TOTAL: {[ getCartTotalCost() | currencyFilter ]} Update cart for total shopping_basket Checkout

Europe Data Protection Digest | Charity reveals personal data via email, prompting warning from ICO Related reading: IAPP Westin Scholar finds evolving privacy law 'exciting'

rss_feed

""

""

  • The U.K. Information Commissioner’s Office said an email error led to a breach of personal data and a 10,000 GBP fine for a Scottish charity, prompting a warning for organizations to revisit bulk email practices. The ICO said an HIV Scotland email to 105 people exposed addresses to all recipients, 65 addresses identifying people by name, and an investigation found the organization’s data protection policy was inadequate. 
  • Norway's data protection authority, Datatilsynet, announced a fine of NOK 4 million against municipality Ostre Toten due to security deficiencies that led to a ransom attack on its IT systems and data in January. The ransomware attack compromised all personal information of Ostre Toten residents and employees, some of which was later published online.  
  • Following a complaint, Iceland’s data protection authority, Persónuvernd, reviewed electronic monitoring notice and information on buses of public transportation company Strætó bs. An initial on-site inspection found warnings that electronic monitoring was taking place was insufficient in certain areas. A subsequent inspection a year later found notice was improved and the agency concluded “that the marking and instruction on electronic monitoring in the buses was in accordance with the Data Protection Act,” it said.
Comments

If you want to comment on this post, you need to login.