Final Text of the New European Regulation
While waiting for the official announcement from the EU Council, expected by next week, hereafter there is a link to the final version of the GDPR which was agreed upon yesterday: last version
Category Archives: Data Breach
Results of the online Survey about Security and Privacy on mobile devices
As mentioned in the previous post, on November 13th the XI National Congress of ANSSAIF (National Association of Security Specialists in Companies of Financial Intermediation) was held in Rome, on the theme of ‘Digital Services, Security, Network – What knowledge and what tools to address new threats?’. The appointment, rich of illustrious and interesting interventions,… Read More »
License Plate Reader Data Exposed
The Electronic Frontier Foundation learned that more than 100 automated license plate recognition (ALPR) cameras were exposed online. In some cases, the camera live streams could be accessed. ALPR systems capture images of license plates and alert authorities when they spot a plate on the “hot list.” The data are collected and stored even if… Read More »
Sony Settles (Some Claims) Over Breach
Sony will pay up to US $8 million to settle claims against the company over a breach that exposed employee information. The settlement calls for a maximum of US $10,000 per person affected for losses incurred due to identity theft; a maximum of US $1,000 per person for fraud protection services. US $3.5 million is… Read More »
OPM Breach Database of Victims
The US Department of Defense (DoD) is proposing to create a temporary database of people whose personal information was stolen in the colossal Office of Personnel Management (OPM) breach. The purpose of the database will be to identify who is eligible for identity-theft protection services. The breach affected more than 21 million federal employees. Nextgov… Read More »
Data breach notification in NL now!
I was in Netherland last week at the Heliview Privacy conference and found that in the Netherlands, starting from January 1st, 2016 the data breaches must be notified to the authority and to the data subject. The non-compliance fines are set to 810.000 euro or an impressive 10% of the company turnover. Here you find more… Read More »
An international Privacy culture
The recent scandal of the data theft suffered by Canadian extramarital dating website Ashley Madison astonished and continues to create consequences; nearly 10 GBs of data stolen by a hacker group and containing highly sensitive information about the private life of the users involved, whose lives have been however inevitably affected only for being part… Read More »
The E.D.P.S. launches an app to follow the law
An app was released for mobile phones and tablets that allows to consult the work of European Institutions on the general rules for the protection of data. The Italian Giovanni Buttarelli launched the app on National and European data protection “to compare the latest changes in General Data Protection Regulation (GDPR) brought by the co-legislating… Read More »
Data breach notification… in Canada
This article from Financial Post explains the Digital Privacy Act that became law on June 18 in Canada. It’s not related to Europe, but Canada. However it showcases a common trend in several countries. Data breach shall be notified. The mandatory notification provisions require organizations to notify the Privacy Commissioner as well as potentially affected individuals of a… Read More »
Data breach: key contents of the new regulation
Article 31 of the EU regulation proposal on personal data protection is aimed at making the notification of data breaches to the supervisory Authority mandatory for every controller, without undue delay. Of course, processors must notify, again without undue delay, every data breach to the controller to allow him to proceed. The communications must include at least the… Read More »