{"id":8689,"date":"2024-06-05T09:43:31","date_gmt":"2024-06-05T07:43:31","guid":{"rendered":"https:\/\/s8.tgin.eu\/?p=8689"},"modified":"2024-06-05T09:43:32","modified_gmt":"2024-06-05T07:43:32","slug":"data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training","status":"publish","type":"post","link":"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/","title":{"rendered":"Data protection digest 18 May &#8211; 2 Jun 2024: decentralised clinical research, Meta\u2019s new virtual assistant"},"content":{"rendered":"\n<p><em>In this issue, the personal data lifecycle in decentralised clinical research, Meta\u2019s new AI chatbot, protections for organisations against data scraping, failed backup testing and spreadsheet error real examples, and much more.<\/em><\/p>\n\n\n\n<p><em><a href=\"#newslettersignup\">Stay up to date! Sign up to receive our fortnightly digest via email.<\/a><\/em><\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Decentralised clinical research<\/h4>\n\n\n\n<p>To support <a href=\"https:\/\/www.cnil.fr\/fr\/essais-cliniques-decentralises-lancement-dune-phase-pilote-par-la-dgs-la-dgos-lansm-et-la-cnil\">sponsors in designing their decentralised clinical research projects<\/a>, the French data protection authority CNIL with other state agencies set up a pilot project, (from January to September 2024). 20 selected projects will receive targeted support and updated guidance, looking especially at the entire lifecycle of personal data processing:&nbsp;<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Roles and responsibilities, (oversight of incoming data);<\/li>\n\n\n\n<li>Informed consent process, (interviews, leaflets, signatures);<\/li>\n\n\n\n<li>Delivery of investigational products, (safety data, biological sample handling, home visits etc);<\/li>\n\n\n\n<li>Data collection and management, (defining and handling source data);<\/li>\n\n\n\n<li>Trial monitoring, (remote access).<\/li>\n<\/ul>\n\n\n\n<p>In December 2022, the Commission published <a href=\"https:\/\/www.garanteprivacy.it\/home\/docweb\/-\/docweb-display\/docweb\/9997208\">the European recommendations on decentralised clinical trials<\/a>. It came after the COVID-19 pandemic, highlighting the importance of digital tools and decentralisation procedures in health research projects.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Meta\u2019s AI virtual assistant under investigation in the EU<\/h4>\n\n\n\n<div class=\"wp-block-media-text is-stacked-on-mobile\" style=\"grid-template-columns:30% auto\"><figure class=\"wp-block-media-text__media\"><img decoding=\"async\" src=\"https:\/\/lh7-us.googleusercontent.com\/docsz\/AD_4nXfjvYJoVgpWfw7hsK0zxbd65Huk3KvQ7e9cINGn_8o8GWxvd2G7Zwz3y3Fl7IMcL1hLS80JJ_GkY8P0YG2wl-Nmu_mdoBMNuqJgI_Tl_yeKn-ppEYc3quVKsqL-8cRQYZQjCK73I72Gvxj0pu4Gf9MF2jgW?key=iPFMtWGCC7Bid9B14EqoGQ\" alt=\"\" \/><\/figure><div class=\"wp-block-media-text__content\">\n<p><\/p>\n\n\n\n<p>Norway\u2019s data protection regulator reports that as of June 26, posts and photos on Facebook, (often of a private nature), and Instagram will be used to develop and improve <a href=\"https:\/\/www.washingtonpost.com\/technology\/2024\/04\/18\/meta-ai-facebook-instagram-misinformation\/\">Meta&#8217;s AI<\/a> assistant service. This won&#8217;t include private messages to friends and family. Reportedly, <a href=\"https:\/\/www.datatilsynet.no\/aktuelt\/aktuelle-nyheter-2024\/meta-vil-bruke-brukernes-bilder-og-innlegg-til-a-utvikle-ki\/\">Meta believes that the company does not need to ask for users&#8217; consent since their interest in using the content outweighs<\/a> the users&#8217; interests and rights. The regulator has already received a complaint and started an investigation into the new practice and expects that there will be more complaints, both in Norway and in Europe.&nbsp;<\/p>\n<\/div><\/div>\n\n\n\n<p>At the moment individuals in Norway can only object to it in a dedicated form on Facebook and Instagram if they wish.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Protections against Data Scraping<\/h4>\n\n\n\n<p>The Italian data protection authority has issued nonmandatory guidance on <a href=\"https:\/\/www.garanteprivacy.it\/home\/docweb\/-\/docweb-display\/docweb\/10019984#english\">how to protect personal data published online by public and private entities in their capacity as data controllers<\/a> from web scraping. It particularly targets the indiscriminate collection of personal data on the internet, carried out by third parties for training generative AI models. Some concrete measures, (taking into account the latest technology and the costs of implementation, in particular for SMEs) may include:&nbsp;<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>creation of areas, accessible only upon registration, to remove data from public availability;<\/li>\n\n\n\n<li>the inclusion of anti-scraping clauses in the terms of service of websites;&nbsp;<\/li>\n\n\n\n<li>the monitoring of traffic to web pages, to identify any abnormal flows of incoming and outgoing data;&nbsp;<\/li>\n\n\n\n<li>the technological solutions made available by the same companies responsible for web scraping, (eg, intervening on the robots.txt file).