Consumer protection

Florida moves ahead with new AI Bill of Rights

Florida lawmakers are preparing a sweeping AI Bill of Rights as political debates intensify. Senator Tom Leek introduced a proposal to provide residents with clearer safeguards while regulating how firms utilise advanced systems across the state.

The plan outlines parental control over minors’ interactions with AI and requires disclosure when people engage with automated systems. It also sets boundaries on political advertising created with AI and restricts state contracts with suppliers linked to countries of concern.

Governor Ron DeSantis maintains Florida can advance its agenda despite federal attempts to curb state-level AI rules. He argues the state has the authority to defend consumers while managing the rising costs of new data centre developments.

Democratic lawmakers have raised concerns about young users forming harmful online bonds with AI companions, prompting calls for stronger protections. The legislation now forms part of a broader clash over online safety, privacy rights and fast-growing AI industries.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Italy fines Apple €98 million over App Store competition breach

Apple has been fined €98 million by Italy’s competition authority after regulators concluded that its App Tracking Transparency framework distorted competition in the app store market.

Authorities stated that the policy strengthened Apple’s dominant position while limiting how third-party developers collect advertising data.

The investigation found that developers were required to request consent multiple times for the same data processing purposes, creating friction that disproportionately affected competitors.

Regulators in Italy argued that equivalent privacy protections could have been achieved through a single consent mechanism instead of duplicated prompts.

According to the Italian authority, the rules were imposed unilaterally across the App Store ecosystem and harmed commercial partners reliant on targeted advertising. The watchdog also questioned whether the policy was proportionate from a data protection perspective under the EU law.

Apple rejected the findings and confirmed plans to appeal, stating that App Tracking Transparency prioritises user privacy over the interests of ad technology firms.

The decision follows similar penalties and warnings issued in France and Germany, reinforcing broader European scrutiny of platform governance.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Digital gift cards signal TikTok Shop’s retail expansion

TikTok Shop has introduced digital gift cards as part of its wider push into e-commerce. Users can purchase cards for $10 to $500 and choose animated designs for occasions such as birthdays or weddings. Availability is currently limited to the United States.

Recipients must have a TikTok account to redeem a gift card, and the balance is added to their TikTok Wallet instantly. Users can reply with a thank-you message or send a gift card as a return gesture. The approach reinforces TikTok’s focus on social interaction alongside transactions.

The feature puts the digital shop in more direct competition with established e-commerce platforms such as Amazon and eBay, which have long offered digital gift cards. Moves into higher-end retail to broaden its ambitions. The social media powerhouse is positioning itself as a full-scale online marketplace.

Momentum has continued to build, with US sales exceeding $500 million during the Black Friday and Cyber Monday period. The results highlight rising consumer confidence in the platform’s ability to drive purchases. Engagement is increasingly translating into measurable commerce.

Further developments are planned, including video messages and an interactive unboxing experience, which are expected to be released in early 2026. Expansion continues despite uncertainty around the platform’s future in the US. Negotiations over a potential sale remain unresolved ahead of January 2026.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Cyber incident hits France’s postal and banking networks

France’s national postal service, La Poste, suffered a cyber incident days before Christmas that disrupted websites, mobile applications and parts of its delivery network.

The organisation confirmed a distributed denial of service attack temporarily knocked key digital systems offline, slowing parcel distribution during the busiest period of the year.

A disruption that also affected La Banque Postale, with customers reporting limited access to online banking and mobile services. Card payments in stores, ATM withdrawals, and authenticated online payments continued to function, easing concerns over wider financial instability.

La Poste stated there was no evidence of customer data exposure, although several post offices in France operated at reduced capacity. Staff were deployed to restore services while maintaining in-person banking and postal transactions where possible.

The incident added to growing anxiety over digital resilience in critical public services, particularly following a separate data breach disclosed at France’s Interior Ministry last week. Authorities have yet to identify those responsible for the attack on La Poste.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Ghana sets framework for safe cryptocurrency trading and Bitcoin adoption

Ghana has formally legalised Bitcoin and cryptocurrency trading after parliament approved the Virtual Asset Service Providers Bill, 2025, closing a long-standing regulatory gap in the country’s digital asset market.

The legislation establishes a licensing and supervisory regime for crypto businesses under the Bank of Ghana. The central bank will oversee the sector, prioritising consumer protection and financial stability, while unlicensed operators may face sanctions or closure.

Under the new framework, individuals can trade crypto legally, while companies must meet reporting and compliance requirements. Officials say the law responds to fraud and money laundering risks while acknowledging the scale of crypto adoption nationwide.

Around 3 million Ghanaians have used cryptocurrency, with transactions totalling roughly $3 billion by June 2024. Licensing rules will be introduced gradually in 2026, as Ghana aligns with a broader African shift toward formal crypto regulation.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Android botnet Kimwolf infects nearly two million smart devices

Cybersecurity researchers have identified a large Android-based botnet capable of more than distributed denial-of-service attacks, highlighting growing risks from compromised consumer devices. The botnet, dubbed Kimwolf, is estimated to control close to two million infected systems worldwide.

