Core Viewpoint - The ongoing governance of personal information collection by applications is highlighted, with specific issues identified in 15 apps and 16 SDKs regarding transparency and compliance with personal information protection laws [1][2][7]. Group 1: Issues Identified - 15 apps, including popular ones like Moji Weather TV version and Youdao Premium Course, failed to list the SDKs used for personal information collection and did not accurately state the purposes, methods, and scope of data collection [1][3][5]. - 16 SDKs were found to lack clear rules for personal information collection and did not respond timely to user rights requests, leading to increased risks of data misuse and compliance violations [2][6][7]. - The lack of transparency in data collection practices violates the "notice and consent" principle outlined in the Personal Information Protection Law, potentially exposing users to risks such as data theft and unauthorized sharing [7][9]. Group 2: Company Responses and Compliance - Companies like Moji Weather and Youdao have acknowledged the issues and are working towards compliance, with Moji Weather indicating that the TV version is not their main product and will undergo necessary rectifications [4][8]. - Some apps, such as Tuhu Car Maintenance, have already updated their versions to comply with the requirements, while others like Youdao Premium Course have not yet made necessary updates [8][9]. - The need for companies to enhance their understanding of legal regulations and improve compliance practices is emphasized, as non-compliance can lead to significant operational risks and reputational damage [9][10]. Group 3: Recommendations for Improvement - Companies are advised to integrate privacy design principles during the development of apps and SDKs, including data minimization and encryption [10]. - Establishing a security assessment system for SDKs and implementing dynamic permission management mechanisms are recommended to enhance data protection [10]. - Regular compliance audits and the establishment of user rights response systems are crucial for ensuring user rights are adequately protected [10].

Core Viewpoint - Recent announcement by the Central Cyberspace Administration of China (CAC) highlights that 15 apps, including popular ones like墨迹天气tv版 and 途虎养车, have been flagged for issues related to personal information collection [1][2]. Group 1: Regulatory Actions - The CAC, along with other governmental bodies, has initiated a series of special actions for personal information protection, in accordance with various laws including the Cybersecurity Law and the Personal Information Protection Law [2]. - The identified apps failed to adequately disclose the SDKs used for collecting personal information, as well as the purposes, methods, and scope of such data collection [2][3]. Group 2: Specific Apps and SDKs - A list of apps, including 烟台出行, 亲邻开门, and 学霸在线, were noted for not accurately listing the SDKs and their data collection practices [3]. - SDKs such as CTP and 金仕达 were also mentioned for not providing rules for personal information collection and failing to respond to user rights requests in a timely manner [4]. Group 3: Compliance and Rectification - The involved app and SDK operators are required to complete rectification within 15 working days from the announcement and report back to the authorities [4]. - The CAC will conduct follow-up inspections and take necessary actions based on the compliance status [4].

Group 1 - 15 apps, including Moji Weather TV version, were reported for issues related to personal information collection and usage [2][3] - Specific problems include failure to provide personal information collection rules and not responding to user complaints in a timely manner [3][4] Group 2 - Shanghai Hongqiao Airport and Beijing Capital Airport launched a trial voluntary transfer service for flights between the two airports [5] - The service is available for specific flights operated by China Eastern Airlines and Air China, allowing passengers to change flights under certain conditions [5] Group 3 - During the May Day holiday, the Yangtze River Delta railway sent over 20 million passengers, with a daily average exceeding 4 million, marking a year-on-year increase of over 10% [6] - On May 1, a record 4.268 million passengers were sent in a single day [6] Group 4 - Google announced plans to appeal against a court ruling in the U.S. Department of Justice's advertising technology case [15][16] - The company disagrees with the court's decision regarding its Google Ad Manager tool [16] Group 5 - Skechers is set to be privatized in a deal worth approximately $9.4 billion, with shareholders given options for cash or a combination of cash and equity [21] - The transaction is expected to be completed in the third quarter of this year [21] Group 6 - Li Ning has officially signed a partnership with the Chinese Olympic Committee to provide sportswear for the 2025-2028 period [19] - The partnership includes support for multiple international sporting events, including the 2028 Los Angeles Olympics [19] Group 7 - A new logistics supply chain project in Xuchang, Henan, is expected to generate an annual output value of approximately 2.5 billion yuan [22][23] - The project is a collaboration between Pang Donglai and JD Logistics, with a total investment of 1.25 billion yuan [22]

（原标题：直播顾客用餐，逾越了权利边界） 当你走进某个餐厅大快朵颐，可曾想到，自己有可能被直播？据报道，近日，有网友发帖反映，某餐饮 店在直播时拍摄到了顾客用餐的画面。网友觉得不适，表示不想再去该门店用餐。此帖发出后，引起了 公众的热议。 倘若餐厅想要毫无麻烦地直播，只有两种办法：一种是镜头远离顾客，避免将顾客纳入直播画面中，成 为直播的一部分，侵犯他人的隐私权和个人信息权利。另一种办法则是，事先告知消费者，并且征得他 们的许可。在个人信息保护法等法律中，也明确了"知情""同意"的基本原则，如果不是"为履行法定职 责或者法定义务所必需""为应对突发公共卫生事件，或者紧急情况下为保护自然人的生命健康和财产安 全所必需"等，有关主体不能擅自处理个人信息，否则就要承担不利后果。 类似餐厅直播顾客用餐现象，并非个案孤例。此前，有媒体报道过，某火锅店老板喜欢在店里做直播， 以此招揽生意，有顾客入镜直播间后，认为火锅店老板侵犯了自己的肖像权，将其告上法庭，最终获赔 500元。其实，随着直播的全民化、全域化，不仅是在餐厅，机场，医院、地铁站、火车站乃至博物 馆、图书馆等公共场所，都是一些主播经常直播和拍摄短视频的场所，常有 ...