<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">Other official guidance<\/h4>\n\n\n\n<p><strong>Data collection:<\/strong> <a href=\"https:\/\/www.odpa.gg\/information-hub\/guidance\/data-collection\/\">Getting data collection right is a key to your overall GDPR compliance<\/a>, as once you have understood and complied with the principles of your data collection, the same principles apply throughout the lifecycle of what you do with the data you have, explains the Guernsey data protection authority. It also offers <a href=\"https:\/\/www.odpa.gg\/information-hub\/guidance\/data-collection\/\">new guidance regardless of the collection method<\/a>, (in-person interviews, emails, online forms, paper forms, video surveillance, social media activity, phone calls etc).&nbsp;<\/p>\n\n\n\n<p><strong>Dynamic data security:<\/strong> <a href=\"https:\/\/www.odpa.gg\/news\/news-article\/?id=a743de14-9a0e-ef11-9f89-6045bd92457b\">Data security measures must be viewed as dynamic, as opposed to a static, obligation<\/a>, according to the Guernsey regulator. In its latest statistical research, the agency found that the long-established trend of emails being sent to the wrong person continues to be the most common reported breach. At the same time, the vast majority of breaches were still discovered by individuals, and not through system auditing or testing. The regulator requests a deeper understanding of the potential associated harms, ranging from &#8220;loss of confidentiality&#8221; to &#8220;emotional distress,&#8221; to properly assess the risk of such incidents.&nbsp;<\/p>\n\n\n<div id=\"newslettersignup\"><\/div>\n<div id=\"role-block_c9a5f5e27f723c86c073bfe53ff5a0d4\" class=\"text-t-black bg-t-pink p-6 md:p-12 rounded-tr-50 rounded-bl-50 mb-4 lg:mb-12 text-center role\">\n  \n      <h2 class=\"text-xl lg:text-2xl max-w-screen-lg mx-auto text-t-black font-display mb-4\">\n      Receive our digest by email    <\/h2>\n        <h3 class=\"text-base max-w-screen-lg mx-auto text-t-black font-body mb-4\">Sign up to receive our digest by email every 2 weeks<\/h3>\n  \n  <div id=\"rmOrganism\">\n    <div class=\"rmEmbed rmLayout--vertical rmBase\">\n      <div data-page-type=\"formSubscribe\" class=\"rmBase__body rmSubscription\">\n                  <form method=\"post\" action=\"https:\/\/mailing.techgdpr.com\/145\/6351\/5e9fc3cdda\/subscribe\/form.html?_g=1698845230\" class=\"rmBase__content\">\n                  <div class=\"rmBase__container mx-auto max-w-screen-sm\">          \n            <div class=\"rmBase__section\">\n              <div class=\"text-left rmBase__el rmBase__el--input rmBase__el--label-pos-none\" data-field=\"email\">\n                <label for=\"email\" class=\"rmBase__compLabel rmBase__compLabel--hideable hidden\">\n                  Email address\n                <\/label>\n                <div class=\"rmBase__compContainer mb-2\">\n                  <input type=\"text\" name=\"email\" id=\"email\" placeholder=\"Email\" value=\"\" class=\"p-4 border rounded border-gray-400 w-full rmBase__comp--input comp__input\">\n                  <div class=\"rmBase__compError text-left font-display font-bold text-xs\"><\/div>\n                <\/div>\n              <\/div>\n            <\/div>\n            <div class=\"rmBase__section mb-4\">\n              <div class=\"rmBase__el rmBase__el--consent\" data-field=\"consent_text\">\n                <div class=\"rmBase__comp--checkbox\">\n                  <label for=\"consent_text\" class=\"flex space-x-2 items-baseline text-left vFormCheckbox comp__checkbox\">\n                    <input type=\"checkbox\" value=\"yes\" name=\"consent_text\" id=\"consent_text\" class=\"vFormCheckbox__input\">\n                    <div class=\"vFormCheckbox__indicator hidden\"><\/div>\n                    <div class=\"vFormCheckbox__label\">\n                                              I consent to the processing of my data, and to receiving regular updates from TechGDPR. Data is processed according to our <a href=\"https:\/\/techgdpr.com\/privacy-policy\/\"> Privacy Notice<\/a>.                                          <\/div>\n                  <\/label>\n                <\/div>\n                <div class=\"rmBase__compError text-left font-display font-bold text-xs\"><\/div>\n              <\/div>\n            <\/div>\n            <div class=\"rmBase__section\">\n              <div class=\"rmBase__el rmBase__el--cta\">\n                <button type=\"submit\" class=\"inline-flex items-center justify-center px-8 py-3 text-white visited:text-white font-bodybold rounded-md bg-t-navy border-3 border-t-navy hover:border-t-navy hover:bg-transparent hover:text-t-navy transition-all hover:text-white cursor-pointer rmBase__comp--cta\">\n                  Subscribe\n                <\/button>\n              <\/div>\n            <\/div>\n          <\/div>\n        <\/form>\n      <\/div>\n      <div data-page-type=\"pageSubscribeSuccess\" class=\"rmBase__body rmSubscription hidden\">\n        <div class=\"rmBase__content\">\n          <div class=\"rmBase__container\">\n            <div class=\"rmBase__section\">\n              <div class=\"rmBase__el rmBase__el--heading\">\n                <div class=\"rmBase__comp--heading\">\n                  Thank you for your subscription!\n      <!-- this linebreak is important, don't remove it! this will force trailing linebreaks to be displayed -->\n                  <br>\n                <\/div>\n              <\/div>\n            <\/div>\n            <div class=\"rmBase__section\">\n              <div class=\"rmBase__el rmBase__el--text\">\n                <div class=\"rmBase__comp--text\">\n                  We have sent you an email &#8211; please confirm your email address by clicking the activation link in it.\n      <!-- this linebreak is important, don't remove it! this will force trailing linebreaks to be displayed -->\n                  <br>\n                <\/div>\n              <\/div>\n            <\/div>\n          <\/div>\n        <\/div>\n      <\/div>\n    <\/div>\n  <\/div>\n\n      <script src=\"https:\/\/mailing.techgdpr.com\/form\/145\/6069\/8a53c9178b\/embedded.js\" async><\/script>\n  \n<\/div>\n\n\n\n<p><strong>\u2018Manage GDPR\u2019:<\/strong>&nbsp; The Spanish regulator AEPD published a new version of its <a href=\"https:\/\/gestiona2.aepd.es\/\">Manage GDPR tool<\/a>,(available in English). \u2018Gestiona\u2019 targets controllers and processors as well as data protection specialists. It allows <a href=\"https:\/\/www.aepd.es\/en\/press-and-communication\/press-releases\/aepd-launches-new-version-manage-gdpr\">managing the records of the processing activities, (ROPA), with up to 500 treatments, in an integrated way, and for different entities<\/a>. It is now possible to manage the risk with privacy measures that the tool suggests for each identified risk factor. The tool is managed on the user\u2019s device via their browser, without installing any application and storing the information locally.&nbsp;<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Legal processes<\/h4>\n\n\n\n<p><strong>Anonymisation standard:<\/strong> The Quebec government enforced the <a href=\"https:\/\/www.publicationsduquebec.gouv.qc.ca\/fileadmin\/gazette\/pdf_encrypte\/lois_reglements\/2024A\/106829.pdf\">Regulation<\/a> respecting the anonymisation of personal information. It prescribes that <a href=\"https:\/\/www.publicationsduquebec.gouv.qc.ca\/fileadmin\/gazette\/pdf_encrypte\/lois_reglements\/2024A\/106829.pdf\">once the purposes for which personal data was used are achieved, organisations, (including the private sector), have two choices: destroy or anonymise it<\/a> for use only for serious and legitimate purposes. It will largely apply from 2025.&nbsp;<\/p>\n\n\n\n<p><strong>UK Data Protection reform on hold: <\/strong>The Data Protection and Digital Information Bill falls ahead of a snap UK general election. As UK observers explain, any legislation that did not complete its passage by the end of the \u2018wash-up\u2019 on 24 May <a href=\"https:\/\/www.techuk.org\/resource\/data-protection-and-digital-information-bill-falls-ahead-of-the-uk-general-election.html\">falls and will need to be reintroduced in the next Parliament<\/a>. The draft bill was criticised for its flexibility towards data sharing in trade and innovation and state surveillance, threatening the adequacy decision granted by the EU.&nbsp;<\/p>\n\n\n\n<p><strong>US Privacy and AI legislation: <\/strong>A good chunk of future privacy and AI bills has moved forward through state legislatures this past month. This includes the <a href=\"https:\/\/www.jdsupra.com\/legalnews\/maryland-passes-age-appropriate-design-1497499\/\">Maryland<\/a> Age-Appropriate Design Code and other privacy acts, the <a href=\"https:\/\/leg.colorado.gov\/bills\/sb24-205\">Colorado<\/a> Consumer Protections for AI Act, and the <a href=\"https:\/\/legislature.vermont.gov\/bill\/status\/2024\/H.121\">Vermont<\/a>, <a href=\"https:\/\/www.jdsupra.com\/legalnews\/minnesota-legislature-passes-consumer-3226186\/\">Minnesota<\/a>, and <a href=\"https:\/\/apps.legislature.ky.gov\/recorddocuments\/bill\/24RS\/hb15\/bill.pdf\">Kentucky<\/a> Consumer Data Privacy Acts. <a href=\"https:\/\/leginfo.legislature.ca.gov\/faces\/billHistoryClient.xhtml?bill_id=202320240SB896\">California\u2019s<\/a> Bill on AI Accountability was read in the state Assembly, and the House of Representatives subcommittee advanced the <a href=\"https:\/\/d1dth6e84htgma.cloudfront.net\/APRA_Section_by_Section_026cc46a2c.pdf\">American Privacy Rights Act<\/a> Discussion Draft.