GDPR

GRU, Russia’s military intelligence service, hacked officials and organisations involved in the planned 2020 Tokyo Olympic and Paralympic Games, the UK government has announced. The UK government said that the GRU also targeted the 2018 Korean Winter Olympics and Paralympics, which took place in Pyeongchang, even posing as North Korean…

On 2nd October 2020, the Hamburg Commissioner for Data Protection and Freedom of Information (Hamburg DP Commissioner) imposed a 35.3 million Euros fine on H&M Hennes &Mauritz for serious breaches of the General Data Protection Regulation (GDPR) at its service centre in Nuremberg. Specifically the … Continue reading → Source link

Ireland’s Data Protection Commission (DPC) has launched two statutory inquiries into the processing of children’s data on Facebook-owned social media platform, Instagram. In the first, the DPC will look at Facebook’s reliance on certain legal bases for processing children’s personal data on Instagram, whether Facebook has a legal basis for the…

The ICO has finally issued a fine to British Airways (BA) for a cyber security breach which saw the personal and financial details of more than 400,000 customers being accessed by attackers.   £20 million is a lot of money, even for British Airways, and especially in a global pandemic which has seen all airlines struggle financially. However it is a far cry from … Continue reading → Source link

Digital advertising association IAB Europe has hit out at a preliminary report by the Belgian Data Protection Authority finding that its ad tracking consent framework does not comply with GDPR. The widely-adopted Transparency and Consent Framework (TCF) is designed to help publishers tell visitors where data is being collected and…

The Information Commissioner’s Office (ICO) has fined British Airways (BA) £20m for failing to protect the personal and financial details of more than 400,000 of its customers. An ICO investigation found the airline was processing a significant amount of personal data without adequate security measures in place. This failure broke data…

As organisations across the world grapple with the pandemic, PrivSec Report speaks to Müge Fazlıoğlu, senior research fellow at the US-headquartered IAPP, about the ongoing privacy and data protection challenges. As Senior Westin Research Fellow at the Westin Research Center, an in-house International Association of Privacy Professionals (IAPP) resource producing research and scholarship into…

Olu Odeniyi writes… Data Protection Officers (DPOs), and others who work in data protection, will know that a fundamental requirement of GDPR is to protect personal data ”against accidental loss, destruction or damage, using appropriate technical or organisational measures” as stipulated in … Continue reading → Source link

PrivSec Report takes a look at the growth of digital healthcare – and the impact on patient privacy and data security.  We’ve all seen the newspaper reports of how hospitals and ICUs have coped with treating the influx of patients caused by the Covid-19 pandemic. But the disease has also…

Showing that the collection of data through the NHS app is ethical and transparent is crucial to its success this winter, writes Evelina Georgieva Trust is the foundation of all good relationships. When we trust people, we are happy to share things with them and we are more likely to…