The findings come from QiAnXin XLab, which said Kimwolf has infected around 1.8 million devices, mainly smart TVs, set-top boxes and tablets. Most infections were observed in Brazil, India, the US, Argentina, South Africa and the Philippines.

XLab said the infection vector remains unclear, but affected devices were linked to low-cost Android-based brands used for media streaming. Researchers noted repeated attempts to disrupt the Kimwolf, with its command-and-control infrastructure taken down several times before re-emerging.

According to the report, Kimwolf has adapted by shifting to decentralised infrastructure, including the use of Ethereum Name Service domains. Analysts also identified overlaps in code and infrastructure with AISURU, a botnet linked to record-scale DDoS attacks.

Cloudflare recently described AISURU as one of the largest robot networks observed, capable of attacks exceeding 29 terabits per second. XLab said shared infrastructure suggests both botnets are operated by the same threat group.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Hedge funds and banks drive growth in crypto-ETF trading

The US crypto market saw a significant shift in 2024 as the Securities and Exchange Commission authorised the first crypto-asset-backed exchange-traded funds (ETFs).

Regulated ETFs allowed institutional investors, including hedge funds and banks, to invest in Bitcoin and Ether, with assets reaching USD 115 billion and USD 17 billion, respectively, by November 2025.

Nearly 2,000 institutional investors gained exposure to Bitcoin ETFs in 2024, accounting for approximately 30% of the market by year-end. Hedge funds and asset managers led investments, while major banks acted as market makers and asset managers, boosting crypto-ETF growth.

The SEC’s 2025 authorisation of direct crypto-asset exchanges between broker-dealers and ETF issuers also enhanced market efficiency. Institutions increasingly use futures contracts to leverage positions and arbitrage between spot ETFs and futures markets.

Hedge funds often hold short positions in futures to profit from price differences, while asset managers and pension funds maintain net long positions. ETFs provide greater liquidity and lower transaction costs compared with direct crypto holdings.

Systemic risk concerns grow as a few custodians, including Coinbase with 80% of crypto-assets, dominate the market. Volatility, liquidity gaps, and concentrated custody could transmit crypto shocks to the wider financial system, underscoring the need for regulatory oversight.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Ripple transforms cross-border payments with XRP

Cross-border payments have long struggled with delays and high costs, but networks like SWIFT could be transformed by systems that leverage blockchain. Ripple, launched by Ripple Labs in 2012, enables faster, more transparent, and cost-effective international transfers.

RippleNet, the company’s unified payment network, connects multiple banks via the interledger standard, removing intermediaries and enabling near-instant settlement. XRP, Ripple’s digital token, acts as a bridge currency to provide liquidity, though transactions can occur without it.

XRP boasts low fees, high scalability, and settlement times of just a few seconds.

Since its creation, Ripple has evolved from individual protocols to the unified RippleNet platform, supported by the XRPL Foundation. Unlike Bitcoin, XRP is premined and relies on a select group of validators, offering a different governance model and centralisation approach.

The network also supports broader financial applications, including central bank digital currencies, DeFi, and NFTs.

Despite its potential, investing in Ripple carries risks typical of crypto assets, including volatility, lack of regulation, and complexity. Investors are advised to research thoroughly and limit high-risk exposure to ensure a diversified portfolio.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

EU moves to extend child abuse detection rules

The European Commission has proposed extending the Interim Regulation that allows online service providers to voluntarily detect and report child sexual abuse instead of facing a legal gap once the current rules expire.

These measures would preserve existing safeguards while negotiations on permanent legislation continue.

The Interim Regulation enables providers of certain communication services to identify and remove child sexual abuse material under a temporary exemption from e-Privacy rules.

Without an extension beyond April 2026, voluntary detection would have to stop, making it easier for offenders to share illegal material and groom children online.

According to the Commission, proactive reporting by platforms has played a critical role for more than fifteen years in identifying abuse and supporting criminal investigations. Extending the interim framework until April 2028 is intended to maintain these protections until long-term EU rules are agreed.

The proposal now moves to the European Parliament and the Council, with the Commission urging swift agreement to ensure continued protection for children across the Union.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

TSA introduces a fee for travellers without ID

From 1 February, the US Transportation Security Administration will charge a $45 fee to travellers who arrive at airports without a valid form of identification, such as a REAL ID or passport.

A measure that is linked to the rollout of a new alternative identity verification system designed to modernise security checks.

The fee applies to passengers using TSA Confirm.ID, a process that may involve biometric or biographic verification. Even after payment, access to the secure area is not guaranteed, and the charge will remain non-refundable, valid for a period of ten days.

According to the TSA, the policy ensures that the traveller, instead of taxpayers, bears the cost of verifying insufficient identification. Officials have urged passengers to obtain a REAL ID or other approved documentation to avoid delays or missed flights.

The agency has indicated that travellers will be encouraged to pay the fee online before arrival. At the same time, further details are expected on how advance payment and verification will operate across different airports.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!