MediaPro_Ldbd_08_18_16
OneTrust_Banner-ad-demo
BNA_PA_09_16_Privacy Laws-728x90
Certification_Ad_300x250final-01
PSR16_WebBanner_300x250-wCopy
PrivacyTraining_ad300x250.Promo1-01

(Aug 24, 2016) The U.S. Department of Commerce has released the list of the first companies to self-certify under the Privacy Shield. A once-over of the list indicates mainly smaller companies across a spectrum of industries. Who are these firms and what made them dive in early? It turns out it's a mixture of competitive drive and the grace period the Shield agreement offers so that firms who certify early have some time to sort out their vendor agreements. Everyone agrees: Those vendor requirements are going ... Read More

Daily Dashboard

Why data protection needs to extend to virtual places

(Aug 24, 2016) Without a doubt, the emergence of “Pokemon Go” has made a splash in the privacy world. From regulatory and lawmaker inquiries to real-world, unexpected privacy invasions, the game appears to be just the beginning of a new virtual reality paradigm. And though Google Maps and Niantic — the game’s developer — have honored most take-down requests from mis-tagged locations, the “real danger is that, due to the incredible popularity in a very short period of time, many imitators are looking to cash in on the location-based gaming craze.” In this post for Privacy Perspectives, Intel Senior Attorney Diana Jimenez and Group Counsel of IT, Privacy & Security Daniel Christensen, CIPM, CIPP/US, CIPT, discuss what is needed to protect personal data while allowing this exciting new innovation to thrive in the marketplace. Read More

Daily Dashboard

Belgian MEP requests European Commission investigate 'Pokemon Go'

(Aug 24, 2016) Politico reports a Belgian MEP is filing an inquiry request with the European Commission over "Pokemon Go." Marc Tarabella is asking the European Commission to investigate the popular app in order to examine the game’s privacy practices and to warn EU citizens of the app’s privacy dangers. Tarabella said "Pokemon Go" violates the General Data Protection Regulation, and with the app storing cookies and trackers on users’ smartphones, it may also violate the EU’s ePrivacy Directive. “In their eyes, tracking personal data of people is clearly considered a game and a source of research or revenue,” Tarabella said. “In Europe, the protection of privacy remains a fundamental right. We have to react, warn and strongly condemn these massive scams.” Read More

Daily Dashboard

Canada, Australia: Ashley Madison misled consumers

(Aug 24, 2016) The lead privacy regulators of Canada and Australia have released the results of their joint investigation into the Ashley Madison data breach. The investigation revealed Ashley Madison had “inadequate security safeguards and policies” and misled users with a “phony trustmark icon” on the site’s homepage, The Globe and Mail reports. The Privacy Commissioner of Canada requires Ashley Madison to build better security systems and offer users more control of their data. “The most broadly applicable ... Read More

Daily Dashboard

FTC’s Ramirez: We’re expanding definition of PII

(Aug 24, 2016) Speaking at the Technology Policy Institute in Aspen, Colorado, Federal Trade Commission Chairwoman Edith Ramirez said consumer control and consent need to remain at the forefront of innovation, despite online privacy issues becoming increasingly complex, FedScoop reports. “We hear with increasing frequency the claim that technological innovation and big data have rendered certain fundamental tenets of privacy, particularly the idea of consumer consent, outdated and ill-suited for today’s digita... Read More

Daily Dashboard

German, French legislators want EC help accessing encrypted tech

(Aug 24, 2016) In the wake of multiple deadly terrorist attacks in their respective countries, German and French officials will petition the European Commission to provide states with the ability to force encrypted technology companies to provide governmental access, ZDNet reports. "It's a central issue in the fight against terrorism," said French Interior minister Bernard Cazeneuve. “The European Commission said it ‘welcomed’ the initiatives between the two countries, but said that data protection laws are al... Read More

Daily Dashboard

Want to be a security engineer?

(Aug 24, 2016) Security engineers have seen the highest increase of pay in the U.K. in the past 18 months, and the country’s demand for more talented professionals in the field is ever-growing, ComputerWorld UK reports as part of a Q&A on becoming a security engineer. Strong technical and teamwork skill are a must for those interested in pursuing this career, current security engineers said. Flexibility and willingness to constantly learn are also paramount. “The constant development of new forms of attack and the rapid pace of technological innovation are giving rise to a need for a much broader set of skills, including the ability to analyze huge amounts of data and understand hackers’ behavior,” said CGI’s Andrew Rogoyski. Read More

Daily Dashboard

Study: Breaches could cost one-fifth of retail customers

(Aug 24, 2016) A KPMG survey found that one-fifth respondents said they would stop shopping with a company after a data breach, regardless of how it handled the data loss post-breach, Fedscoop reports. One-third of the surveyed added that they would avoid shopping there for at least three months after the breach, the report states. Regardless, only 55 percent of surveyed organizations said they had invested in upgraded cybersecurity in the past year. "Make no mistake, there is a lot at stake here for retailers,” said KPMG’s Mark Larson. “Consumers are clearly demanding that their information be protected and they're going to let their wallets do the talking.” Read More

Daily Dashboard

‘Personal curiosity’ caused breach of Pulse Nightclub victims’ medical data

(Aug 24, 2016) Orlando Regional Medical Center has disclosed that employee “personal curiosity” led to snooping in the medical records of the Pulse Nightclub shooting victims three days after the attack, WESH reports. Information regarding the scope of the incident, the employees involved, and the reasoning behind the two-month notification period is “unavailable,” the hospital said, although it did specify that it would retrain employees and increase monitoring and auditing procedures. Regardless, analysts say ORMC violated HIPAA and will be on the receiving end of enforcement action − and bad press. “That does make me angry that something like this would happen,” said the LGBT Center of Central Florida’s Terry DeCarlo. “The first thing that hit me is, who are they selling this information to?” Read More

Daily Dashboard

Mozilla invests in privacy search engine Cliqz

(Aug 24, 2016) Myce.com reports Mozilla has invested in the privacy-focused search company Cliqz, which is majority owned by Hubert Burda Media. The search engine is currently available as a free add-on for Firefox, where “no personally identifiable information is transmitted or saved on its servers.” Cliqz also has its own standalone browser, with search built in. “Mozilla is the ideal company for Cliqz to work with because we both believe in an open Internet where people have control over their data. Data an... Read More

Daily Dashboard