In a recent article for the *Wall Street Journal*, Daniel Solove posits that traditional approaches to privacy regulation, which emphasize individual control over personal data, are inadequate in the current AI-driven environment. He suggests that instead of placing the onus on consumers, companies should be held to higher standards of accountability. This includes implementing rigorous data minimization practices, establishing fiduciary duties, and enforcing liability for technological negligence or harmful algorithms. These measures would collectively ensure that organizations take greater responsibility for how they manage and utilize personal data.
For businesses, this shift towards accountability could lead to significant changes in compliance and operational strategies. Companies may need to reassess their data handling practices and invest in more robust governance frameworks to mitigate risks associated with data misuse or breaches. As AI technologies continue to evolve, the implications for cybersecurity are profound; a focus on proactive accountability could help reduce incidents of data exploitation and enhance consumer trust. Ultimately, Solove's proposals underscore the need for a more comprehensive regulatory approach that prioritizes public safety and ethical standards in technology deployment, crucial for maintaining a secure digital landscape.
---
*Originally reported by [Schneier on Security](https://www.schneier.com/blog/archives/2026/07/protecting-privacy-in-an-ai-era.html)*