Free tools and resources for Data Protection Officers!

Tag Archives for " data "

Facial Recognition Tech Is Growing Stronger, Thanks to Your Face

Large databases, built with images from social networks and dating services, contain millions of pictures of people’s faces. Some are shared worldwide. There is no oversight of the data sets.

Immigration and Customs Enforcement officials employed facial recognition technology to scan motorists’ photos to identify undocumented immigrants. The F.B.I. also spent more than a decade using such systems to compare driver’s license and visa photos against the faces of suspected criminals.

Full article: Facial Recognition Tech Is Growing Stronger, Thanks to Your Face – The New York Times

Duch privacy watchdog warns banks not to use payments for marketing

On Wednesday Duch data protection authority – Autoriteit Persoonsgegevens –  announced that banks should not offer their customers products on the basis of their confidential spending patterns. It added that all banks ‘should therefore take a good look at their policies around direct marketing.’

It its letter, it warns that certain transactions are considered particularly sensitive in terms of privacy law, such as payments to ‘hospitals, pharmacies, casinos, sex clubs….religious groups [and political parties]’ and that bank clients have an expectation of privacy.

Source: Look away: privacy watchdog warns banks not to use payments for marketing – DutchNews.nl – Live

Facebook to give data on hate speech suspects to French courts

Facebook has agreed to hand over the identification data of French users suspected of hate speech on its platform to judges.

The decision by the world’s biggest social media network comes after successive meetings between Zuckerberg and Macron, who wants to take a leading role globally on the regulation of hate speech and the spread of false information online.

Source: Exclusive: In a world first, Facebook to give data on hate speech suspects to French courts – Reuters

Data collection leads to discrimination and self-censorship

Widespread data collection practices lead to self-censorship and discrimination even though most users are not fully aware of how much their privacy is being infringed, a parliamentary committee has been warned.

On Wednesday, the human rights committee, beginning its inquiry into the right to privacy and the digital revolution, published evidence from privacy and data protection organisations including the Information Commissioner’s Office, Liberty and Privacy International.

Full article: Data collection leads to discrimination and self-censorship, MPs told | Technology | The Guardian

Deidentification versus anonymization

Anonymization is hard. Just like cryptography, most people are not qualified to build their own.

Unlike cryptography, the research is far earlier-stage, and the pre-built code is virtually unavailable. That hasn’t stopped people from claiming certain datasets (like this ) are anonymized and (sadly) having them re-identified.

Full article: Deidentification versus anonymization

Google rolled out secure data sharing tool

Google has rolled out the open-source tool to help organizations work together with confidential data sets while raising the bar for privacy. Private Join and Compute helps solve problem of securely sharing sensitive data with other parties.

Using this cryptographic protocol, two parties can encrypt their identifiers and associated data, and then join them. They can then do certain types of calculations on the overlapping set of data to draw useful information from both datasets in aggregate. v

Source: Google Online Security Blog: Helping organizations do more without collecting more data

The Data Behind Internet of Things: Threats, Ethics, and Regulation

The Internet of Things (IoT) allows devices, such as cars, lights, video cameras, and personal assistants like Amazon Alexa, to use connectivity to exchange data – often personal and sensitive data.

This article explores how IoT data can be used to prosecute criminal action, to carry out criminal acts, and how regulation can help clean up this complex landscape.

Read article: The Data Behind Internet of Things: Threats, Ethics, and Regulation – DATAVERSITY

EU Council adopts conclusions on data retention to fight crime

The Council adopted conclusions on the way forward with regard to the retention of electronic communication data for the purpose of fighting crime.

It noted that data retention is an essential tool for investigating serious crime efficiently, but one whose use should be guided by the need to protect fundamental rights and freedoms.

The Council tasked the Commission to gather further information and organise targeted consultations as part of a comprehensive study on possible solutions for retaining data, including the consideration of a future legislative initiative.

Source: Data retention to fight crime: Council adopts conclusions – Consilium

FRA publishes paper on Quality vital for data-driven artificial intelligence

Algorithms, used in machine learning and artificial intelligence, are responsible for analysing the data and making these decisions.

Therefore, a new European Union Agency for Fundamental Rights (FRA) focus paper questions the quality of data behind automated decision-making and underlines the need to pay more attention to improving data quality in artificial intelligence.

Source: Quality vital for data-driven artificial intelligence | European Union Agency for Fundamental Rights

Lithuanian DPA launches investigation into D-Link

In response to publicly available information, the Lithuanian data protection authority – State Data Protection Inspectorate – launched an self-initiated inquiry into the allegedly inappropriate processing of personal data by D-Link.

It is feared that D-Link equipment user passwords, browsing history or other information can be accessed by third countries’ servers through D-Link’s devices, allowing profiling and identification of consumers.

State Data Protection Inspectorate also noted that D-Link’s processing activity potentially amounts to a violation of the General Data Protection Regulation’s (GDPR) transparency principle.

Source: State Data Protection Inspectorate Launches D-Link Research | State Data Protection Inspectorate