Privacy Company released the results of a data protection impact assessment commissioned by the Dutch government on Microsoft Office ProPlus. The DPIA was done to "help the individual government organisations map and assess the data protection risks for data subjects caused by this data processing, and to ensure adequate safeguards to prevent or at least mitigate these risks." The report covers descriptions of Office’s diagnostic data processing and the lawfulness of those activities. The DPIA also lists out some of the risks with ProPlus, such as a lack of purpose limitation, an indefinite retention period, and Microsoft not acting as a data processor. (Click Full Story to receive PDF download of the report.)
If you want to comment on this post, you need to login.