BNA_PA_09_16_Privacy Laws-728x90

(Aug 25, 2016) As most companies operating in Europe should by now be aware, as of May 2018 there will be a requirement for many firms to have a data protection officer. For small companies that nonetheless handle a lot of personal data, the sensible option may be to bring in an external DPO. There's likely to be a flurry of activity in the next couple of years, and one privacy professional who's definitely looking forward to the shake-up is Xavier Leclerc, the vice-president of the French association of data protection officers (AFCDP) and president of a company called Privacil. IAPP European correspondent David Meyer talks with Leclerc about the concept of the “mutualized DPO” in this piece for The Privacy Advisor. Read More

Daily Dashboard, Europe Data Protection Digest

PwC acquires to prepare for Privacy 2.0

(Aug 25, 2016) The age of privacy as a matter of policy and law is over. Now dawns the age of privacy as a technical matter, of automation, operations, and execution. At least that’s how PwC sees things, and that has fueled a pair of acquisitions in the identity and access management market, which will be bolted on to PwC’s growing cybersecurity, privacy and data protection practice. IAPP Publications Director Sam Pfeifle talks with PwC and the CEO of Everett, PwC’s latest buy, about why “if you don’t have deep technical expertise, such as about how biometric authentication works in a technical sense, you don’t have any future in the market.” Read More

Asia-Pacific Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

New York hires CPO to protect student, teacher data

(Aug 25, 2016) The Associated Press reports The New York State Education Department has hired Temitope Akinyemi to become their chief privacy officer, with the goal of protecting student and teacher data. Akinyemi, who previously worked as a privacy officer and attorney with the New York Office of Information Technology, will be in charge of creating and implementing the Education Department’s privacy policies and investigating security breaches. Read More

Daily Dashboard

WhatsApp to begin sharing user data with Facebook

(Aug 25, 2016) The New York Times reports WhatsApp will start sharing user information with Facebook. The messaging app plans to send members’ phone numbers and analytics data to the social network, marking the first time WhatsApp has connected user accounts to Facebook. WhatsApp said neither company would be able to view users’ encrypted messages, and promised not to share phone numbers with advertisers. “Our values and our respect for your privacy continue to guide the decisions we make at WhatsApp,” Co-foun... Read More

Asia-Pacific Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Harvard law professor: FCC broadband proposals unconstitutional

(Aug 25, 2016) During a speech at the Media Institute, Harvard Law School’s Laurence Tribe contends that the Federal Communications Commission’s attempt to regulate some companies’ privacy protocols and not others' is unconstitutional, The Hill reports. “The FCC’s proposed rules almost certainly could not survive any meaningful degree of First Amendment scrutiny,” he said. “It’s a nakedly anti-consumer measure, rather than a pro-privacy measure.” Tribe adds that the proposals clash with Supreme Court rulings s... Read More

Daily Dashboard

Facebook says applying telecom obligations to online services is ‘unnecessary’

(Aug 25, 2016) As the European Commission reviews the ePrivacy Directive, Facebook argues that applying legal obligations designed for telecom firms to online services would be “unnecessary, discriminatory and disproportionate,” The Irish Times reports. Facebook said online services are different from “traditional telecoms services,” and could not be a perfect replacement for them, while adding telecoms also have more access to data. “Many information society services today are based on free, advertising-funde... Read More

Daily Dashboard, Europe Data Protection Digest

EPIC suing FAA for lack of privacy in drone regulations

(Aug 25, 2016) The Electronic Privacy Information Center has sued the Federal Aviation Association for not including privacy regulations in its first formal rules for drone use, ZDNet reports. “EPIC argues that, since Congress directed the FAA to develop ‘comprehensive’ rules that ‘safely’ integrate drones into U.S. airspace, it's obligated to consider privacy issues,” the report states. The suit calls for the DC Circuit Court of Appeals to overturn the regulations and compel the FAA to consider privacy protocols. Editor’s Note: The IAPP will be hosting a discussion on drones at the Privacy. Security. Risk. conference from Sept. 13-16 in San Jose, California. Read More

Daily Dashboard

Sony adds two-factor authentication for PlayStation Network

(Aug 25, 2016) ZDNet reports Sony has implemented two-factor authentication to its PlayStation Network. PlayStation and PSP owners can now connect their accounts to their smartphones and tablets. When logging into the PlayStation Network, a code will be sent to the chosen device, and the user must submit the code in order to access their account. The authentication system makes it harder for hackers to access the network. Implementing two-factor authentication is a response to the massive data breach the PlayStation Network suffered in 2011, where the names, dates of birth, and credit card numbers of 77 million users were compromised. Read More

Asia-Pacific Dashboard Digest, Daily Dashboard

Hackers vandalize Leslie Jones’ personal website

(Aug 25, 2016) Actor and comedian Leslie Jones’ personal website has been hacked and vandalized, with the unidentified culprits posting nude pictures, racist videos, and snapshots of her license and passport, The New York Daily News reports. The website has since been taken down, and Jones has not issued a statement. The hack comes on the heels of an internet troll-led attack on Jones’s Twitter account, which escalated to the point that Jones took temporary leave from the social media site and met with Twitter executives to discuss improvements on online safety, the report states. Read More

Daily Dashboard

Canadian Security Establishment increased interceptions 26x in 2015

(Aug 25, 2016) An Office of the Commissioner of the Communications Security Establishment report of the Canadian Security Establishment has found that the agency increased its rate of private communication interception 26-fold in 2015, the National Post reports. While the government won’t explain the reason for the increase, the agency did find that all of the CSE’s proceedings were lawful. CSE watchdog Bill Robinson predicts that that agency “may have targeted social media conversations between individuals and counted each separate message in the string as a private communication,” the report states. “A small number of online conversations could be responsible for the rather large total.” Read More

Daily Dashboard