Core Viewpoint - The increasing use of facial recognition technology in daily life raises significant concerns about personal information security and privacy, prompting the introduction of new regulations to protect individuals' rights and data [3][4][5]. Group 1: Current Situation - Facial recognition technology has become deeply integrated into everyday activities, such as unlocking phones and accessing buildings, but its misuse has led to personal information leaks and identity theft [3][4]. - A recent case in Mengzhou City highlighted how criminals exploited facial recognition to illegally obtain personal information under the guise of activating electronic medical insurance cards, resulting in over 6 million yuan in illegal gains [4][5]. - The rise of illegal activities surrounding facial recognition data collection has prompted law enforcement to take action against organized crime groups involved in the sale of sensitive personal information [5][6]. Group 2: New Regulations - The newly implemented "Facial Recognition Technology Application Security Management Measures" aims to establish a legal framework for the use of facial recognition technology, focusing on data security and personal privacy [3][6][9]. - The regulations stipulate that facial recognition cannot be the sole method of identity verification and must be accompanied by alternative options for individuals who do not consent to its use [9][10]. - The measures also prohibit the installation of facial recognition devices in private spaces, ensuring that personal privacy is respected in sensitive environments [9][10]. Group 3: Industry Response - Local authorities, such as the Zhengzhou Public Security Bureau, are actively promoting awareness of the new regulations and encouraging compliance among property management companies to protect residents' personal information [10][11]. - Legal experts emphasize the need for a systematic approach to regulate the application of facial recognition technology, highlighting the importance of informed consent and transparency in data collection practices [6][7][9]. - The ongoing efforts to combat illegal data collection and enhance personal information protection reflect a growing recognition of the risks associated with facial recognition technology in various sectors [5][10].

具体来看，云端金融、捷信金融违规事项包括：隐私政策未逐一列出App（包括委托的第三方或嵌入的第三方代码、插件）收集使用个人信息的目的、方 式、范围等情况；未向用户提供撤回同意收集个人信息的途径、方式，基于个人同意处理个人信息的，个人有权撤回其同意，个人信息处理者未提供便捷的 撤回同意的方式。 分期白条违规事项包括未就信息收集进行详细说明并取得个人的单独同意，App客户端向第三方提供个人信息时未做匿名化处理。同时，未向用户提供撤回 同意收集个人信息的途径、方式，在更正、删除个人信息及注销用户账号功能方面也有不足。 整体来看，不仅仅是此前高发的过度索取权限、超范围收集个人信息等违规情况，本次通报提到的金融类App违规事项对于在信息收集后的处理方面也有提 及，例如未提供撤回信息授权方式、未畅通账号注销渠道等。 67款被通报的App中，分期白条、云端金融、捷信金融等金融领域相关App被点名，并且均在检测中被发现存在多起违规事项。 北京商报讯（记者 廖蒙）手机应用程序收集个人信息的治理工作持续推进中。4月22日，据公安部网安局官方消息，依据《中华人民共和国网络安全法》 《中华人民共和国个人信息保护法》等法律法规，按照《 ...

Core Viewpoint - The article highlights a case of "opening boxes and hanging people," a new form of online violence that has led to severe consequences for victims, including mental health issues. The case involved a PhD student in cybersecurity and a college student, who were sentenced to prison for their actions, indicating the legal repercussions of such behavior [1][2][3]. Group 1: Legal and Regulatory Response - The Central Cyberspace Administration of China has intensified efforts to combat "opening boxes and hanging people," categorizing it as a significant issue requiring urgent attention [1]. - In November 2023, a campaign was launched to address this issue, particularly focusing on protecting minors from such online violence [1][2]. - The Supreme People's Court reported that in 2024, 292 individuals were convicted for violating personal information laws, emphasizing the legal consequences of online harassment [3]. Group 2: Social and Educational Implications - There is a concerning normalization of online violence among certain groups, where minor conflicts can escalate into severe harassment, as seen in the case of the PhD student [2]. - The need for enhanced legal education in higher education institutions is highlighted to foster a better understanding of the risks and ethical implications of online behavior [2]. - A collaborative mechanism involving schools, families, and social institutions is necessary to address the involvement of minors in online violence and ensure appropriate corrective education [2]. Group 3: Platform Responsibility and Community Management - Online platforms are urged to take greater responsibility in monitoring and managing content to prevent the occurrence of "opening boxes and hanging people" [3]. - Regular information oversight, handling of violating accounts, and identification of sensitive information are essential for platforms to eliminate the environment that allows such behaviors to thrive [3]. - The article calls for a comprehensive approach to governance that includes legal improvements, personal information protection, and effective community management to create a safer online space [3].