&nbsp;<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Worldcoin on pause in Spain<\/h4>\n\n\n\n<div class=\"wp-block-media-text is-stacked-on-mobile\" style=\"grid-template-columns:30% auto\"><figure class=\"wp-block-media-text__media\"><img decoding=\"async\" src=\"https:\/\/lh7-us.googleusercontent.com\/docsz\/AD_4nXcNL-dCTJCAz3gKGn0eAofxvkpn8HNwsxXWdW7bLYNH7zGyz31vNSdbGhLqDU9qCUp0qZv7lfVB1VFdh7hEosUJaMUC67fvHf2M_VmKy9wmyTtE5SFpojNAvh21CTcc4pzFWitVrvLl04fFeNlKMFp7dwDv?key=iPFMtWGCC7Bid9B14EqoGQ\" alt=\"\" \/><\/figure><div class=\"wp-block-media-text__content\">\n<p><\/p>\n\n\n\n<p>The Worldcoin project committed to freeze its activity in Spain until the end of the year or until the final approval of its processing activities. The data protection authority of Bavaria, where the company has its main establishment in Europe, is progressing and is expected to conclude soon with a final binding decision.\u00a0<a href=\"https:\/\/www.techtarget.com\/whatis\/feature\/Worldcoin-explained-Everything-you-need-to-know\">Worldcoin uses iris scans for unique identification with plans to expand for wider adoption of a global currency on the blockchain<\/a>, explains the Techtarget.com article. The iris structure is used to generate a unique identifying code that is saved on the Worldcoin decentralised blockchain to prevent others from replicating the code.<\/p>\n<\/div><\/div>\n\n\n\n<p>The biometric data is not stored by the scanning device, but is kept in the form of anonymised \u2018IrisHash\u2019.\u00a0<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">More enforcement decisions<\/h4>\n\n\n\n<p><strong>Failed backup testing:<\/strong> The Danish data protection authority criticised the breakdown of NemID in 2022, where up to 1.5 million users experienced problems logging in to major public services. The data controller followed their emergency procedure to restore the operation with a backup solution. This appeared to be unavailable, and the <a href=\"https:\/\/www.datatilsynet.dk\/presse-og-nyheder\/nyhedsarkiv\/2024\/maj\/datatilsynet-udtaler-alvorlig-kritik-i-sag-om-nedbrud-af-nemid\">test to establish the viability of the backup solution was last carried out two years before the collapse<\/a>.\u00a0Such tests show whether recovery can be done with existing guides\/procedures, that hardware, software, and data can work together, and that recovery can happen quickly enough as the consequences usually increase with time.<\/p>\n\n\n\n<p><strong>Spreadsheet error:<\/strong> In the UK, the Police Service of Northern Ireland is facing a 750,000 pound fine for failing to protect the personal information of its entire workforce. Personal information including surname, initials, rank and role of all 9,483 serving officers and staff was included in a &#8220;hidden&#8221; tab of a spreadsheet published online in response to a freedom of information request. The error caused several officers to move house, cut themselves off from family members and completely alter their daily routines because of the tangible fear of threat to life. The cause of the data breach was more than trivial as there were <a href=\"https:\/\/ico.org.uk\/about-the-ico\/media-centre\/news-and-blogs\/2024\/05\/psni-facing-a-750k-fine-following-spreadsheet-error-that-exposed-the-personal-information-of-its-entire-workforce\/\">insufficient internal procedures and sign-off protocols for the safe disclosure of information.<\/a><\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Data security<\/h4>\n\n\n\n<div class=\"wp-block-media-text is-stacked-on-mobile\" style=\"grid-template-columns:20% auto\"><figure class=\"wp-block-media-text__media\"><img decoding=\"async\" src=\"https:\/\/lh7-us.googleusercontent.com\/docsz\/AD_4nXfPTMtPJE9ywqLF34eAawY4vr498jQ2frTgWMCH3rvpgfERsZFGREZa6EIWY8826_1yL2Lak0OyDLsuUN8U9QPNTBjcYpYKo3w4JoG2RnzGJ7pni_DSw5X4HL9otUyljNkK-9uHfXVZmXmcrsILW6UiSHYb?key=iPFMtWGCC7Bid9B14EqoGQ\" alt=\"decentralised clinical research\" \/><\/figure><div class=\"wp-block-media-text__content\">\n<p><\/p>\n\n\n\n<p><strong>US financial entities:<\/strong> If your business is covered by the FTC\u2019s Gramm-Leach Bliley <a href=\"https:\/\/www.ftc.gov\/legal-library\/browse\/federal-register-notices\/16-cfr-part-314-standards-safeguarding-customer-information-0\">Safeguards