Access

New China rules broaden 2026 agricultural census and tighten data controls

China has revised its regulation on the national agricultural census ahead of the country’s fourth such survey, with the updated rules due to take effect on 1 May 2026. According to the reported summary, Premier Li Qiang signed a State Council decree publishing the revised regulation.

The changes expand the scope of the agricultural census to include rural industrial development and village construction, alongside more traditional measures of agricultural activity. New data-collection methods, including remote sensing, have also been added to the framework.

Stronger data-quality controls form another part of the revision. The updated regulation introduces a post-census spot-check system and sets out confidentiality obligations for census personnel involved in the process.

Penalties for data falsification have also been tightened. The revised rules say people found to have fabricated or manipulated statistics may face heavier sanctions, including higher fines and possible criminal prosecution.

The fourth national agricultural census aims to provide an updated picture of agricultural development, rural construction, farmers’ living standards, and the outcomes of rural reform in China. Areas listed for coverage include agricultural production conditions, grain output, new quality productive forces in agriculture, rural development, and the living conditions of rural residents.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

FTC accuses OkCupid of sharing user data contrary to privacy promises

The US Federal Trade Commission has taken action against OkCupid and Match Group Americas over allegations that the dating app shared users’ personal information, including photos and location data, with an unrelated third party despite privacy promises saying such sharing would not occur without notice or an opportunity to opt out.

According to the FTC’s complaint, OkCupid gave the third party access to personal data from millions of users even though the recipient was not a service provider, business partner, or affiliate within the company’s corporate family. The agency says consumers were not informed and were not given a chance to opt out.

The complaint says the third party sought large OkCupid datasets because OkCupid’s founders were financial investors in that company, despite there being no business relationship with the app. The FTC alleges that OkCupid provided access to nearly 3 million user photos, along with location and other information, without formal or contractual limits on how the data could be used.

Christopher Mufarrige, Director of the FTC’s Bureau of Consumer Protection, said: ‘The FTC enforces the privacy promises that companies make. We will investigate, and where appropriate, take action against companies that promise to safeguard your data but fail to follow through—even if that means we have to enforce our Civil Investigative Demands in court.’

The FTC also alleges that, since September 2014, Match and OkCupid have taken extensive steps to conceal and deny that the apps shared users’ personal information with the data recipient, including conduct the agency says obstructed its investigation. One example cited in the complaint is that, after a news report revealed the third party had obtained large OkCupid datasets, the company told the media and users that it was not involved with that third party.

Under the proposed settlement, OkCupid and Match would be permanently prohibited from misrepresenting how they collect, maintain, use, disclose, delete, or protect personal information, including photos, demographic data, and geolocation data. Restrictions would also cover how they describe the purposes of data collection and disclosure, as well as how they present privacy controls and consumer choices under state privacy laws.

The Commission vote authorising staff to file the complaint and stipulating the final order was 2-0. The FTC filed both in the US District Court for the Northern District of Texas, Dallas Division. The agency notes that a complaint reflects its view that it has ‘reason to believe’ the law has been or is about to be violated, while stipulated final orders carry the force of law only if approved and signed by the district court judge.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

UNESCO initiative drives new digital platform governance frameworks in South Asia

South Asia is strengthening digital platform governance through a rights-based approach shaped by regional cooperation and international guidance.

A workshop led by UNESCO brought together policymakers, civil society and academics to align platform regulation with principles of freedom of expression and access to information.

The discussions focused on addressing governance gaps linked to misinformation, platform accountability and transparency. Participants examined national experiences and identified shared regulatory challenges, emphasising the need for coordinated regional responses instead of fragmented national measures.

An initiative that also validated regional toolkits designed for policymakers and civil society, translating global principles into practical guidance. These tools aim to support the implementation of governance frameworks that reflect local contexts while upholding international human rights standards.