Core Points - The incident involving Baidu's vice president's daughter has raised public awareness about personal information protection, highlighting the severe consequences of "human flesh opening" where personal data is maliciously exposed and used for harassment [1][3] - The phenomenon of "human flesh opening" is increasingly involving minors, reflecting a troubling trend influenced by internet culture and the actions of individuals in positions of power [3][6] Group 1: Incident Overview - A 13-year-old minor was involved in multiple instances of "human flesh opening," leading to severe harassment and privacy violations against a pregnant woman [1][3] - Victims of this incident are considering collective legal action due to the high costs and complexities of seeking justice [3][27] Group 2: Data Privacy and Security - Baidu held a security meeting addressing the "opening box" incident, stating that the information was sourced from overseas "social engineering databases," and asserting that no employees have access to user data [6][9] - The term "human flesh opening" refers to the illegal acquisition and public exposure of personal data, which has escalated into severe online harassment and threats [6][8] Group 3: The Role of Social Engineering Databases - "Social engineering databases" are large collections of personal information gathered by black market operators, which can be used for malicious purposes, including "human flesh opening" [8][12] - The existence of these databases is facilitated by the dark web and various social media platforms, where personal information can be bought for as little as 300 yuan [9][11] Group 4: Legal and Regulatory Context - The majority of data leaks originate from internal sources, with about 80% attributed to insiders, highlighting the challenges in data security monitoring [13][16] - Current penalties for data breaches in China are often minimal compared to the scale of the violations, leading to a lack of deterrence for companies [19][20] Group 5: Future Actions and Recommendations - The Chinese government is initiating a series of actions aimed at improving personal information protection, focusing on various sectors prone to data breaches [29][30] - There is a call for collective responsibility among companies, institutions, and individuals to ensure data security and accountability [29]

作主持"最行 保护个人信息 谨防电信诈骗 老头子,快把你身 份证给我,跟我走。 你要我身份证干啥? 刚才在小公园碰见- 个小伙子,他说是为 山区献爱心的,不需 要我们掏钱 3.촬惕过于热情的陌生人:当陌生人对你过分热情 时,应保持警惕,以免上当受骗。 只要登记我们信息, 他们就替我们往山区 送鸡蛋,而且我们还 能领50个鸡蛋,献爱 心还能领鸡蛋! 你这老头子,觉悟 啊? 这 ... 个人 能不能高一点,快 信息能随便告 跟我走吧! 诉陌生人吗? 爷爷奶奶你们来了, 这边 登记完信息后我们替大家 往山区送食品,大家还可 以扫码入我们小区群,以 后活动还有很多呢! 哎呀,扫个码就行?老头 子,快把你手机拿来,我 们都扫! S 阿姨, 泄露个人信息 是非常危险的,不法 分子很可能会用您的 爱心和个人信息设计 诈骗活动,这样,您 很可能会不知不觉地 就被诈骗分子把钱都 骗走了。 啊? 这 … 后果竟然这么严重? 贪小便宜吃大亏 现在知道了吧! 风险提示 1.不随便透露个人信息:骗子会变换千万种手段窃 取你的信息,一定要重视自己的信息安全!在和 陌生人交流中,不随便透露个人的信息!更不要 和陌生人使用"屏幕共享"功能, ...

Core Viewpoint - The article discusses the "opening box" incident involving Baidu's executive's daughter, emphasizing Baidu's denial of any involvement in the unauthorized access and sharing of personal data, while highlighting the broader issue of personal information security in China [1][2]. Summary by Sections Incident Overview - The "opening box" incident involved a netizen who, after a dispute over a Korean artist, used illegal means to collect and expose personal information, leading to online harassment of multiple users, including a pregnant woman [3]. - The individual responsible was identified as the 13-year-old daughter of Baidu's vice president, Xie Guangjun, who later issued an apology for her actions [4]. Baidu's Response - Baidu issued a statement asserting that the information related to the incident did not originate from its platform and that no employees or executives have access to user data [2]. - The company condemned the act of stealing and publicly disclosing personal information, emphasizing a zero-tolerance policy towards such behavior [2]. Investigation Findings - Baidu's internal investigation revealed that the exposed information came from an overseas social engineering database, not from Baidu itself [2]. - The company has reported the spread of false information and rumors related to the incident to law enforcement [2]. Personal Information Security Issues - The article references a recent CCTV report highlighting ongoing issues with personal information security, including illegal data collection practices by various tech companies [4]. - It mentions that in 2024, over 7,000 cases related to personal information crimes were resolved, with significant law enforcement actions taken against offenders [4]. Regulatory Framework - The article outlines the importance of personal information protection as a compliance obligation for companies, referencing the Personal Information Protection Law of China [11]. - A new compliance audit management method was introduced by the National Internet Information Office, set to take effect on May 1, 2025, to enhance personal information protection practices [11].