Rule<\/a>, an amendment that requires <a href=\"https:\/\/www.ftc.gov\/business-guidance\/blog\/2024\/05\/safeguards-rule-notification-requirement-now-effect\">covered companies to report certain data breaches<\/a> is now in effect. It lists thirteen distinct company categories, including payday lenders, mortgage lenders, finance companies, mortgage brokers, account servicers, cheque cashers, wire transfers, collection agencies, tax preparation organisations, credit counsellors, and other financial consultants. According to the amendment, financial institutions must report to the FTC any security breach involving the personal data of at least 500 customers as soon as feasible, but no later than 30 days after discovery.<\/p>\n<\/div><\/div>\n\n\n\n<p><\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Big Data<\/h4>\n\n\n\n<p><strong>Microsoft vs schools: <\/strong>Microsoft\u2019s 365 Education services violate <a href=\"https:\/\/techgdpr.com\/blog\/childrens-data-and-implementing-of-age-assurance-mechanisms\/\">children\u2019s privacy<\/a> by shifting the responsibility to the school administrations, states the NOYB privacy advocacy group. <a href=\"https:\/\/www.reuters.com\/technology\/microsoft-hit-with-austrian-privacy-complaints-over-its-education-programme-2024-06-04\/\">Digital service providers like Microsoft tend to designate educational bodies as data controllers<\/a> in their Terms and Conditions. However, in practice, the schools have no control over the applications, their design, and data operations. In just one example, they <a href=\"https:\/\/noyb.eu\/en\/microsoft-violates-childrens-privacy-blames-your-local-school\">cannot satisfy data access requests by individuals as they don&#8217;t hold the necessary data<\/a>.&nbsp;<\/p>\n\n\n\n<p><strong>Malware and data stealing: <\/strong>Law enforcement agencies in the US and EU announced massive operations against some of the most influential cybercrime platforms for delivering ransomware and data-stealing malware. They targeted <a href=\"https:\/\/krebsonsecurity.com\/2024\/05\/operation-endgame-hits-malware-delivery-platforms\/\">droppers\/loaders, (a custom-made program designed to surreptitiously install malware onto a system), deployed through email attachments<\/a>, hacked websites, or bundled with legitimate software. Droppers are typically used in the initial stages of a breach, and they allow cybercriminals to bypass security measures and deploy additional harmful programs.&nbsp;<\/p>\n\n\n\n<p><strong>ShinyHunters ransom:<\/strong> Meanwhile Ticketmaster in the US was hit by a data hack that may affect 560m customers, the Guardian reports. Cybercrime group ShinyHunters reportedly demanded 400,000 pounds ransom to prevent data from being sold. <a href=\"https:\/\/www.theguardian.com\/technology\/article\/2024\/jun\/01\/live-nation-investigating-data-breach-of-its-us-ticketmaster-unit\">The unauthorised access was spotted by a third-party cloud database environment containing the company\u2019s data<\/a>. Earlier Bank Santander also confirmed being hacked by the same group. ShinyHunters claimed it had the data of 30m customers and staff details, 6m account numbers and balances, and 28m credit card numbers, and is demanding a ransom of 1.6m pounds.&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>In this issue, the personal data lifecycle in decentralised clinical research, Meta\u2019s new AI chatbot, protections for organisations against data scraping, failed backup testing and spreadsheet error real examples, and much more. Stay up to date! Sign up to receive our fortnightly digest via email. Decentralised clinical research To support sponsors in designing their decentralised [&hellip;]<\/p>\n","protected":false},"author":21,"featured_media":8690,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"categories":[94],"tags":[51,120,131,216,188],"class_list":["post-8689","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-data-protection-digest","tag-artificial-intelligence","tag-biometric-data","tag-clinical-trials","tag-cybersecurity","tag-data-scraping"],"acf":[],"featured_image_urls":{"full":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280.jpg",1280,720,false],"thumbnail":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280-150x150.jpg",150,150,true],"medium":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280-300x169.jpg",300,169,true],"medium_large":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280-768x432.jpg",640,360,true],"large":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280-1024x576.jpg",640,360,true],"1536x1536":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280.jpg",1280,720,false],"2048x2048":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280.jpg",1280,720,false],"image-200-200":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280-200x200.jpg",200,200,true]},"post_excerpt_stackable":"<p>In