The process builds on UNESCO’s Internet for Trust guidelines, reinforcing a human-centred model of digital governance. Continued collaboration across South Asia is expected to strengthen regulatory capacity and ensure that digital platforms operate with greater accountability and public trust.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!  

AI capacity partnership links UNDP and Intel in Lesotho and Liberia

The United Nations Development Programme and Intel are working together to expand AI training and digital skills in Lesotho and Liberia under a Memorandum of Understanding signed in March 2025. According to UNDP, the partnership is intended to combine global technical expertise with local leadership as both countries pursue broader digital transformation goals.

Lesotho and Liberia are approaching the issue from different starting points.UNDP says Lesotho is aiming for universal digital access by 2030, while Liberia is investing in AI in higher education and governance systems to prepare for the future digital economy. Through its partnership with Intel, the UN’s global development network says it is helping close gaps in AI literacy and capacity-building so communities can better understand how AI may affect everyday life.

In Lesotho, UNDP says it has already helped establish 40 Digital Skills Learning Labs and train 40 Digital Ambassadors, including teachers, religious leaders, and local influencers. Intel’s ‘AI for Citizens (AI Community Experiences)’ programme was introduced to provide locally relevant training materials for low-connectivity environments. UNDP says the onboarding included virtual sessions using games and storytelling, while analogue activities and puzzles were used to explain concepts such as computer vision.

Liberia’s work has focused more on higher education and the public sector. UNDP says it supported the University of Liberia in designing its first Master of AI programme through six online sessions with global experts and in-person workshops involving 20 faculty members. The collaboration also extended to government, with targeted training for nearly 100 officials on how AI could improve public service delivery and inform policy decisions.

Anshul Sonak, Global Head of Intel Digital Readiness Programs, said: ‘We are deeply honoured to be a part of the AI training collaboration in Liberia with UNDP. Bringing AI skills and digital literacy to a country rich in history and potential was an amazing experience. We look forward to more collaborations in the future and finding more opportunities for Intel to be a player in the region.’

UNDP says future phases may include expanding training to more communities and countries, adapting content to local languages and contexts, and adding online components as connectivity improves. Dhani Spiller, Head of UNDP’s Digital Capacity Lab, said: ‘This partnership shows what’s possible when we combine UNDP’s development mandate with the innovation and technical depth of private-sector leaders.’

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Cloudflare adds LLM layer to client-side security detection pipeline

Cloudflare has announced two changes to its client-side security offering, making Client-Side Security Advanced available to self-serve customers and offering domain-based threat intelligence at no extra cost to all users on the free Client-Side Security bundle. The update is focused on browser-based attacks that can steal data via malicious scripts without visibly disrupting a website’s normal operation.

Cloudflare says its client-side security system assesses 3.5 billion scripts per day and monitors an average of 2,200 scripts per enterprise zone. According to the company, the product relies on browser reporting, including Content Security Policy signals, rather than scanners or application instrumentation, and requires only that traffic be proxied through Cloudflare.

A central part of the announcement is a new detection pipeline combining a Graph Neural Network (GNN) with a Large Language Model (LLM). Cloudflare says the GNN analyses the Abstract Syntax Tree of JavaScript code to identify malicious intent even when scripts are minified or obfuscated. Scripts flagged as suspicious are then passed to an open-source LLM running on Workers AI for a second-stage semantic assessment intended to reduce false positives.

Cloudflare says the GNN is tuned for high recall to identify novel and zero-day threats, but that false alarms remain a challenge at internet scale. Internal evaluation results cited by the company show that the secondary LLM layer reduced false positives in the JS Integrity threat category by nearly three times across the total analysed traffic, lowering the rate from about 0.3% to about 0.1%. On unique scripts, Cloudflare says the false-positive rate fell from about 1.39% to 0.007%.

The company also describes a recent case involving a heavily obfuscated malicious script named core.js. According to Cloudflare, the payload targeted Xiaomi OpenWrt-based home routers, altered DNS settings, and attempted to change admin passwords. Cloudflare says the script was injected through compromised browser extensions rather than by directly compromising a website, and adds that its GNN detected the malicious structure while the LLM confirmed the intent.

