Two things you already knew are confirmed in this week’s Digest. First, high-stakes laws, like the GDPR, are goldmines for clever privacy and security professionals. Second, P455w()rd5 that use letters and symbols are actually easy to crack, despite being hard to remember.

GDPR readiness is well reported, but trending now is the emergence of innovative technical aids for GDPR compliance. We report on two such offerings, and I’m sure more will come.

This week, NIST recanted on its standing wisdom that forces us to create and constantly change complex passwords that include symbols, numbers and letters. NIST now acknowledges how humans actually behave. Long, memorable phrases are much harder to crack and much easier for people to remember and manage. We’ve linked to the original story, reported by The Wall Street Journal.

ADVERTISEMENT

PLI, Earn privacy CPE and CLE credits: Watch anytime online or on our mobile app, topics include AI, privacy, cybersecurity, and data law

Plus lots more, including a thought-provoking bulletin on Apple’s concessions to China on VPN apps.

Don’t forget to register for the iappANZ 2017 Summit, Privacy & Personalisation — WALKING THE LINE. Early bird registration closes 16 August 2017.