this issue, the personal data lifecycle in decentralised clinical research, Meta\u2019s new AI chatbot, protections for organisations against data scraping, failed backup testing and spreadsheet error real examples, and much more. Stay up to date! Sign up to receive our fortnightly digest via email. Decentralised clinical research To support sponsors in designing their decentralised clinical research projects, the French data protection authority CNIL with other state agencies set up a pilot project, (from January to September 2024). 20 selected projects will receive targeted support and updated guidance, looking especially at the entire lifecycle of personal data processing:&nbsp; Roles and&hellip;<\/p>\n","category_list":"<a href=\"https:\/\/techgdpr.com\/blog\/category\/data-protection-digest\/\" rel=\"category tag\">Data Protection Digest<\/a>","author_info":{"name":"Olya Vasylyk","url":"https:\/\/techgdpr.com\/blog\/author\/olyav\/"},"comments_num":"0 comments","featured_image_urls_v2":{"full":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280.jpg",1280,720,false],"thumbnail":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280-150x150.jpg",150,150,true],"medium":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280-300x169.jpg",300,169,true],"medium_large":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280-768x432.jpg",640,360,true],"large":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280-1024x576.jpg",640,360,true],"1536x1536":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280.jpg",1280,720,false],"2048x2048":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280.jpg",1280,720,false],"image-200-200":["https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280-200x200.jpg",200,200,true]},"post_excerpt_stackable_v2":"<p>In this issue, the personal data lifecycle in decentralised clinical research, Meta\u2019s new AI chatbot, protections for organisations against data scraping, failed backup testing and spreadsheet error real examples, and much more. Stay up to date! Sign up to receive our fortnightly digest via email. Decentralised clinical research To support sponsors in designing their decentralised clinical research projects, the French data protection authority CNIL with other state agencies set up a pilot project, (from January to September 2024). 20 selected projects will receive targeted support and updated guidance, looking especially at the entire lifecycle of personal data processing:&nbsp; Roles and&hellip;<\/p>\n","category_list_v2":"<a href=\"https:\/\/techgdpr.com\/blog\/category\/data-protection-digest\/\" rel=\"category tag\">Data Protection Digest<\/a>","author_info_v2":{"name":"Olya Vasylyk","url":"https:\/\/techgdpr.com\/blog\/author\/olyav\/"},"comments_num_v2":"0 comments","yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Data protection digest 18 May - 2 Jun 2024: decentralised clinical research, Meta\u2019s new virtual assistant - TechGDPR<\/title>\n<meta name=\"description\" content=\"TechGDPR\u2019s review of the most important data privacy stories: decentralised clinical research, Meta\u2019s new virtual assistant\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Data protection digest 18 May - 2 Jun 2024: decentralised clinical research, Meta\u2019s new virtual assistant - TechGDPR\" \/>\n<meta property=\"og:description\" content=\"TechGDPR\u2019s review of the most important data privacy stories: decentralised clinical research, Meta\u2019s new virtual assistant\" \/>\n<meta property=\"og:url\" content=\"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/\" \/>\n<meta property=\"og:site_name\" content=\"TechGDPR\" \/>\n<meta property=\"article:published_time\" content=\"2024-06-05T07:43:31+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-06-05T07:43:32+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1280\" \/>\n\t<meta property=\"og:image:height\" content=\"720\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Olya Vasylyk\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@techgdpr\" \/>\n<meta name=\"twitter:site\" content=\"@techgdpr\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Olya Vasylyk\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"9 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\\\/\"},\"author\":{\"name\":\"Olya Vasylyk\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#\\\/schema\\\/person\\\/07e9c14fd01b25bd2c1907537e8547e8\"},\"headline\":\"Data protection digest 18 May &#8211; 2 Jun 2024: decentralised clinical research, Meta\u2019s new virtual