Cloudflare argues that the two-stage design provides structural detection via the GNN and broader semantic filtering via the LLM, enabling the company to lower the GNN decision threshold without sharply increasing alert volume. Every script flagged by the GNN is also logged to Cloudflare R2 for later auditing, which the company says helps it review cases where the LLM overrode the initial verdict.

Domain-based threat intelligence is now being made available to all Client-Side Security customers, including those not using the Advanced tier. Cloudflare says the move is partly a response to attacks seen in 2025 against smaller online shops, especially on Magento, where client-side compromises continued for days or weeks after public disclosure. By extending domain-based signals more broadly, the company says site owners can more quickly identify malicious JavaScript or suspicious connections and investigate possible compromises.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Italy fines major bank over data protection failures

The Italian Data Protection Authority has imposed a €31.8 million fine on Intesa Sanpaolo following serious shortcomings in its handling of personal data.

The case stems from unauthorised access by an employee to thousands of customer accounts, raising concerns about internal oversight and data protection safeguards.

Investigations revealed that monitoring systems failed to detect repeated unjustified access to sensitive financial information over an extended period. The breach also involved high-risk individuals, highlighting weaknesses in risk-based controls instead of robust, targeted protection measures.

Authorities in Italy identified violations of core data protection principles, including integrity, confidentiality and accountability. Additional concerns arose from delays in notifying both regulators and affected individuals, limiting the ability to respond effectively to the incident.

The case of Intesa Sanpaolo underscores increasing regulatory scrutiny of data governance practices in the financial sector. Strengthening internal controls and ensuring timely breach reporting remain essential for maintaining trust and compliance in data-driven banking environments.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!  

UK-Philippines partnership advances digital education and EdTech

The British Embassy in Manila and the Philippines’ Department of Education have expanded cooperation to advance EdTech and digital learning, focusing on inclusive and evidence-based approaches instead of fragmented implementation.

A partnership that aims to strengthen foundational learning while supporting long-term resilience in the education system.

Support is being delivered through EdTech Hub, with initiatives centred on developing a National EdTech Policy, improving responses to climate-related disruptions, and expanding the use of AI in education administration.

The programme includes pilot projects and evaluation frameworks designed to ensure technology adoption remains effective, scalable, and responsive to local needs.

A key component involves participation in global AI initiatives, including an observatory and challenge programme to build institutional capacity and encourage experimentation.

These efforts seek to enhance efficiency in education systems while supporting innovation in teaching and learning environments, particularly in areas affected by environmental and structural challenges.

The collaboration between the UK and the Philippines reflects a broader commitment to digital transformation in education across Southeast Asia, aiming to ensure equitable access to learning opportunities.

By combining research, policy development, and technological innovation, both sides seek to prepare students and institutions for evolving demands while maintaining a focus on inclusion and long-term sustainability.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!  

UK-backed SPOQC mission launches to test space-based quantum communications

A UK-led research mission aimed at advancing space-based quantum communications has launched aboard a SpaceX Transporter-16 rocket from Vandenberg Space Force Base in California. The Satellite Platform for Optical Quantum Communications, or SPOQC, was developed under the Integrated Quantum Networks (IQN) Hub led by Heriot-Watt University and was launched on 30 March 2026.

The mission builds on research and development carried out first through the Quantum Communications Hub and later through the IQN Hub, both funded by the Engineering and Physical Sciences Research Council. Five UK research institutions are involved in the collaboration, which is intended to strengthen UK capabilities in space-based quantum communications as governments and researchers prepare for the cybersecurity implications of more powerful quantum computing systems.

