Meta pauses its employee mouse-tracking program over data-security fears

Actress Cate Blanchett launches a free registry tool to keep AI from using your likeness

Nữ diễn viên Cate Blanchett và nghị sĩ Eva Maydell đã ra mắt Human Consent Registry tại Nghị viện Châu Âu, một công cụ miễn phí giúp người dùng đặt điều kiện về cách AI sử dụng hình ảnh, giọng nói và tên tuổi của họ. Mặc dù không có tính pháp lý bắt buộc, registry này cung cấp điểm tham chiếu minh bạch cho sự đồng thuận, mở rộng cho cá nhân, đại lý và tổ chức.

Những người lập trình viên cần đọc bài này để hiểu cách bảo vệ quyền riêng tư và quyền sở hữu trí tuệ của người dùng trong ứng dụng AI, từ đó xây dựng hệ thống quản lý consent hiệu quả hơn trong các dự án tương tương tương tác với dữ liệu cá nhân.

Canadian workers have few defences against workplace surveillance

TD Bank's deployment of WorkiQ to monitor employees in financial-crimes and risk-management roles has highlighted a significant legal gap in Canada. Unlike the EU's GDPR-based protections, Canadian workers — especially in Ontario and other provinces without substantially similar federal privacy legislation — have almost no statutory right to object to or limit workplace surveillance. Ontario's 2022 law only requires employers to disclose monitoring policies, not to restrain them. TD had also initially planned to use employee keystroke and mouse-movement data for AI training, scaling back only after internal pushback — a pattern also seen at Meta. The broader trend points to employers harvesting how people work as raw material for AI models, with legal frameworks lagging far behind.

Meta pauses employee monitoring program after data protections fail

Meta has paused its Model Compatibility Initiative (MCI), an employee monitoring program launched in April that collected keystrokes, mouse movements, screen content, and private conversations to train AI models. Unauthorized employees accessed restricted MCI data on June 18, and after Meta claimed to have fixed the vulnerability, the breach recurred. Security analysts criticize the inadequate access controls, noting that the highly sensitive behavioral data was not classified as PII, which may have led Meta to underestimate its risk level. Experts warn that beyond the data exposure itself, the trust damage among employees — who now doubt leadership's data protection commitments — poses a lasting organizational risk.

The smart TV in your living room is training AI - here's how to stop it

Smart TVs are being used as residential proxies for AI training data scrapers, enabled by hidden consent buried in app Terms and Conditions. Research by Include Security reveals that Bright Data's SDK — embedded in apps on smart TVs and cable boxes — routes up to 200 GB of web scraping traffic through your home network. The SDK ships as an unauthenticated public endpoint, meaning unauthorized users could also exploit it. VPNs won't stop it since the SDK bypasses virtual interfaces. The fix is to block specific Bright Data domains via DNS (Pi-hole, AdGuard, Technitium) or add TLS SNI filters on a hardware firewall. Five specific domains and three wildcard patterns are provided to block the proxy tunnels.

TensorX raises €8M to build sovereign AI inference for Europe on Nvidia Blackwell

TensorX, an Irish startup, has raised €8M to purchase Nvidia Blackwell B300 GPUs and expand its GDPR-compliant AI inference platform across Europe. The platform targets regulated industries — banks, hospitals, and law firms — that cannot send data outside European jurisdiction. It supports over 33 open-weight models and offers an OpenAI-compatible API. The funding comes primarily from Darius Cubed Ventures, with most capital going toward hardware rather than headcount. TensorX operates from Dublin and Helsinki, with expansion planned across Ireland, UK, Germany, France, and the Nordics. The article also notes the inherent tension in 'sovereign AI' claims when the underlying silicon stack remains American (Nvidia) and Asian.