fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " data breach "

UK’s ICO offers guidance on security and breach reporting for eID and trust services

Businesses that provide services designed to show that electronic data is authentic and can be trusted have been issued with new UK guidance that outlines their obligations on security and breach reporting.

Source: ICO offers guidance on security and breach reporting for eID and trust services

Uber paid $100,000 to keep data breach secret

A 20-year-old Florida man was responsible for the large data breach at Uber Technologies Inc last year and was paid by Uber to destroy the data through a so-called “bug bounty” program normally used to identify small code vulnerabilities, three people familiar with the events have told Reuters.

Source: Exclusive: Uber paid 20-year-old Florida man to keep data breach secret – sources

PayPal says personal data may be compromised for 1.6 million TIO users

PayPal Holdings Inc. said Friday that personally identifiable information for roughly 1.6 million users has potentially been compromised at a company it acquired earlier this year.

Source: PayPal says personal data may be compromised for 1.6 million TIO users | Fox Business

Mandatory data breach notification coming to Australia

Mandatory data breach notification (MDBN) becomes law in Australia on 22 February 2018. This is a high-impact development requiring businesses to respond as expenditure on advertising and years of building customer trust through high-quality service and reputable conduct is put at risk by the obligation to inform customers when security measures fail.

Source: Mandatory data breach notification coming to Australia

Data breach law proposed by US Senate members

The new bill, called the Data Security and Breach Notification Act, was introduced in the wake of reports that Uber paid $100,000 to cover up a 2016 data breach that affected 57 million users.

Source: National data breach notification law proposed by Senate Commerce Committee members

CNIL serves notice to cease serious breach of privacy of connected toys

The robot «I-QUE» and the doll «My Friend Cayla» are so called “connected toys”. They answer children’s questions on various subjects such as mathematical calculations or concerning the weather. The toys are equipped with a microphone and speaker and are associated to a mobile application downloadable on smartphones or tablets.

Source: Connected toys: CNIL publicly serves formal notice to cease serious breach of privacy because of a lack of security

Data breach management: how not to do it

The theft of personal data by malicious employees or third parties does not have to be a disaster. With appropriate PR and legal advice, and proactive engagement and input from senior management, an organisation can minimise the negative consequences and may even be able to strengthen client relationships.

Source: Data breach management: how not to do it

>