Hong Kong OPC says personal data disclosure OK for reporting employer crimes

(Oct 31, 2019) The Office of the Privacy Commissioner for Personal Data Hong Kong has deemed it "justifiable" for individuals to use an employer's personal data to report their criminal activity, ABS-CBN News reports. The OPC said such reporting is "not a privacy issue" and is merited if individuals "honestly believe that crimes were committed."Full Story... Read More

Employers using AI tech to help determine 'employability'

(Oct 25, 2019) The Washington Post reports organizations across the U.S. are increasingly using HireVue's artificial intelligence–based technology to assess whether job candidates are a fit for their businesses. HireVue's system uses mobile device cameras to analyze prospective employees' facial movements, word choice and speaking voice before comparing the results to those of other candidates to form a ranking system for how qualified a person is for a position. AI Now Institute Co-Founder Meredith Whittaker ... Read More

How to conduct background checks under GDPR

(Oct 16, 2019) Employees are often considered the weakest link in organizational security, and in order to potentially mitigate risk brought on by staff, an entity may wish to conduct a background check to vet the people they ultimately hire. In this piece for The Privacy Advisor, HCL Technologies Privacy Office Senior Manager Piotr Foitzik, CIPP/A, CIPP/C, CIPP/E, CIPP/G, CIPP/US, CIPM, CIPT, looks at how to perform a background check under the EU General Data Protection Regulation. Foitzik breaks down what o... Read More

Pa. district court awards $68M in class action over improper access to personal records

(Jun 3, 2019) According to Jackson Lewis' Workplace Privacy, Data Management & Security Report blog, a Pennsylvania district court awarded $1,000 to 68,000 members of a class suit that claimed Bucks County and other municipal institutions violated state laws by making their criminal records public. The case began in 2012 when Daryoush Taha alleged that the county’s publicly accessible inmate search tool included access to an online database with criminal history records for all current and former Bucks Co... Read More

Ga. Supreme Court rules state is not obligated to protect citizens' information

(May 29, 2019) Infosecurity reports Georgia's Supreme Court has ruled that state government is not required to protect the personal information of its citizens. The Supreme Court dismissed plaintiff Thomas McConnell's claims of negligence, breach of fiduciary duty and invasion of privacy against the state's Department of Labor, which allegedly mishandled the personal information of 4,457 benefit claimants. "McConnell has not shown that the Department owed him or the other proposed class members a duty to prote... Read More

Why Cross-Device Tracking May Put Company Data at Risk

(May 20, 2019) This article from SHRM looks at how cross-device tracking affects HR and IT professionals who are tasked with keeping data secure. The article breaks down cross-device tracking and offers ways to help combat the risks involved.  Click To Download... Read More

Australia examines legality of workplace biometrics

(May 16, 2019) A wrongful termination case in Australia has called into question whether the use of biometrics in the workplace violates the country's Privacy Act, the Society for Human Resource Management reports. An Australian employee was fired for refusing to submit to biometric scanning at work, citing concerns about the collection of his personal information. After being fired for noncompliance and having the Fair Work Commission deny a claim of unfair dismissal, the employee successfully filed an appeal... Read More

Job recruitment site exposes 13.7M user profiles

(May 2, 2019) Ladders, a U.S. job recruitment website, has endured a security lapse that exposed the profiles of 13.7 million users and the information of 379,000 recruiters, TechCrunch reports. An Amazon-hosted Elasticsearch database, which held years' worth of Ladders data, was running without a password for an unknown period of time before recently being shut down within an hour of Ladders being informed of the lapse. Names, email addresses and employment histories were some of the personal information exp... Read More