SPOQC is now in the final stages of commissioning before it begins transmitting quantum signals to receivers at the Hub Optical Ground Station at Heriot-Watt University in Edinburgh. The CubeSat is operating in a low Earth, Sun-synchronous orbit and passes over the UK about twice a day, with most measurements expected to take place during night-time passes, when experimental conditions are more favourable.

The mission’s wider policy relevance lies in its connection to the UK’s National Quantum Strategy, which views quantum technologies as important to national resilience, digital infrastructure, and long-term competitiveness. The project presents satellite-based systems as the most practical route towards resilient international quantum communication, since terrestrial fibre links face distance-related limitations that can degrade quantum signals over time.

A distinctive feature of the mission is its dual quantum source payload. One source uses discrete quantum signals at the single-photon level and was developed by the University of Bristol team, while the other uses continuous-variable signals and was developed by researchers at the University of York. Both connect to dedicated receivers at the optical ground station, allowing researchers to compare two established but technically different communication methods under varying atmospheric and orbital conditions.

‘The SPOQC mission is the culmination of outstanding collaborations between leading UK Universities, STFC RAL Space, and external industry partners. It offers a world-first platform to critically compare different quantum communication modalities, including the first use of continuous variable approaches from space. Through the IQN Hub, the SPOQC mission is a vital enabler towards truly global quantum communication via integration into terrestrial UK networks.’, said Professor Gerald Buller, Director of the IQN Hub.

The collaboration brings together the Universities of Bristol, Heriot-Watt, Strathclyde and York, alongside the Science and Technology Facilities Council’s RAL Space. STFC RAL Space contributed engineering, systems integration and mission support, while Heriot-Watt is operating the optical ground station. ISISPACE provided the satellite and technical support.

Researchers say the mission will also test whether quantum technologies can be scaled down to a 12U CubeSat, roughly the size of a microwave oven, as a proof of concept for future compact and lower-cost satellite quantum networks. SPOQC follows the November 2025 launch of SpeQtre, a UK-Singapore collaboration led by STFC RAL Space and SpeQtral, making it the second quantum mission supported by UK research to launch within six months.

Full quantum communication experiments are expected to begin in the second half of 2026 once commissioning is complete. Professor Tim Spiller from the University of York said: ‘As Director of the preceding Quantum Communications Hub, it is very pleasing to see six years of R&D by that Hub team to develop SPOQC and HOGS finally be rewarded with the launch of SPOQC. However, this will add a crucial link to the UK’s expanding quantum networking capability. I look forward to the first quantum demonstrations from SPOQC and HOGS later this year.’

Andy Vick, Disruptive Technology Programme Lead at STFC RAL Space, said: ‘The launch of two quantum CubeSats in close succession highlights the UK’s growing leadership in quantum technology. While both missions share a common satellite platform, SPOQC has united new partners to address new challenges. The RAL Space team is proud to have contributed from the outset, working closely with the Quantum Communications Hub, whose initial work laid strong foundations for the mission, and now supporting its delivery under the leadership of the IQN Hub. SPOQC is a big step for all the teams involved, one that we hope will pave the way for the UK’s national quantum network mission.’

Dr Kedar Pandya, Executive Director of EPSRC’s Strategy Directorate, said: ‘The SPOQC mission is a powerful example of how UK research leadership is shaping the future of secure global communications. By uniting world-class expertise across our quantum research hubs, we’re demonstrating not only scientific excellence but real technological ambition. This launch marks a major step toward quantum-secure networks that will help safeguard the UK’s digital infrastructure for decades to come.’

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Brazil study maps age assurance practices across 25 digital services

A new study by CGI.br and NIC.br examines how digital services in Brazil implement age assurance measures. Presented in Brasília during an event on the Digital Child and Adolescent Statute (ECA Digital), the study reviewed 25 popular online services used by children and adolescents.

The study found that most of the services analysed do not apply age checks at the point of registration, including some platforms aimed at adults. According to the release, age assurance usually appears later, when users try to access specific features such as livestreaming or monetisation.

Titled ‘Age assurance practices in 25 digital services used by children in Brazil’, the study analysed governance documents published before the ECA Digital entered into force. From 18 March, the law requires information-society services aimed at children and adolescents in Brazil, or likely to be accessed by them, to adopt effective age-assurance measures and parental supervision.

The study found that 11 of the 25 platforms relied on third-party age-assurance services, particularly social media and generative AI platforms. Official identity document submission was the most common verification method, while selfie-based checks were the most common age-estimation tool. Differences were also found between the minimum ages stated by services and those listed in app stores, and some adult-oriented platforms could still be accessed by younger users with parental consent.

Parental supervision tools were available in 15 of the 25 services, but activation was usually optional and depended on parents or guardians. Transparency also emerged as a weakness: only six services published Brazil-specific reports, and only one explained how its minimum-age policy was applied. Policies were often spread across multiple pages, averaging 22 pages per service, and around 40% of the services provided related information in other languages.

Fábio Senne, General Research Coordinator at Cetic.br | NIC.br, said: ‘One of the study’s central aims was to verify the integrity of the information made available by digital services in Brazil. It is essential that data on age protection be communicated clearly and accessibly, allowing more informed and effective parental supervision.’

Juliana Cunha, manager of the Digital Public Policy Advisory Office at CGI.br | NIC.br, said: ‘This survey was developed to support the debate on implementation of the ECA Digital and to offer a clear understanding of the current landscape. This initiative forms part of a broader set of actions by CGI.br and NIC.br aimed at providing technical evidence to support effective enforcement of the law. Our commitment is to foster a safer and more responsible digital ecosystem for children and adolescents in Brazil.’

The release says the study used as a methodological reference the OECD technical paper ‘Age assurance practices of 50 online services used by children’, published in 2025. Information was collected between 10 and 30 January 2026 from public documents made available by the services in Brazil, totalling 550 pages analysed. The event also marked the launch of TIC Kids Online Brazil 2025, a publication on internet use by children and adolescents aged 9 to 17 in Brazil.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

ILO and World Bank paper says GenAI may deepen labour-market divides

A joint working paper by the International Labour Organization (ILO) and the World Bank says generative AI is likely to reshape labour markets globally, but not in the same way across countries.

The paper finds that advanced economies face greater overall exposure, while developing economies may see disruption arrive faster than productivity gains due to weaker digital infrastructure and differences in how work is organised.

Prepared as a background study for the World Development Report 2026, the paper examines labour-market exposure to GenAI across 135 countries, covering about two-thirds of global employment. According to the study, digital infrastructure and job-task composition are among the main factors shaping the distribution of risks and opportunities between advanced and developing economies.

Exposure is highest in advanced economies, especially in clerical and professional occupations. Lower-income countries are less exposed overall, but the paper says structural constraints reduce their ability to benefit from the technology. A central concern is that workers in jobs vulnerable to automation are often already online, even in poorer settings, meaning displacement could happen relatively quickly.

The paper also says many of the jobs most exposed to automation in developing economies are relatively higher-quality roles, including clerical and administrative work that has often provided a route into decent employment, especially for women and young workers. AI-driven automation, the study warns, could narrow those pathways.

Potential gains are also uneven. Many workers in jobs that could benefit from GenAI lack reliable internet access in lower-income settings. The paper adds that the same occupation title can involve different tasks depending on the country, with workers in poorer economies often carrying out fewer non-routine analytical tasks, relying less on computers, and doing more routine or manual work. Such differences reduce the scope for productivity gains from GenAI deployment.

ILO and the World Bank conclude in the paper that GenAI’s labour-market effects will depend not only on the technology itself, but also on digital connectivity, skills, task organisation, labour-market institutions, and social protection. Expanded digital access, stronger skills policies, and better labour protections are presented as necessary if the gains from GenAI are to be shared more broadly.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Diplo chatbot can make mistakes. Consider checking important information.