fbpx

Free tools and resources for Data Protection Officers!

Category Archives for "Technology"

How Microsoft Plan to Empower Users to Own and Control Personal Data

Microsoft presented a vast blockchain-related plan: a decentralized identity (DID) network built atop of the bitcoin network, which can potentially empower users all over the internet to take control over their personal data and content.

Titled the Identity Overlay Network (ION), the infrastructure lets users obtain control over their own data via the management of their Public Key Infrastructure (PKI).

DID allows users to control their own data and content — including login details and photos, which is not currently possible on most social media platforms that store such data on their private, centralized servers.

Full article: Decentralized Identity: How Microsoft (and Others) Plan to Empower Users to Own and Control Personal Data

EU High-Level Working Group on AI launches pilot phase of Ethics Guidelines and publishes  Recommendations for Trustworthy AI

On June 26, 2019, the EU High-Level Expert Group on Artificial Intelligence (AI HLEG) announced two important developments: (1) the launch of the pilot phase of the assessment list in its Ethics Guidelines for Trustworthy AI; and (2) the publication of its Policy and Investment Recommendations for Trustworthy AI.

The Recommendations are the second deliverable of the AI HLEG; the first was the Group’s Ethics Guidelines of April 2019, which defined the contours of “Trustworthy AI”.

Source: Two new developments from the EU High-Level Working Group on AI: launch of pilot phase of Ethics Guidelines and publication of Policy and Investment Recommendations for Trustworthy AI

Données & Design: a platform to bring designers together on the topic of GDPR

Données & Design is a platform, created by French data protection authority CNIL, seeking to create spaces for collaboration and discussion for designers to build together user journeys respectful of privacy.

The platform aims at efficiently integrating those considerations in the daily work of designers in order to help them argue their choices and collaborate more effectively on data protection issues with privacy professionals and other members of a project team (DPO, product owner, projects manager…). The platform provides contents explaining and illustrating points of regulation on which designers can intervene.

Source: Données & Design: a platform to bring designers together on the topic of GDPR

Amazon’s helping police build a surveillance network with Ring doorbells

While residential neighborhoods aren’t usually lined with security cameras, the smart doorbell’s popularity has essentially created private surveillance networks powered by Amazon and promoted by police departments.

Police departments across the country, from major cities like Houston to towns with fewer than 30,000 people, have offered free or discounted Ring doorbells to citizens, sometimes using taxpayer funds to pay for Amazon’s products. While Ring owners are supposed to have a choice on providing police footage, in some giveaways, police require recipients to turn over footage when requested.

Source: Amazon’s helping police build a surveillance network with Ring doorbells – CNET

Facial recognition smart glasses could make public surveillance discreet and ubiquitous

A new product from UAE firm NNTC shows where this tech is headed next. The AR glasses have an 8-megapixel camera embedded in the frame which allows the wearer to scan faces in a crowd and compare with a database of 1 million images.

Technology like this means law enforcement agencies can adopt facial recognition algorithms and use them in public spaces with less hassle and fewer distractions. That means it’s likely to be used more widely.

Source: Facial recognition smart glasses could make public surveillance discreet and ubiquitous – The Verge

Apple is making corporate ‘BYOD’ programs less invasive to user privacy

When people bring their own devices to work or school, they don’t want IT administrators to manage the entire device.

But until now, Apple only offered two ways for IT to manage its iOS devices: either device enrollments, which offered device-wide management capabilities to admins or those same device management capabilities combined with an automated setup process. At Apple’s Worldwide Developer Conference last week, the company announced plans to introduce a third method: user enrollments.

Source: Apple is making corporate ‘BYOD’ programs less invasive to user privacy | TechCrunch

AI used to identify thieves in Walmart

The American supermarket chain, Walmart has said that it uses AI recognition technology on its checkouts to help root out shoplifters.

The AI cameras are capable of spotting when items have been placed inside a shopping bag without having been scanned either by a cashier or through the self-service scan mechanism.

Source: AI used to identify thieves in Walmart, USA

The importance of consent and privacy when deploying voice biometrics

Whilst choice of voice biometrics for many companies operating large call-centres may the correct technological choice, its implementation doesn’t appear to have taken into account the data protection requirements that accompany biometrics in the relevant jurisdictions.

The GDPR is very specific about the use of biometrics and refers to it as an especially sensitive category of personal data that warrants extra protection.

Source: The importance of consent and privacy when deploying voice biometrics

Irish DPA issues guidance on the Use of CCTV

Irelands data protection authority – Data Protection Commission – has issued a guidance on use of CCTVs and video surveillance.

This guidance is intended to assist owners and occupiers of premises, in particular those that are workplaces or are otherwise accessible to the public, to understand their responsibilities and obligations regarding data protection when using CCTV.

Access guidance: Guidance on the Use of CCTV – For Data Controllers • DPO.guide

French DPA to take action on online targeted advertisements

French data protection authority CNIL has received an important number of individual and collective complaints (La Quadrature du Net, Privacy International, NOYB) relating to online marketing. In 2018, 21% of the complaints were related to marketing in the broad sense.

Therefore, the CNIL has decided to make targeted online advertising a priority topic for 2019. In July, the CNIL will repeal its 2013 cookie recommendation that has become outdated in some respects (in particular for what concerns the expression of consent), and publish guidelines outlining the applicable rules of law.

Working sessions will be held in the second half of 2019 between the CNIL services and each category of stakeholders (content editors, advertisers, service providers and intermediaries in the marketing ecosystem, civil society), through their representative organizations.

The CNIL will carry out inspections on this the final recommendation 6 months after its final adoption.

Source: Online targeted advertisement: what action plan for the CNIL?

>