assistant\",\"datePublished\":\"2024-06-05T07:43:31+00:00\",\"dateModified\":\"2024-06-05T07:43:32+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\\\/\"},\"wordCount\":1640,\"publisher\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/techgdpr.com\\\/wp-content\\\/uploads\\\/2024\\\/06\\\/doctor-5282547_1280.jpg\",\"keywords\":[\"Artificial Intelligence\",\"biometric data\",\"clinical trials\",\"cybersecurity\",\"data scraping\"],\"articleSection\":[\"Data Protection Digest\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\\\/\",\"url\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\\\/\",\"name\":\"Data protection digest 18 May - 2 Jun 2024: decentralised clinical research, Meta\u2019s new virtual assistant - TechGDPR\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/techgdpr.com\\\/wp-content\\\/uploads\\\/2024\\\/06\\\/doctor-5282547_1280.jpg\",\"datePublished\":\"2024-06-05T07:43:31+00:00\",\"dateModified\":\"2024-06-05T07:43:32+00:00\",\"description\":\"TechGDPR\u2019s review of the most important data privacy stories: decentralised clinical research, Meta\u2019s new virtual assistant\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/techgdpr.com\\\/blog\\\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\\\/#primaryimage\",\"url\":\"https:\\\/\\\/techgdpr.com\\\/wp-content\\\/uploads\\\/2024\\\/06\\\/doctor-5282547_1280.jpg\",\"contentUrl\":\"https:\\\/\\\/techgdpr.com\\\/wp-content\\\/uploads\\\/2024\\\/06\\\/doctor-5282547_1280.jpg\",\"width\":1280,\"height\":720,\"caption\":\"decentralised clinical research\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/techgdpr.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Data protection digest 18 May &#8211; 2 Jun 2024: decentralised clinical research, Meta\u2019s new virtual assistant\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#website\",\"url\":\"https:\\\/\\\/techgdpr.com\\\/\",\"name\":\"TechGDPR\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/techgdpr.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#organization\",\"name\":\"TechGDPR\",\"url\":\"https:\\\/\\\/techgdpr.com\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/staging.techgdpr.com\\\/wp-content\\\/uploads\\\/2018\\\/04\\\/TGDPR_logo_500px.png\",\"contentUrl\":\"https:\\\/\\\/staging.techgdpr.com\\\/wp-content\\\/uploads\\\/2018\\\/04\\\/TGDPR_logo_500px.png\",\"width\":501,\"height\":334,\"caption\":\"TechGDPR\"},\"image\":{\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/techgdpr\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/techgdpr\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/#\\\/schema\\\/person\\\/07e9c14fd01b25bd2c1907537e8547e8\",\"name\":\"Olya Vasylyk\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/techgdpr.com\\\/wp-content\\\/uploads\\\/2021\\\/10\\\/readyIMG_3694-1-2-150x150.jpg\",\"url\":\"https:\\\/\\\/techgdpr.com\\\/wp-content\\\/uploads\\\/2021\\\/10\\\/readyIMG_3694-1-2-150x150.jpg\",\"contentUrl\":\"https:\\\/\\\/techgdpr.com\\\/wp-content\\\/uploads\\\/2021\\\/10\\\/readyIMG_3694-1-2-150x150.jpg\",\"caption\":\"Olya Vasylyk\"},\"description\":\"Creator and editor of TechGDPR\u2019s weekly Digest. Postgraduate masters Diploma in Data Protection, Digital law and Management. Over a decade Olga previously was a broadcast journalist in Ukraine and France specializing in international affairs.\",\"url\":\"https:\\\/\\\/techgdpr.com\\\/blog\\\/author\\\/olyav\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Data protection digest 18 May - 2 Jun 2024: decentralised clinical research, Meta\u2019s new virtual assistant - TechGDPR","description":"TechGDPR\u2019s review of the most important data privacy stories: decentralised clinical research, Meta\u2019s new virtual assistant","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/","og_locale":"en_US","og_type":"article","og_title":"Data protection digest 18 May - 2 Jun 2024: decentralised clinical research, Meta\u2019s new virtual assistant - TechGDPR","og_description":"TechGDPR\u2019s review of the most important data privacy stories: decentralised clinical research, Meta\u2019s new virtual assistant","og_url":"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/","og_site_name":"TechGDPR","article_published_time":"2024-06-05T07:43:31+00:00","article_modified_time":"2024-06-05T07:43:32+00:00","og_image":[{"width":1280,"height":720,"url":"https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280.jpg","type":"image\/jpeg"}],"author":"Olya Vasylyk","twitter_card":"summary_large_image","twitter_creator":"@techgdpr","twitter_site":"@techgdpr","twitter_misc":{"Written by":"Olya Vasylyk","Est. reading time":"9 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/#article","isPartOf":{"@id":"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/"},"author":{"name":"Olya