ACI_Q2_Ads_battletested-728x90
ACI_Q2_Ads_successful-728x90
ACI_Q2_Ads_disaster-728x90
S16_Header_300x250
IAPP-GDPR Web Banners-300x250-FINAL
DPI16_Banner_300x250 WITH COPY

(Feb 11, 2016) With Tuesday’s executive order establishing a Federal Privacy Council, President Obama — who a year ago visited the Federal Trade Commission to give remarks about privacy, who submitted comprehensive consumer privacy legislation to Congress, and who tasked his most senior advisor John Podesta with examining the privacy implications of big data — continued his trailblazing path in privacy policymaking. The IAPP’s CEO and President, J. Trevor Hughes, CIPP, and VP of Research and Educat... Read More

Daily Dashboard

Privacy Bar Section of the IAPP unveiled

(Feb 11, 2016) The IAPP formally announced on Wednesday the Privacy Bar Section of the IAPP, a group geared toward administering to the distinct needs of those in the privacy-oriented legal profession, The Privacy Advisor reports. Of the IAPP’s more than 25,000 members, “we know more than 40 percent are lawyers,” said IAPP President and CEO J. Trevor Hughes, CIPP, “and these lawyers need services.” The bar aims to be a place for privacy-focused legal professionals and academics to come together to both discuss... Read More

Asia-Pacific Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

House passed Judicial Redress Act

(Feb 11, 2016) After passing in the Senate and Wednesday, the House, the Senate version of the Judicial Redress Act’s next stop is with President Obama for executive approval, Broadcasting & Cable reports. The legislation aims to protect the privacy of European data that comes into the U.S., and is considered an integral part in furthering EU-U.S Privacy Shield discussions. “By allowing citizens of European nations and other designated U.S. allies procedural privacy protections similar to those offered to ... Read More

Daily Dashboard, Europe Data Protection Digest

Google to honor RTBF requests worldwide, for European users

(Feb 11, 2016) Reuters reports on changes Google plans to make in how it honors “right to be forgotten” requests for European users. The new move will honor delinking in all of Google’s versions — i.e., Google.com or Google Germany — for users in the country of origin for the takedown request. So, a user in France who goes to Google.com will not see approved takedown requests via France on all Google sites, though a user outside of France would see the link. Google will filter the search results via IP addresses. A spokesman from the U.K. Information Commissioner’s Office said the move appears to be in line with concerns it expressed “on the scope of the requirement to de-list.” A spokeswoman from the French data protection authority said, “These elements are currently the object of an inquiry by the services of the CNIL.” Read More

Asia-Pacific Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Dennedy: Privacy to get its due at RSA

(Feb 11, 2016) Bank Info Security previews RSA 2016, at which privacy looks to be a dominating theme. While it’s been the topic of some breakout sessions in recent years, Cisco CPO Michelle Dennedy, CIPP/US, CIPM, says this year it’s taking a center-stage position. “At last, we are looking at data centricity, the importance of information as a key economic driver of the marketplace and security as one of the key integrity engines of that economic confluence of information and technology working for people — and not people just being oppressed by too much information and too much technology,” Dennedy said. Editor’s note: Trevor Hughes, CIPP, Rita Heimes, CIPP/US, and Omer Tene are among several IAPP staffers who will speak at this year’s conference. Read More

Daily Dashboard

Survey: Infosec pros pressured to release projects, despite potential kinks

(Feb 11, 2016) According to a new survey, IT World Canada reports, despite an increase in data breaches within the last year, infosec professionals report continued pressure to release products that aren’t yet secure. The Trustwave survey indicated 77 percent of respondents, in five countries, said they’d felt pressure to release products before they could be made fully secure. “One of the big things the industry in general needs to increase is the overall awareness, education, training — and not just at the IT level but at the board level and across business units — to make them aware of the risks of pushing things to market too quickly,” said Trustwave’s Brent Davidson. Read More

Daily Dashboard

Tech groups urge FCC to adopt FTC-style privacy rules

(Feb 11, 2016) In a letter to Federal Communications Commission Chairman Tom Wheeler, top technology and telecommunications groups urge the agency to not significantly change the way it will police Internet service providers once last year’s net neutrality order takes effect, The Hill reports. Rather, any new privacy regime, they argue, should reflect the flexibility of the Federal Trade Commission’s Section 5 authority. Last year, the FCC changed the way ISPs are classified, though the order is currently in t... Read More

Daily Dashboard

ICO: More Privacy Shield details needed before advice will change

(Feb 11, 2016) As the EU-U.S. Privacy Shield’s level of protection for data transferred from the EU to the U.S. is still mostly undefined, the Information Commissioner’s Office Blog maintains that until more information is divulged, the same “regulatory policy will be applied,” the report states. “We’re very much aware that organizations have been seeking clarity about how they can transfer data to the USA in compliance with the Data Protection Act,” the report continues. “Our position remains the same as in October — whilst complaints can be considered the usual ICO regulatory policy will be applied. We will be guided by the risk posed to individuals and steps that can be reasonably expected of data controllers.” Read More

Daily Dashboard, Europe Data Protection Digest

Google nudging email users to bolster their privacy, security

(Feb 11, 2016) Google’s email service, Gmail, will introduce two new design features aimed at driving users to improve their email privacy and security, TechCrunch reports. The new features include the ability for users to see whether their email was or will be encrypted and whether other users have been authenticated. The new authentication features will be user-friendly and will include a lock in the upper right-hand corner that shows the user when a communication is encrypted or not — similar to the l... Read More

Asia-Pacific Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

HIMSS: NIST Cybersecurity Framework needs some more love

(Feb 11, 2016) The Healthcare Information and Management Systems Society maintains that while the National Institute for Standards and Technology’s Cybersecurity Framework will function as an asset to the health care industry, there’s still room for improvement, the agency said via public comment. “The Framework could be more useful to healthcare stakeholders by providing metrics and other tools to measure progress with the Framework,” as well as more specifically addressing areas of privacy, HIMSS said in a HealthITSecurity report. Elaborating “about the intersection between privacy risk management and information security risk management” would serve as one concrete Framework upgrade, the agency added. Read More

Daily Dashboard