BNA_PA_09_16_Privacy Laws-728x90
OneTrust_Leaderboard Banner _10.14.168x90
Webcon Ad_300x250_NYMITY_FINAL

(Oct 27, 2016) After a year of turmoil following the abolition of Safe Harbor, and the controversial birthing of its replacement, Privacy Shield, the European Commission now looks more determined than ever to keep EU-U.S. data flows going at any cost. Commission Vice President Andrus Ansip is due to present a draft law banning “forced data localization” before the end of the year. Approximately 21 EU countries currently have laws requiring companies to store certain types of data locally, and last month a new ... Read More

Daily Dashboard, Europe Data Protection Digest, Privacy Bar Section

Digital Rights Ireland challenges Privacy Shield

(Oct 27, 2016) Privacy advocacy group Digital Rights Ireland is challenging the EU-U.S. Privacy Shield agreement, Reuters reports. The complaint was filed with the EU’s General Court — the lower court of the Court of Justice of the European Union — and contests the European Commission’s adequacy decisions allowing companies to transfer personal data from the EU to the U.S. In a public filing on the court’s website, the group asks for an annulment of the deal dating back to Sept. 15. A European Commission spoke... Read More

Daily Dashboard, Europe Data Protection Digest

Russian government considering LinkedIn ban

(Oct 27, 2016) The Russian government is considering banning LinkedIn within the country, Fortune reports. The potential move stems from a 2014 law requiring all companies doing business in Russia to store their data locally. The “On Personal Data” regulation was created following anti-government protests following Vladimir Putin’s re-election in 2012, combined with concerns stemming from the Snowden leaks. LinkedIn will be the first major test of the legislation, as Russia has not taken any action against oth... Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest, Privacy Bar Section

ISPs could help solve IoT security problems

(Oct 27, 2016) Following last week's massive DDoS attack, internet service providers may be the key to securing the internet-of-things devices used to facilitate the incident, Wired reports. ISPs can boost IoT device security by blocking or filtering illicit internet traffic caused by malware, or by notifying users if their IoT devices are sending or receiving bad traffic. Both methods have their downsides, as blocking traffic could result in catching and filtering legitimate traffic, while ISPs have been slow... Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Did Verizon investigate Yahoo security practices well enough before acquisition talks?

(Oct 27, 2016) Some cybersecurity analysts question the veracity of Verizon's due diligence process if it was unable to discover the flaws that caused the breach in the first place, Fast Company reports. It's important for companies acquiring other organizations to examine the nitty-gritty details of their acquisition's security practices. "There are so many categories of information that are worth looking at," said security consultant John Reed Stark. "You’re going to look at every single one of them to try to quantify the risk, and it’s very important, because any sort of data breach, any sort of cyberattack, can really cripple a company." Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Report: Collaboration needed to create new mobile protocols

(Oct 26, 2016) The industry trade group, 5G Americans, released a report arguing that internet providers, mobile network operators, and privacy advocates must work together to create new protocols for maximizing internet traffic while maintaining a high level of privacy, IT World Canada reports. Both a rise in the use of online video and consumer demand for encrypted communications eats up a lot of bandwidth, the report notes. “The important aspect highlighted in this white paper is the need for fostering a co... Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Does our tech keep us addicted?

(Oct 26, 2016) Tristan Harris, co-founder of Time Well Spent, is advocating against what he calls the "design failure" of mobile technology that keeps users addicted; he wants "to persuade the tech world to help us disengage more easily from its devices," The Atlantic reports. "In short, we’ve lost control of our relationship with technology because technology has become better at controlling us," the report states. The solution may include a sort of Hippocratic Oath for software and its designers, ultimately restoring "agency" to users, Harris said in the report. “There needs to be new ratings, new criteria, new design standards, new certification standards,” he said. “There is a way to design based not on addiction.” The first step toward change involves getting users to see the manipulation and call for a new type of tech, he added. Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

BBC lost data on nearly 10,000 people over nine-year period

(Oct 25, 2016) As part of its television license collection activities, the BBC has lost audience information on 9,763 people in 169 data breaches over the past nine years, Business Insider reports. Data lost by the British broadcaster includes partial bank account details, phone numbers, addresses and signatures. Responding to a Freedom of Information request, the BBC said it takes data security “very seriously,” adding the company has a “comprehensive set of controls in place to protect it." One breach in 2011 compromised the information of 3,291 people, while the details of 494 people were lost in another incident last year. “We do not believe the figures in the disclosure log reflect a growing number of data breaches but rather demonstrate the increasing vigilance of staff in identifying and reporting data incidents," the BBC said. Read More

Europe Data Protection Digest

Article 29 Working Party to release GDPR guidance

(Oct 25, 2016) The Article 29 Working Party plans to release official guidance by the end of the year for companies unsure how regulators will enforce the General Data Protection Regulation, Bloomberg BNA reports. Article 29 Chairwoman Isabelle Falque-Pierrotin said her group’s initial guidelines will cover enforcement, privacy officers, and data portability provisions. Falque-Pierrotin said the guidelines are necessary to clarify ambiguities within the GDPR, and to “transform the text into an operational tool... Read More

Daily Dashboard, Europe Data Protection Digest, Privacy Bar Section

Telecom tech company employees resign amid reports it assisted Turkish surveillance

(Oct 25, 2016) Reports that Californian telecom tech company Procera Networks has worked with Turk Telekom to provide the European company with usernames and passwords of Turkish users for surveillance purposes have inspired employees to resign from the company and leak documents illustrating Procera's dealings, Forbes reports. "Procera engineers feared they would in effect be supporting Turkey’s surveillance state, whose actions have come under increased criticism from human rights groups," the report states.... Read More

Daily Dashboard, Europe Data Protection Digest