Download free GDPR compliance checklist!

Tag Archives for " report "

ICO publishes annual report

UK’s data protection authority – Information Commissioner’s Office – has released its annual report.

Highlights from 12 months to 31 March 2019 include:

  • Data protection complaints received by the ICO increased from 21,019 in 2017/18 to 41,661 in 2018/19
  • Helping organisations, small or large, embed the GDPR and DPA 2018
  • Preparation of statutory codes focusing on age appropriate design, data sharing, direct marketing, and data protection and journalism.
  • Using new powers of inspection – issuing 11 assessment notices in conjunction with our investigations into data analytics for political purposes, political parties, data brokers, credit reference agencies and others
  • 2018/19 was a record-breaking year of monetary penalties under the DPA 1998.

Source: ICO publishes annual report covering an ‘unprecedented’ year | ICO

EDPB issues annual report

The European Data Protection Board released its 2018 annual report. The report covers the rules of procedure adopted in the first EDPB plenary session and the creation of the EDPB Secretariat. 

Focus of the report is cooperation among supervisory authorities and transparency. It also touches EDPB’s guidance on certification, territorial scope and accreditation, its opinions regarding ePrivacy regulation and European Commission’s adequacy decisions.

Read full report.

Businesses more reliant on ICO as data breach reports explode

The UK data regulator has revealed its staff received four times as many reports of personal data breaches during an “unprecedented” 2018/19 against the previous financial year.

Similarly, the number of complaints received from the public rose from 21,019 in 2017/18 to 41,661, according to figures revealed in the UK’s Information Commissioner’s Office (ICO) annual report. Organisations were also twice as reliant on the ICO for advice or guidance during 2018/19.

Source: Businesses more reliant on ICO as data breach reports explode | IT PRO

EDPB publishes overview on the implementation of the GDPR and national DPAs

European Data Protection Board has published an overview of the implementation and enforcement of the General Data Protection Regulation (GDPR) covering both the cooperation mechanism and the consistency findings.

EDPB thinks that the GDPR cooperation and consistency mechanism work quite well in practice. The experiences of the EDPB regarding consistency is – up to now – limited, as no dispute resolution through this new EU body was necessary during the reported period.

Read full report.

Facebook usage falling after privacy scandals

Since April 2018, the first full month after news of the Cambridge Analytica scandal broke in the Observer, actions on Facebook such as likes, shares and posts have dropped by almost 20%.

This month a market research firm, eMarketer, reported a decline in Facebook usage in the US, saying the typical Facebook user spent 38 minutes a day on the site, down from 41 minutes in 2017.

Source: Facebook usage falling after privacy scandals, data suggests | Technology | The Guardian

ICO publishes update report on adtech

For several months ICO has been reviewing how personal data is used in real time bidding (RTB) in programmatic advertising, engaging with key stakeholders directly to understand the views and concerns of those involved.

As a result of research, ICO published Update report into adtech and real time bidding which summarises findings so far. If you operate in the adtech space, it’s time to look at what you’re doing now, and to assess how you use personal data.

Source: Blog: ICO Adtech update report published following industry engagement | ICO

Human error still the major cause of data breaches

More than half of all executives (53%) and nearly three in 10 Small Business Owners (28%) who suffered a breach, reveal that human error or accidental loss by an external vendor/source was the cause of the data breach, according to a Shred-it survey conducted by Ipsos.

The report found that nearly half of all executives (47%) and one in three SBOs (31%) say human error or accidental loss by an employee/insider was the cause.

Source: Human error still the cause of many data breaches – Help Net Security

EU Commission publishes report on GDPR application issues

The European Commission has published Multistakeholder Expert Group’s report on eperience of application of the General Data Protection Regulation’s (GDPR).

Report highlights the main issues and concerns that organisations face in complying with the GDPR, as well as GDPR’s impact on the exercise of data subjects’ rights.

Read Multistakeholder Expert Group’s report.

UK’s DPA Publishes Report on Impact of GDPR

On 30 May 2019, the United Kingdom’s data protection authority – Information Commissionner’s Office (ICO) – released a report, “GDPR: One Year On”, discussing the impact of the GDPR and its associated learnings after one year following its implementation.

Report provides valuable insight into the enforcement practices, EU-wide cooperation, support functions, innovative practices and further growth plans of the ICO.

Source: ICO Publishes Report on Impact of GDPR

Employees are almost as dangerous to business security as hackers and cybercriminals

Non-malicious insiders are among the top three threat actors, according to an ISACA report. Employee mistakes and system errors are a larger threat to data security than hackers or insiders, one report found, while 75% of IT professionals say they are vulnerable to insider threats, another survey said.

Top three threat actors to businesses:

  1. Cybercriminals (32%)
  2. Hackers (23%)
  3. Non-malicious insiders (15%)

Source: Employees are almost as dangerous to business security as hackers and cybercriminals