Free tools and resources for Data Protection Officers!

Category Archives for "Research"

2018 Email Marketing & Unsubscribe Audit

The Online Trust Alliance’s 2018 mail Marketing & Unsubscribe Audit found that the vast majority of audited online retailers have embraced unsubscribe best practices, going beyond mere compliance, and have shown continued improvement since 2014 despite expanded and more stringent criteria. This year’s Audit examines the entire email engagement process, from signup to receiving email to the unsubscribe user experience and results.

For 2018, 74% of the top retailers qualified, a strong improvement from 67% in 2017 and nearly reaching the 75% achievement level of 2015. Email security was another highlight area in 2018. Adoption of email authentication technologies SPF and DKIM reached 100%, and adoption of DMARC (another email authentication technology to prevent spoofing) and opportunistic TLS (encrypting messages between mail servers) improved significantly.

Full report: 2018 Email Marketing & Unsubscribe Audit | Online Trust Alliance

Cambridge Analytica Knew How You’d Vote If You Wore Wrangler

The whistle-blower behind the Cambridge Analytica revelations said the now-defunct data research firm used the fashion preferences of Facebook Inc. users to help develop the algorithms needed to target them with political messaging.

Sharing examples of the anonymized data for the first time, originally collected and used by Cambridge Analytica, Christopher Wylie said people who displayed an interest in Abercrombie & Fitch tended on average to be less cautious and more liberal, and individuals who liked Wrangler were usually more conservative and more keen on “orderliness.”

Full article: Cambridge Analytica Knew How You’d Vote If You Wore Wrangler – Bloomberg

Having legitimate consent is only half the battle: The top 5 ways to protect your data

A recent survey showed that nearly one in five (17%) of companies admitted they are still unsure as to what the benefits are of being GDPR-compliant . Many businesses have still not gained consent and yet are sending marketing emails.

More so, some do not have the proper opt-out policies in place and many are still struggling to make sense of the point of GDPR at all. These businesses are at risk of receiving a fine equating up to 4% of their annual turnover, a huge problem for the sole trader, man-on-the-street style business. But is this putting them at risk of more than a fine?

Full article: Having legitimate consent is only half the battle: The top 5 ways to protect your data

What Constant Surveillance Does to Your Brain

As technology and machine learning continue to advance, we’re integrating surveillance into our daily lives at an increasing rate, and the level of surveillance is becoming more sophisticated. As turns out, constant surveillance and tracking can be just as mentally taxing as mental disorders like depression, and can even cause symptoms similar to post-traumatic stress disorder.

Full article: What Constant Surveillance Does to Your Brain – Motherboard

E-commerce is winning as most Americans now trust online business with their data

Despite conflicting opinions about online privacy, customers choose to shop with companies that take reasonable security precautions.

Most Americans are actually willing to online shop with retailers that previously faced a security breach—if they have taken measures to secure data, according to the report. With years of conflicting news about cybersecurity threats and breaches, users have almost become desensitized to the information, the report found.

Full article: Why e-commerce is winning: Most Americans now trust online retailers with their data – TechRepublic

CIPL Publishes Report on Artificial Intelligence and Data Protection in Tension

The Centre for Information Policy Leadership (“CIPL”) recently published the first report in its project on Artificial Intelligence (“AI”) and Data Protection: Delivering Sustainable AI Accountability in Practice.

The report, entitled “Artificial Intelligence and Data Protection in Tension,” aims to describe in clear, understandable terms:

  • what AI is and how it is being used all around us today;
  • the role that personal data plays in the development, deployment and oversight of AI; and
  • the opportunities and challenges presented by AI to data protection laws and norms.

Source: CIPL Publishes Report on Artificial Intelligence and Data Protection in Tension

85% of companies allow employees to access data from personal devices creating security risks

A recent report from security firm Bitglass surveyed IT experts, and found that 85% of organizations enable BYOD policies, citing employee mobility (74%) and employee satisfaction (54%) as the top two reasons for allowing employees, contractors, and other related parties to bring their own devices. However, the convenience of BYOD creates a particularly large attack surface for malicious actors to harvest information from these organizations.

Source: 85% of enterprises allow employees to access data from personal devices, security risks abound – TechRepublic

Hackers are not main cause of health data breaches

Most health information data breaches in the U.S. in recent years haven’t been the work of hackers but instead have been due to mistakes or security lapses inside healthcare organizations, a new study suggests. The top cause of data breaches, accounting for 42 percent of cases and 472 incidents, was theft of equipment or information by unknown outsiders or by current or former employees, the study found.

Source: Hackers are not main cause of health data breaches | Reuters

GDPR Burdens Hinder M&A Transactions

An increasing number of mergers and acquisitions (M&A) transactions may be stalling because of concerns over EU General Data Protection Regulation (GDPR) compliance, according to a survey of EMEA M&A professionals conducted by Merrill Corporation.

The implementation of the EU’s General Data Protection Regulation (GDPR) stood out as a major hurdle for mergers and acquisitions, with more than half of respondents (55 percent) citing the compliance and data protection employed by the target company as a primary reason a transaction did not progress. Additionally, 66 percent of those surveyed believe that GDPR will increase acquirers’ scrutiny of the data protection policies and processes of target companies, further complicating the deal-making process.

Source: GDPR Burdens Hinder M&A Transactions in the EMEA Region, According to Merrill Corporation Survey | Business Wire

1 2 3 21