fbpx

Preparing to Comply with the GDPR: Start Now, Plan to Invest

In May of 2018, Europe’s General Data Protection Regulation (“GDPR”) will take effect throughout the European Union. GDPR will set data protection standards for the EU and brings with it significant consequences for companies in EU or those who has business there. To understand the risk exposure, companies are currently in the process of assessing their compliance with the upcoming regulation in light of the potential maximum exposure.

Source: Preparing to Comply with the GDPR: Start Now, Plan to Invest

Article 29 Working Party Issues Guidance on Data Protection Impact Assessments

Article 29 Working Party has published draft guidance on data protection impact assessments (DPIA). Its full text of is available on the Working Party’s website. Comments to draft guidance can be submitted by 23 May 2017.

Source: Article 29 Working Party Issues Guidance on Data Protection Impact Assessments

Privacy watchdog: businesses that demand personal data in return for services run foul of new EU data protection laws

In his opinion on ePrivacy Regulation, European Data Protection Supervisor Giovanni Buttarelli indicated that businesses that require consumers to provide data about themselves in return for access to their services they offer will not have valid consent to process that information under GDPR.

Source: Privacy watchdog: businesses that demand personal data in return for services run foul of new EU data protection laws

State of the Cyber Nation: UK Government Report on Cybersecurity Breaches

On 19 April 2017, the UK Government’s Department for Culture, Media and Sport (DCMS) published a report on cybersecurity breaches and how they affected UK companies in the last year.

According to the report in the past year 51% of all UK businesses that hold personal data on customers identified at least one cybersecurity breach.

The report also indicates that a many of UK companies have not implemented comprehensive cybersecurity policies or strong safeguards to protect against cyber attacks.

Source: State of the Cyber Nation: UK Government Report on Cybersecurity Breaches

Court to Facebook: Stop harvesting users’ WhatsApp personal data without consent

Facebook has lost its bid to collect the personal data of WhatsApp users in Germany — for now.

In August last year, Facebook-owned WhatsApp changed its terms and privacy policy to say that the parent company would gain access to users’ telephone numbers and other pieces of data, such as the mobile operating system being used, the user’s phone number, and screen resolution.

The idea was to improve Facebook’s ad targeting and to make it easier for the social network to suggest friend connections.

Source: Court to Facebook: Stop harvesting users’ WhatsApp personal data without consent

Beyond concerns about AI, consumers see usefulness — particularly in cybersecurity, privacy

Almost two-thirds of American consumers welcome advances in artificial intelligence and machine learning, and cybersecurity is among the areas where assistance from AI has the most appeal, according to a new survey.

Sixty-three percent of consumers agree AI will “help solve complex problems that plague modern societies,” according to the survey, published Tuesday by the accounting and consulting firm PwC. When respondents were asked about different kinds of issues that AI might help with, 68 percent highlighted cybersecurity and privacy, while 66 percent chose its importance in helping to solve cancer and other diseases and 71 percent agreed AI could provide educational help to disadvantaged schoolchildren.

Source: Beyond concerns about AI, consumers see usefulness — particularly in cybersecurity, privacy

European Commission, experts uneasy over WP29 data portability interpretation

The European Commission has written to EU privacy regulators to express concern over their interpretation of the data portability clause in the General Data Protection Regulation.

Specifically, the Commission appears to be worried that the regulators have interpreted too broad a scope for the GDPR’s Article 20. The Article 29 Working Party (WP29), the group that represents EU privacy regulators, issued guidelines earlier this month in which it said “the right to data portability covers data provided knowingly and actively by the data subject as well as the personal data generated by his or her activity.”

Source: European Commission, experts uneasy over WP29 data portability interpretation

Technology use by sex traffickers fuels debate between privacy and security

Sex traffickers are growing more adept at using sophisticated technology to exploit people, especially tools to hide their identity and encrypt data, fanning an ongoing battle between online privacy and security, a conference heard on Tuesday.

Source: Technology use by sex traffickers fuels debate between privacy and security

>