IAB Europe today released the draft technical specifications for its GDPR Transparency & Consent Framework (“Framework”) for public comment.
First announced in November 2017, the Framework is a cross-industry effort to help publishers, technology vendors, agencies and advertisers meet the transparency and user choice requirements (including consent where necessary) of the GDPR before the regulation comes into effect on May 25 this year. The Framework is a non-commercial, open source initiative. The final version is scheduled for release mid-April, after continued consultation with publishers, advertisers, and other important industry participants.
Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP issued a white paper on GDPR Implementation in Respect of Children’s Data and Consent (the “White Paper”).
The White Paper sets forth guidance and recommendations concerning the application of GDPR requirements to the processing of children’s personal data.
n recent months, both Deputy Attorney General Rod Rosenstein and FBI Director Christopher Wray have been calling for holes in encryption law enforcement can drive a warrant through.
Both have no idea how this can be accomplished, but both are reasonably sure tech companies can figure it out for them. And if some sort of key escrow makes encryption less secure than it is now, so be it. Whatever minimal gains in access law enforcement obtains will apparently offset the damage done by key leaks or criminal exploitation of a deliberately-weakened system.
The growing internet of things and increasingly sophisticated malware are putting global organizations at a greater risk for cyberattacks, but leaders aren’t doing enough to bolster their groups’ security, according to a pair of reports.
Researchers at Raytheon and the Ponemon Institute found more than 80 percent of cybersecurity and IT experts predict unsecured internet of things devices will cause a potentially “catastrophic” data breach at their organizations within the next three years.
The ‘responsible encryption’ demanded by law enforcement and some politicians will not prevent criminals ‘going dark’; will weaken cyber security for innocent Americans; and will have a hit on the U.S. economy. At the same time, there are existing legal methods for law enforcement to gain access to devices without requiring new legislation.
These are the conclusions of Riana Pfefferkorn, cryptography fellow at the Center for Internet and Society at the Stanford Law School in a paper published Tuesday titled, The Risks of “Responsible Encryption”.
The Interagency International Cybersecurity Standardization Working Group (IICS WG) was established in December 2015 by the National Security Council’s Cyber Interagency Policy Committee. The purpose of the IICS WG is to coordinate on major issues in international cybersecurity standardization and thereby enhance U.S. federal agency participation in international cybersecurity standardization.
Germany’s Federal Association for Information Technology, Telecommunications and New Media published its guidance on data transfers to third countries under the General Data Protection Regulation (GDPR). Guidelines aims at giving practical assistance for the day-to-day use when transferring data. In addition to a brief description of the legal framework for data transmissions, data processing in third countries with an adequate level of data protection, and without an adequate level of data protection will be explained. The different constellations are illustrated with a short case study. It also addresses data transmissions in a Group. Finally, the guide provides supplementary materials, links and references.
The Office of the Australian Information Commissioner (OAIC) has prepared this guide to assist Australian Government agencies and private sector organisations (entities) prepare for and respond to data breaches in line with their obligations under the Privacy Act 1988 (Cth) (Privacy Act).
The guide is in five parts:
On 10 January 2018 the United Nations Special Rapporteur on the right to privacy, Joseph Cannataci, released the Draft Legal Instrument on Government-led Surveillance and Privacy. It aims at giving clear and detailed guidance for the area of government-led or organized surveillance using electronic means.
Read the Draft Legal Instrument here.