This weeks collection of latest privacy, data protection and cyber-security news and interesting articles. Enjoy the reading!
A motor industry employee has been sentenced to six months in prison in the first prosecution to be brought by the Information Commissioner?s Office (ICO) under legislation which carries a potential prison sentence.
Continue reading »
Yesterday, January 10, 2017, European Commission announced its proposal for new Regulation on Privacy and Electronic Communications (ePrivacy Regulation) that will supplement General Data Protection Regulation (GDPR) and replace existing ePrivacy directive.
Aim of new ePrivacy regulation is to?harmonise data protection?framework relating to electronic communications within the European Union and ensure consistency with the GDPR.?Main changes introduced by ePrivacy Regulation are:
Commission emphasis that the proposed Regulation on Privacy and Electronic Communications will increase the protection of people’s private life and open up new opportunities for business.
Breaches of ePrivacy regulation will be punishable under GDPR and mean penalties up to EUR 20 million or 4% of the total worldwide annual turnover of company group, whichever is higher.
Yesterday (October 19, 2016) the Court of Justice of the European Union (CJEU) issued its judgment in case Patrick Breyer v. Bundesrepublik Deutschland, in which court recognizes that dynamic IP addresses registered by websites are personal data. CJEU followed the Opinion of the Advocate General delivered earlier this year.
In its decision CJEU concluded that website operators and other online services providers would have the means to identify the website user and that there is reasonable probability that such means be used, e.g. in case of cyber attacks. Therefore?dynamic IP addresses shall be considered personal data.
Cloud Infrastructure Services Providers in Europe (?CISPE?) – a relatively new coalition of more than 20 cloud infrastructure providers operating in Europe – has recently published its first Code of Conduct for Cloud Infrastructures Services.
The CISPE Code of Conduct:
Service providers may demonstrate their compliance with the Code of Conduct with Trust Mark that can be verified on CISPE website.
On September 9, 2016, the operator of the world?s largest Internet hub, De-Cix, filed lawsuit against the German government to stop mass surveillance by the German intelligence agency Bundesnachrichtendienst (BND). De-CIX is challenging the legality of orders from the BND to implement monitoring of communications flowing through its Frankfurt Internet exchange point. De-CIX insists that mass surveillance is illegal. Recently leaked Germany?s federal data protection commissioner?s secret report stating BND repeatedly broke law engaging in mass surveillance activities.
Dutch police have seized two servers belonging to?Switzerland-based VPN provider?Perfect Privacy.?The VPN provider claims that Dutch police haven’t?informed or?contacted them about the reason servers were seized and about seizure they were informed by their hosting provider.?Despite the seizure of servers,?Perfect Privacy promises that no?user data was compromised.
Internet contains unimaginable amounts of data. So how hard it would be to track down you? And how to find what data is there about you on the internet?
This article tries to shed some light on how identity theft and the second life of stolen identities. Stolen identity information is freely available on Darknet.
Unfortunately, there is little individuals can do to protect themselves from identity thieves lurking on the Darknet to do them harm. For organizations, the best strategy is to educate users, consumers and protect personal data with the latest cybersecurity solutions.
Recently Microsoft has revealed that it is expanding the coverage of ?right to be forgotten? mechanism in Europe. Microsoft will now use location signals such as IP addresses to delist URLs on all versions of its search engine Bing.
If someone in France successfully requests delisting of a URL on Bing, in addition to delisting that URL from all applicable European versions of Bing, Bing will now also delist that URL for all searches of that person?s name ? regardless of what version of Bing is being used ? if the search originates from a location within France.