Vasylyk","@id":"https:\/\/techgdpr.com\/#\/schema\/person\/07e9c14fd01b25bd2c1907537e8547e8"},"headline":"Data protection digest 18 May &#8211; 2 Jun 2024: decentralised clinical research, Meta\u2019s new virtual assistant","datePublished":"2024-06-05T07:43:31+00:00","dateModified":"2024-06-05T07:43:32+00:00","mainEntityOfPage":{"@id":"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/"},"wordCount":1640,"publisher":{"@id":"https:\/\/techgdpr.com\/#organization"},"image":{"@id":"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/#primaryimage"},"thumbnailUrl":"https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280.jpg","keywords":["Artificial Intelligence","biometric data","clinical trials","cybersecurity","data scraping"],"articleSection":["Data Protection Digest"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/","url":"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/","name":"Data protection digest 18 May - 2 Jun 2024: decentralised clinical research, Meta\u2019s new virtual assistant - TechGDPR","isPartOf":{"@id":"https:\/\/techgdpr.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/#primaryimage"},"image":{"@id":"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/#primaryimage"},"thumbnailUrl":"https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280.jpg","datePublished":"2024-06-05T07:43:31+00:00","dateModified":"2024-06-05T07:43:32+00:00","description":"TechGDPR\u2019s review of the most important data privacy stories: decentralised clinical research, Meta\u2019s new virtual assistant","breadcrumb":{"@id":"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/#primaryimage","url":"https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280.jpg","contentUrl":"https:\/\/techgdpr.com\/wp-content\/uploads\/2024\/06\/doctor-5282547_1280.jpg","width":1280,"height":720,"caption":"decentralised clinical research"},{"@type":"BreadcrumbList","@id":"https:\/\/techgdpr.com\/blog\/data-protection-digest-05062024-decentralised-clinical-research-meta-ai-training\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/techgdpr.com\/"},{"@type":"ListItem","position":2,"name":"Data protection digest 18 May &#8211; 2 Jun 2024: decentralised clinical research, Meta\u2019s new virtual assistant"}]},{"@type":"WebSite","@id":"https:\/\/techgdpr.com\/#website","url":"https:\/\/techgdpr.com\/","name":"TechGDPR","description":"","publisher":{"@id":"https:\/\/techgdpr.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/techgdpr.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/techgdpr.com\/#organization","name":"TechGDPR","url":"https:\/\/techgdpr.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/techgdpr.com\/#\/schema\/logo\/image\/","url":"https:\/\/staging.techgdpr.com\/wp-content\/uploads\/2018\/04\/TGDPR_logo_500px.png","contentUrl":"https:\/\/staging.techgdpr.com\/wp-content\/uploads\/2018\/04\/TGDPR_logo_500px.png","width":501,"height":334,"caption":"TechGDPR"},"image":{"@id":"https:\/\/techgdpr.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/techgdpr","https:\/\/www.linkedin.com\/company\/techgdpr"]},{"@type":"Person","@id":"https:\/\/techgdpr.com\/#\/schema\/person\/07e9c14fd01b25bd2c1907537e8547e8","name":"Olya Vasylyk","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/techgdpr.com\/wp-content\/uploads\/2021\/10\/readyIMG_3694-1-2-150x150.jpg","url":"https:\/\/techgdpr.com\/wp-content\/uploads\/2021\/10\/readyIMG_3694-1-2-150x150.jpg","contentUrl":"https:\/\/techgdpr.com\/wp-content\/uploads\/2021\/10\/readyIMG_3694-1-2-150x150.jpg","caption":"Olya Vasylyk"},"description":"Creator and editor of TechGDPR\u2019s weekly Digest. Postgraduate masters Diploma in Data Protection, Digital law and Management. Over a decade Olga previously was a broadcast journalist in Ukraine and France specializing in international affairs.","url":"https:\/\/techgdpr.com\/blog\/author\/olyav\/"}]}},"_links":{"self":[{"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/posts\/8689","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/users\/21"}],"replies":[{"embeddable":true,"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/comments?post=8689"}],"version-history":[{"count":11,"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/posts\/8689\/revisions"}],"predecessor-version":[{"id":8702,"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/posts\/8689\/revisions\/8702"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/media\/8690"}],"wp:attachment":[{"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/media?parent=8689"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/categories?post=8689"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/techgdpr.com\/wp-json\/wp\/v2\/tags?post=8689"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}