote the policy, nobody knew who had access. Fine afterward isn't the same as defensible.

    #DataGovernance #AI #Leadership #InfoSec #Compliance

  22. Samsung engineers pasted source code into ChatGPT. Once it's in the prompt, it's gone, that's not a mystery. The real gap: nobody wrote the policy, nobody knew who had access. Fine afterward isn't the same as defensible.

    #DataGovernance #AI #Leadership #InfoSec #Compliance

  23. As financial crime grows more complex, compliance teams are moving beyond periodic reviews towards continuous, intelligence-driven monitoring. In our latest interview, Ripjar CEO Matt Mills explains how AI, unified screening platforms and continuous risk assessment are reshaping AML and compliance.

    Read the full interview with Matt Mills here: techfinitive.com/interviews/in

    #Banking #Compliance #Finance

  24. MongoDB integriert KI-basierte, compliance-fähige Retrieval-Funktionen direkt in die Datenbank und ermöglicht präzises RAG für regulierte Cloud- und On-Premises-Umgebungen. Mit Voyage-AI-Modellen übertrifft MongoDB aktuelle Benchmarks, verbessert Retrieval-Qualität um bis zu 30 % und vereinfacht den KI-Stack für Entwickler.
    #Aktuell #Produkte #Compliance #Datenbank #MongoDB #Audio
    https://...
    it-finanzmagazin.de/mongodb-st

  25. Dal 1990 a oggi: com'e' cambiato il Security Manager: della Redazione L'11 Maggio 1990 un gruppo di security manager fondo' AIPSA (Associazione Italiana Professionisti della Sicurezza Aziendale) con un obiettivo: valorizzare la figura del security manager nelle aziende pubbliche e private del paese. Obiettivo chiaro e netto ma tutt'altro...
    #AIPSA #SecurityManager #legacy #AlessandroManfredini #compliance dlvr.it/TTPjm3

  26. New post: IT Audit: What It Is and How to Prepare for One
    Covers the security/risk, compliance/governance, and operational continuity objectives auditors assess, plus where IT audits overlap with (and differ from) traditional financial audits.

    It also digs into the tooling stack auditors expect to see evidence from: SIEM, vulnerability scanners, IAM, EDR, DLP, and audit logging platforms, and how centralized log management (hi, Graylog) cuts down the manual evidence-gathering work for lean security teams.
    graylog.org/post/it-audit-what
    #ITAudit #Cybersecurity #Compliance #SIEM

  27. I told them forced consent was unlawful. Five years later it cost Elkjop €1.8 million

    Datatilsynet just fined Elkjop NOK 20 million (€1.8m) for the forced consent in its loyalty club — five years after I told their DPO it was unlawful.

    thatprivacyguy.com/blog/elkjop

    #gdpr #eprivacy #consent #enforcement #loyaltyclubs #SurveillanceCapitalism #spam #adtech #compliance

  28. I told them forced consent was unlawful. Five years later it cost Elkjop €1.8 million

    Datatilsynet just fined Elkjop NOK 20 million (€1.8m) for the forced consent in its loyalty club — five years after I told their DPO it was unlawful.

    thatprivacyguy.com/blog/elkjop

    #gdpr #eprivacy #consent #enforcement #loyaltyclubs #SurveillanceCapitalism #spam #adtech #compliance

  29. Malta is in breach of the EU Treaties — the IDPC has confirmed in writing that no Maltese citizen is protected under the ePrivacy Directive against any tech company not established in Malta

    On 27 April 2026 I lodged a formal complaint with Malta's Information and Data Protection Commissioner against Anthropic. The IDPC has now confirmed in writing that no Maltese citizen has any protection under…

    thatprivacyguy.com/blog/malta-

    #eprivacy #gdpr #charter #malta #idpc #anthropic #phorm #law #compliance

  30. Malta is in breach of the EU Treaties — the IDPC has confirmed in writing that no Maltese citizen is protected under the ePrivacy Directive against any tech company not established in Malta

    On 27 April 2026 I lodged a formal complaint with Malta's Information and Data Protection Commissioner against Anthropic. The IDPC has now confirmed in writing that no Maltese citizen has any protection under…

    thatprivacyguy.com/blog/malta-

    #eprivacy #gdpr #charter #malta #idpc #anthropic #phorm #law #compliance

  31. Malta is in breach of the EU Treaties — the IDPC has confirmed in writing that no Maltese citizen is protected under the ePrivacy Directive against any tech company not established in Malta

    On 27 April 2026 I lodged a formal complaint with Malta's Information and Data Protection Commissioner against Anthropic. The IDPC has now confirmed in writing that no Maltese citizen has any protection under…

    thatprivacyguy.com/blog/malta-

    #eprivacy #gdpr #charter #malta #idpc #anthropic #phorm #law #compliance

  32. Malta is in breach of the EU Treaties — the IDPC has confirmed in writing that no Maltese citizen is protected under the ePrivacy Directive against any tech company not established in Malta

    On 27 April 2026 I lodged a formal complaint with Malta's Information and Data Protection Commissioner against Anthropic. The IDPC has now confirmed in writing that no Maltese citizen has any protection under…

    thatprivacyguy.com/blog/malta-

    #eprivacy #gdpr #charter #malta #idpc #anthropic #phorm #law #compliance

  33. Malta is in breach of the EU Treaties — the IDPC has confirmed in writing that no Maltese citizen is protected under the ePrivacy Directive against any tech company not established in Malta

    On 27 April 2026 I lodged a formal complaint with Malta's Information and Data Protection Commissioner against Anthropic. The IDPC has now confirmed in writing that no Maltese citizen has any protection under…

    thatprivacyguy.com/blog/malta-

    #eprivacy #gdpr #charter #malta #idpc #anthropic #phorm #law #compliance

  34. Google quietly removes the on-device AI privacy assurance from Chrome's Settings UI

    Google has quietly removed the privacy assurance from Chrome's on-device AI Settings UI. The sentence promising that the model runs locally without sending data to Google's servers has been deleted, and the toggle moved out of the System block to reduce the chance the change is noticed. There are three plausible reasons for tha…

    thatprivacyguy.com/blog/google

    #ai #chrome #consent #compliance #eprivacy #gdpr #google

  35. Google quietly removes the on-device AI privacy assurance from Chrome's Settings UI

    Google has quietly removed the privacy assurance from Chrome's on-device AI Settings UI. The sentence promising that the model runs locally without sending data to Google's servers has been deleted, and the toggle moved out of the System block to reduce the chance the change is noticed. There are three plausible reasons for tha…

    thatprivacyguy.com/blog/google

    #ai #chrome #consent #compliance #eprivacy #gdpr #google

  36. Google's "Boss" of Chrome gaslights on unlawful Nano push

    Google's Chrome boss Parisa Tabriz tells the press that users can simply opt out of the unsolicited Gemini Nano install. Google's own Chrome manifest proves the opposite. Chrome reached into the device, flipped the flag, downloaded the 4 GB model and only then surfaced the settings UI after the fact. Opt-out is not the legal standard here — opt-in is. This piec…

    thatprivacyguy.com/blog/google

    #ai #chrome #consent #compliance #eprivacy #google