(Oct 1, 2015) IT departments should add the chief data officer (CDO) to their rosters,” Cognizant AVP’s Poornima Ramaswamy tells IT Brief NZ. “A CDO can develop a data strategy, manage the information ecosystem and, most importantly, educate employees on the power and possibilities of data,” the report states. Ramaswamy contends that the addition of a CDO can help companies not as familiar with the “data culture” bridge the gap. Once that’s done, it’s important for the CDO to map the “organisation’s use of data” and “be transparent” about its use. "Transitioning to a data culture requires dramatic change for traditional organisations,” Ramaswamy said, adding, “CDOs can help their organisations move towards managing data as a strategic asset and embark on their journey towards creating a data culture.” Read More

Asia-Pacific Dashboard Digest

First Direct-Marketing Convictions Set Standard

(Oct 1, 2015) After both a broadband company and a “storage service provider” were the first two organizations found guilty of breaching new direct-marketing provisions of the Personal Data (Privacy) Ordinance (PDPO) by “using a customer’s personal data for direct marketing purposes …without the customer’s consent,” they received relatively low fines. However, in a report for Lexology, attorneys Matthew Durham and Joanne Mok argue the PDPO decisions carry significant future legal weight. “While the fines imposed to date are relatively low in value, the indication is that the violations of direct-marketing restrictions will be more stringently enforced going forward,” they note, adding, “Commentators also suggest that even if fines are low, there may be significant reputational damage for companies.” Read More

Asia-Pacific Dashboard Digest

Are ISPs in Danger?

(Oct 1, 2015) Analysts contend that the cost of implementation and upkeep for Internet service providers (ISPs) to satisfy data retention requirements could spell financial ruin for smaller ISPs, ZDNet reports. The law requires that “all customer … data will be stored for two years, accessible without a warrant by law-enforcement agencies,” the report states, and will go live 13 October. This could mean a “very real prospect of ISPs going out of business if they are not adequately reimbursed for the costs of implementation and the ongoing operating costs incurred in complying with this questionable law," said Laurie Patton, CEO of Internet Australia. "At the very least, the government needs to commit to funding the costs incurred by ISPs if it insists on retaining this onerous law." Read More

Asia-Pacific Dashboard Digest

OAIC Still Protecting Privacy as Staff Dwindles

(Oct 1, 2015) The government’s decision to significantly defund the Office of the Australian Information Commissioner (OAIC) is troubling as “the privacy functions of the OAIC have arguably never been more important, and it has now been tasked with an even greater responsibility to oversee parts of the mandatory data retention scheme,” The Guardian reports. Those behind the scenes argue the shortage of funding stems from government displeasure with freedom of information. Regardless, Privacy Commissioner Timo... Read More

Asia-Pacific Dashboard Digest

All Data Is Not Created Equal

(Oct 1, 2015) New Zealand’s Office of the Privacy Commissioner (OPC) is using the U.S. Office of Personal Management breach to highlight how “data is not created equal.” An OPC blog post states, “If you’ve had a security clearance in New Zealand, or know someone that has, you’ll know that it’s not just your personal information tied up in a clearance. They ask questions of and about multiple people that you know. So those 21.5 million records possibly contain information about even more people.” Then there’s ... Read More

Asia-Pacific Dashboard Digest

Modi: Digital India To Prioritize Privacy

(Oct 1, 2015) Indian Prime Minister Narendra Modi spoke with a group of U.S. tech leaders to discuss his plans for a “Digital India,” which include privacy designs, India Today reports. "As our economy and our lives get more wired, we are also giving the highest importance to data privacy and security, intellectual property rights and cyber security," Modi said to a crowd that included the likes of Adobe CEO Shantanu Narayan, Googe CEO Sunder Pichai and Microsoft CEO Satya Nadella. "We will transform governan... Read More

Asia-Pacific Dashboard Digest

ICYMI: Some Highlights from P. S. R.

(Oct 1, 2015) What a week it was at the Bellagio in Las Vegas, NV, as privacy pros from across the globe gathered for Privacy. Security. Risk. In case you missed the IAPP Publication Team’s live coverage from the event, here’s a roundup of just some of the highlights. Acxiom’s Jordan Abbott didn't mince words when he opened the preconference session “Vendor Compliance: Drowning In a Sea of Vendors," telling attendees: "Bottom line you're going to take away from this program is: vendors are a problem.” The pre... Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Europe Data Protection Digest

The Privacy Consequences of Ad Blockers

(Oct 1, 2015) The rise in ad-blocking technology and its increased adoption by consumers has flooded the headlines of late, bringing up debates around what this will ultimately mean for the Internet. However, ad-blocking technology can also block cookie notices, something required by EU law. “It now appears that some ad blockers, acting under a banner of privacy, are achieving exactly the opposite by removing consumer visibility into the tracking that’s taking place and consumers’ ability to chose which cookies and trackers they want to accept,” writes TRUSTe Global Communications Director Eleanor Treharne-Jones, CIPP/E. In this post for Privacy Perspectives, Treharne-Jones discusses the privacy implications of this rising trend. Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Amnesty International to France: Reject Global Mass Surveillance Law

(Oct 1, 2015) Amnesty International has published a report urging the French National Assembly to reject a law giving “carte blanche” ability for mass surveillance on a global scale. The National Assembly is scheduled to take up the bill, which “revives efforts previously struck down by the Constitutional Council in its review of the 24 July 2015 French Surveillance Bill,” this week, the report states. “Under this new law, almost all Internet communications will be considered fair game by the French authorities, without any form of meaningful checks and balance,” said Amnesty International’s Sherif Elsayed-Ali, adding, “Allowing for such extensive, intrusive and indiscriminate mass surveillance is a flagrant violation of people’s right to privacy and freedom of speech.” Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

New Data Breach Guidance from PCI SSC

(Oct 1, 2015) The Payment Card Industry Security Standards Council (PCI SSC) has published guidance for organizations to handle data breaches effectively and with minimal financial consequence, reports. "Prevention, detection and response are always going to be the three legs of data protection," said Stephen W. Orfei, PCI SSC general manager. “Better detection will certainly improve response time and the ability to mitigate attacks, but managing the impact and damage of compromise comes down to p... Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest