fbpx

Download free GDPR compliance checklist!

Tag Archives for " sensitive data "

New tool makes it possible to do research on patient records without seeing sensitive information

Researchers have developed a new tool that can collect information from electronic health records without disclosing sensitive patient information. The tool is based on a data protection algorithm which Yigzaw developed and studied for his PhD in 2017.

To test the tool, researchers looked into prescriptions of antibiotics by GPs. The tool and its special algorithm were installed on the servers of three Norwegian GP centres.

During the test, researchers searched for specific diagnoses and prescriptions in the records of 20,245 patients, split between 21 GPs. As the patient data does not need to be moved, researchers can extract even more data than before, without compromising privacy.

Source: New tool makes it possible to do research on patient records without seeing sensitive information

Grindr fined $11.7 million for illegally sharing private user information with advertisers

Grindr will be fined 100 million Norwegian kroner, or about $11.7 million, by the Norwegian Data Protection Authority for illegally sharing private information about Grindr users to advertisers.

Last January, the Norwegian Consumer Council filed three complaints against Grindr for sharing personal information, including users’ locations and information about the device they were using, with advertisers.

Source: Grindr fined $11.7 million for illegally sharing private user information with advertisers – The Verge

More Americans share social security, financial and medical information than before the pandemic

A new survey has shown that consumer willingness to share more sensitive data – social security numbers, financial information and medical information – is greater in 2020 than in both 2018 and 2019

According to the New york, NY-based scientific research practice foundation ARF’s (Advertising Research Foundation) third annual Privacy Study has shown that contact tracing is considered a key weapon in the fight against COVID-19.

However, one quarter of the respondents expressed an unwillingness to share information about being exposed to someone with the virus.

Source: More Americans share social security, financial and medical information than before the pandemic | ZDNet

Human error reveals personal data of 18,000 Welsh Covid-19 sufferers

Public Health Wales yesterday announced a data breach involving the personally identifiable data of 18,105 people resident in Wales who had received a positive test for Covid-19.

In a statement, the health body attributed the incident to “individual human error”, whereby the data was mistakenly uploaded to a public server on 30 August, remaining searchable for 20 hours before its removal on the morning of 31 August.

Source: Human error reveals personal data of 18,000 Welsh Covid-19 sufferers

Popular fertility app Premom shared data without user consent

The popular fertility app Premom asks users to upload details about their sexual health to receive personalized, remote analysis to help predict how to get pregnant.

But Premom’s app for Android was also collecting a broad swath of data about its users and sharing it without their permission with three Chinese companies focused on advertising.

While many apps use third parties to collect analytics or target ads, IDAC researchers say Premom users had no way of opting out of this tracking by both the app and the third parties that received their data, which IDAC contends was a violation of Google’s rules.

Source: Popular fertility app Premom shared data without user consent, researchers say – The Washington Post

Cyprus DPA banns automated scoring of employee sick leaves

The Commissioner for Personal Data Protection (Cypriot SA) banned the processing and fined LGS Handling Ltd, Louis Travel Ltd and Louis Aviation Ltd (Louis Group of Companies) for a total amount of EUR 82,000.00, concerning the lack of legal basis of “Bradford Factor” tool, which was used to score sick leaves of employees.

The reasoning behind Bradford’s Factor automated system for scoring employees’ sick leave was that short, frequent, and unplanned absences lead to a higher disorganising of the company rather than longer absences.

Source: The Cypriot Supervisory Authority banned the processing of an automated tool, used for scoring sick leaves of employees, known as the “Bradford Factor’’ and subsequently fined the controller | European Data Protection Board

ICO concerned by mass health data-sharing with advertisers

The UK’s data regulator has expressed deep concerns over reports that some of the most popular health websites are sharing sensitive data with advertisers across the world.

The majority of prominent health websites embed tracking cookies in users’ browsers without explicit consent to allow third-party companies to track them while surfing the internet.

This data is then transmitted to a swathe of advertising platforms including Amazon and Facebook, with the majority of data sent to Google’s DoubleClick targeted ad platform. This includes information like medical symptoms, diagnoses, drug names and fertility information.

Source: ICO concerned by mass health data-sharing with advertisers | IT PRO

Lawmakers want to question Facebook about the privacy of groups

Lawmakers are looking to question Facebook about its privacy practices after allegations that the service revealed sensitive health information in groups.

Facebook has removed the ability to harvest that information, but it has denied that there was ever a security loophole, and has pointed to the option to create less discoverable “secret” groups. However, despite the change, personal information might be still too accessible by people within sensitive groups.

Source: Lawmakers want to question Facebook about the privacy of groups – The Verge

Businesses overconfident on how much consumers trust them to handle sensitive data

As cybersecurity concerns rise, a new report from CA Technologies reveals a disconnect between consumers and professionals when it comes to security.

Source: Businesses overconfident on how much consumers trust them to handle sensitive data – TechRepublic

Cypriot woman wins over state to hide religious record

Elena Milioti has become the first Cypriot citizen to remove her religious creed from state records. She disputed that this information was far too personal to be found on the state record and had it removed after a rigorous procedure.

Source: Cypriot woman wins over state to hide religious record | Neos Kosmos

>