fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " data "

Google rolled out secure data sharing tool

Google has rolled out the open-source tool to help organizations work together with confidential data sets while raising the bar for privacy. Private Join and Compute helps solve problem of securely sharing sensitive data with other parties.

Using this cryptographic protocol, two parties can encrypt their identifiers and associated data, and then join them. They can then do certain types of calculations on the overlapping set of data to draw useful information from both datasets in aggregate. v

Source: Google Online Security Blog: Helping organizations do more without collecting more data

The Data Behind Internet of Things: Threats, Ethics, and Regulation

The Internet of Things (IoT) allows devices, such as cars, lights, video cameras, and personal assistants like Amazon Alexa, to use connectivity to exchange data – often personal and sensitive data.

This article explores how IoT data can be used to prosecute criminal action, to carry out criminal acts, and how regulation can help clean up this complex landscape.

Read article: The Data Behind Internet of Things: Threats, Ethics, and Regulation – DATAVERSITY

EU Council adopts conclusions on data retention to fight crime

The Council adopted conclusions on the way forward with regard to the retention of electronic communication data for the purpose of fighting crime.

It noted that data retention is an essential tool for investigating serious crime efficiently, but one whose use should be guided by the need to protect fundamental rights and freedoms.

The Council tasked the Commission to gather further information and organise targeted consultations as part of a comprehensive study on possible solutions for retaining data, including the consideration of a future legislative initiative.

Source: Data retention to fight crime: Council adopts conclusions – Consilium

FRA publishes paper on Quality vital for data-driven artificial intelligence

Algorithms, used in machine learning and artificial intelligence, are responsible for analysing the data and making these decisions.

Therefore, a new European Union Agency for Fundamental Rights (FRA) focus paper questions the quality of data behind automated decision-making and underlines the need to pay more attention to improving data quality in artificial intelligence.

Source: Quality vital for data-driven artificial intelligence | European Union Agency for Fundamental Rights

Lithuanian DPA launches investigation into D-Link

In response to publicly available information, the Lithuanian data protection authority – State Data Protection Inspectorate – launched an self-initiated inquiry into the allegedly inappropriate processing of personal data by D-Link.

It is feared that D-Link equipment user passwords, browsing history or other information can be accessed by third countries’ servers through D-Link’s devices, allowing profiling and identification of consumers.

State Data Protection Inspectorate also noted that D-Link’s processing activity potentially amounts to a violation of the General Data Protection Regulation’s (GDPR) transparency principle.

Source: State Data Protection Inspectorate Launches D-Link Research | State Data Protection Inspectorate

Facebook launches app that will pay users for their data

A new Facebook app will allow users to sell the company data on how they use competitors’ apps.

Facebook announced Tuesday that it is recruiting participants to download its new app Study from the Google Play store. Once it is downloaded, it will transmit data with Facebook on what other apps the users have, what features they use, and how much time is spent on them.

New app comes months after Apple cracked down on Facebook for similar apps that paid users for extensive data on phone usage.

Source: Facebook launches app that will pay users for their data | Technology | The Guardian

Hackers are stealing personal medical data to impersonate your doctor

While personally identifiable information — full names, social security numbers, home addresses, dates of birth, credit card numbers — can be exploited by criminals to commit identity fraud, the theft of medical information can have equally serious impact on victims.

How hackers exploit medical data? Administrative paperwork — like medical licenses — to forge a doctor’s identity sells on the dark web for around $500.  Insurance provider’s login information can be used to steal victim’s identity to claim insurance. Forging health insurance cards, prescriptions, and drug labels with an intention to carry drugs through the airport. Using hacked personal health information against individuals who have health issues for extortion and other crimes.

Source: Hackers are stealing personal medical data to impersonate your doctor

One Year Into GDPR, Most Apps Still Harvest Data Without Permission

Unauthorized data harvesting from mobile apps has continued nearly unabated in the year since Europe’s General Data Protection Regulation came into force last May.

In a recent test conducted for AdExchanger, mobile analytics company Kochava examined the behavior of the top 2,700 apps in the Google Play store in the United States compared with France, where GDPR applies.

Source: One Year Into GDPR, Most Apps Still Harvest Data Without Permission | AdExchanger

Amazon now lets you tell Alexa to delete your voice recordings

You’ll now be able to say, “Alexa, delete everything I said today.”

Amazon stores recordings of every request you’ve made to an Alexa device (theoretically, to help improve the voice recognition service and other features). Despite this being largely unnecessary, Amazon doesn’t provide a way to disable the long-term storage of voice recordings or have them deleted on a regular basis.

Full article: Amazon now lets you tell Alexa to delete your voice recordings – The Verge

Don’t Acquire a Company Until You Evaluate Its Data Security

When Marriott International acquired Starwood in 2016 for $13.6 billion, neither company was awareof a cyber-attack on Starwood’s reservation system that dated back to 2014. The breach, which exposed the sensitive personal data of nearly 500 million Starwood customers.

In M&A activity, a target’s quality may be linked to the strength of its cybersecurity and its compliance with data privacy regulation. Therefore, due diligence on data and privacy practices is strongly advised.

Full article: Don’t Acquire a Company Until You Evaluate Its Data Security

1 2 3 131
>