Free tools and resources for Data Protection Officers!

Tag Archives for " email "

2018 Email Marketing & Unsubscribe Audit

The Online Trust Alliance’s 2018 mail Marketing & Unsubscribe Audit found that the vast majority of audited online retailers have embraced unsubscribe best practices, going beyond mere compliance, and have shown continued improvement since 2014 despite expanded and more stringent criteria. This year’s Audit examines the entire email engagement process, from signup to receiving email to the unsubscribe user experience and results.

For 2018, 74% of the top retailers qualified, a strong improvement from 67% in 2017 and nearly reaching the 75% achievement level of 2015. Email security was another highlight area in 2018. Adoption of email authentication technologies SPF and DKIM reached 100%, and adoption of DMARC (another email authentication technology to prevent spoofing) and opportunistic TLS (encrypting messages between mail servers) improved significantly.

Full report: 2018 Email Marketing & Unsubscribe Audit | Online Trust Alliance

Spanish court admits emails from internal investigation as evidence

A judicial decision, issued by the employment division of the Spanish Supreme Court, has confirmed the admissibility as evidence, to justify a dismissal, of the emails of the dismissed employee obtained in the course of an internal investigation.

This decision has its origin in a claim for unfair dismissal filed by an employee of a Spanish company which had been dismissed by the company for committing very serious infringements of the Spanish Workers’ Statute – it was proven that the dismissed employee had accepted a bribe from one of the company’s suppliers.

Source: Spanish court admits emails from internal investigation as evidence

Most GDPR emails unnecessary and some illegal

Many firms have the required consent already; others don’t have consent to send a request. However, vast majority of emails flooding inboxes across Europe from companies asking for consent to keep recipients on their mailing list are unnecessary and some may be illegal, privacy experts have said.

Source: Most GDPR emails unnecessary and some illegal, say experts | Technology | The Guardian

Security community has its own encryption debate after discovery of new flaw

Security experts are at odds over how to respond to new research showing hackers could decrypt emails that were supposed to be protected by a popular encryption tool known as PGP, or Pretty Good Privacy.

Source: The Cybersecurity 202: Security community has its own encryption debate after discovery of new flaw – The Washington Post

Criminals use GDPR to scam Airbnb customers

Innocent people are being targeted with convincing phishing emails as company’s check they’re complying with privacy laws.

According to security firm Redscan the criminals are taking advantage of the new privacy laws across the EU, the General Data Protection Regulation (GDPR) which comes into effect on 25 May.

Source: Airbnb customers being scammed by criminals

Google is testing self-destructing emails in new Gmail

Google is working on a brand new design for the web version of Gmail.

You can configure the expiration date so that your email disappears after 1 week, 1 month, multiple years, etc. You can also ask your recipient to confirm their identity with a passcode sent via text message. This sounds like a great way to associate email addresses with phone numbers and improve Google’s ads.

Source: Google is testing self-destructing emails in new Gmail | TechCrunch

Four cents to deanonymize: Companies reverse hashed email addresses

Your email address is an excellent identifier for tracking you across devices, websites and apps. Even if you clear cookies, use private browsing mode or change devices, your email address will remain the same.

Due to privacy concerns, tracking companies including ad networks, marketers, and data brokers use the hash of your email address instead, purporting that hashed emails are “non-personally identifying”, “completely private” and “anonymous”. But this is a misleading argument, as hashed email addresses can be reversed to recover original email addresses. In this post we’ll explain why, and explore companies which reverse hashed email addresses as a service.

Source: Four cents to deanonymize: Companies reverse hashed email addresses

GDPR: how can I email data securely to comply with the new regulations?

Robert is often required to email sensitive data. Is there a secure way of doing so in view of the new data protection laws?

Emails are more like plain text postcards because they can, in theory, be read at any of the many servers through which they pass, or by someone tapping a line. Of course, “read by” is unlikely to mean “read by a human being.” However, software can look for things like passwords and credit card numbers.

Source: GDPR: how can I email data securely to comply with the new regulations? | Technology | The Guardian

Germany seeks CJEU answer whether telecommunications law applies to webmail service providers

The Higher Administrative Court for North Rhine-Westphalia (‘the Court’) announced, on 26 February 2018, that it had filed a request for a preliminary ruling with the Court of Justice of the European Union (‘CJEU’), seeking clarification on whether webmail providers are considered electronic communications services under Article 2 of the Framework Directive (Directive 2002/21/EC) (‘the Directive’).

The proceedings before the Court originated from a legal dispute between the Federal Network Agency for Electricity, Gas, Telecommunications, Post and Railway (‘Bun­desnet­za­gen­tur’) and Google, Inc. over the Bun­desnet­za­gen­tur’s classification of Gmail as a telecommunications service within the meaning of the Telecommunications Act 1996 (‘TKG’).

Source: Germany: CJEU Gmail referral “could lead to application of TKG” to webmail service providers

1 2 3