gdpr

They Didn't Get Your Password. They Got Everything Else.

John Z Black Apr 13, 2026

Incidents & Breaches #data-breach #booking.com #basic-fit #phishing #consumer-security #gdpr #social-engineering

Booking.com forced PIN resets. Basic-Fit disclosed a breach hitting roughly one million EU gym members. No passwords were stolen, both companies say. That's not the reassurance it sounds like.

LinkedIn's Been Scanning Your Chrome Extensions. All 6,000 of Them.

John Z Black Apr 4, 2026

Privacy & Digital Rights #linkedin #microsoft #browser-fingerprinting #chrome-extensions #gdpr #privacy

Research confirmed LinkedIn scans for 6,236 Chrome extensions and fingerprints your browser without telling you. Microsoft says it's for your protection. The extension list says otherwise.

Europe's Biggest Tech Fines Are Getting Overturned in Court

John Z Black Mar 17, 2026

Policy, Law & Governance #gdpr #amazon #cloudflare #eu-regulation #privacy #piracy-shield #italy #policy

Amazon just got a $858 million GDPR fine thrown out. Cloudflare is fighting Italy's Piracy Shield. Big Tech's legal teams are now the real counterparty to European regulation.

When 'No' Means Nothing: Privacy Erosion from DHS Surveillance to Duolingo Tracking

John Z Black Mar 11, 2026

Privacy #privacy #surveillance #dhs #duolingo #bytedance #gdpr #tracking

DHS fired the privacy officers who questioned surveillance orders. Duolingo keeps sending your data to ByteDance after you opt out. Your 'no' doesn't work when nobody's enforcing it.