Home » Privacy & Data Protection

Privacy & Data Protection

UK Data Protection and Privacy Update

Mike Bradford, BIIA’s contributing editor on the subject of data protection and privacy has published his latest newsletter which he is sharing with our UK members. August Headlines Information Commissioner’s Office Annual Report Data breach commentary Legitimate interest guidance Updated subject access policy Direct Marketing Association GDPR guidance GDPR in the press Warning to workers about sharing personal information Recent ... Read More »

Report Predicts Banks to Get €4.7bn Fines In First 3 years Under GDPR

A new report is “conservatively” forecasting that European finance organisations are about to shell out €4.7 billion in first three years after the GDPR (General Data Protection Regulations) comes into power thanks to data breaches which they don’t currently have to declare.  Consult Hyperion, which commissioned AllClear ID to carry out the research said in a press release, “this forecast is ... Read More »

Experian Data Breach Resolution and Ponemon Institute Find Organizations Are Not Ready for Global Security Risks and Regulations

Only 9 percent of companies are prepared for the Global Data Protection Regulation* (GDPR) half don’t know where to begin Experian Data Breach Resolution and Ponemon Institute released an industry study revealing that while companies generally are aware of and intimidated by global privacy and data security regulations, they fail to properly understand and address necessary organizational changes to comply. ... Read More »

UK Privacy and Data Protection Update

Mike Bradford of Regulatory Strategies UK is a regular contributor on the subjects of privacy and data protection.  Here is his latest update on UK data protection policy and recent data breaches: UK Data Protection Policy Declaration In the Queen’s Speech, the government made clear its intention to ‘ensure that the United Kingdom retains its world-class regime protecting personal data’ ... Read More »

Reckless Minds: Google’s DeepMind Trial Failed to Comply With Data Protection Laws

A year-long investigation found that patients were not adequately informed that medical data would be used as part of a trial of Streams, a mobile app designed to help with the real-time detection of acute kidney injury (AKI). The Royal Free London NHS Foundation Trust gave Google’s DeepMind artificial intelligence program data on 1.6 million patients without proper consent, the ... Read More »

Microsoft Makes Changes to its DP Compliance as a Result of Regulatory Action in France

Microsoft has made changes to how it processes personal data as a direct response to a formal notice in July 2016 by France’s Data Protection Authority, the CNIL. At the time, the regulator said that the company had excessive data collection practices, was tracking users’ web-browsing without their consent, and had insufficient procedures to guarantee the security and confidentiality of ... Read More »

TransUnion and Equifax Launch Multi-Bureau Lock

Unique, two-bureau feature enhances identity theft protection, data security TransUnion® (NYSE: TRU) and Equifax Inc. (NYSE: EFX) have entered into an agreement to launch a first-of-its-kind identity theft protection feature, Multi-Bureau Lock, that allows customers to lock both their TransUnion and Equifax credit reports. This agreement reinforces Equifax and TransUnion’s shared commitment to identity theft protection and data security by making it ... Read More »

Mike Bradford’s Message: From 25th of May 2018 All Organisation Must be Fully GDPR Compliant

His critical message is that we are now less than a year away from what is undoubtedly fundamental reform to how we use data.   From 25 May next year all organisations must be fully GDPR compliant.  There is no ‘grace period’. This month we saw what the press is picking up on – see https://www.thetimes.co.uk/article/data-protection-changes-provide-safeguards-and-business-opportunities-vs3c5vtpm. This perhaps gives an early ... Read More »

GDPR: A Well-intentioned Concept Hits the Realities of Implementation

75% of Organizations Will Struggle to Meet EU GDPR Regulations by Deadline, Survey Finds Varonis Systems, Inc. (NASDAQ:VRNS), a leading provider of software solutions that protect data from insider threats and cyberattacks, released findings today from an independent survey probing attitudes towards the EU General Data Protection Regulations (EU GDPR), due to come into effect one year from today. The survey, which polled ... Read More »

China Cybersecurity and Data Protection Laws: Changes to Become Effective June 1, 2017

China’s new Cybersecurity Law will become effective on June 1, 2017. In addition to focusing on cybersecurity, the law also details how companies are to handle personal information and data. In determining what is allowed and not allowed for handling personal information in China, it is important to examine The Decision on Strengthening Information Protection on Networks (2012), The Guidelines ... Read More »

60% of UK Consumers Want at Least Three Security Steps for Financial Protection

Research from Equifax reveals that 60% of consumers think that fewer than three security steps, including passwords, card readers or letters from a memorable word, are insufficient to assure their bank account is secure and not accessible by other people. The online survey, conducted by YouGov, found just over a fifth of the British population (21%) have previously had either ... Read More »

Data Protection: France’s DPA Fines Facebook – Italy’s Antitrust Body Fines WhatsApp

France’s Data Protection Authority, the CNIL, has issued a fine of 150,000 euros on Facebook Inc and Facebook Ireland in an enforcement programme coordinated with four other Data Protection Authorities. The regulator says the company is in breach of the Data Protection Act due to ‘a massive compilation of personal data of Internet users in order to display targeted advertising.’ ... Read More »

FTC Charges Companies With Violating Asia Data Privacy Agreements

The Federal Trade Commission announced recently that it charged Sentinel Labs, SpyChatter, and Vir2us with violating privacy agreements with countries in Asia. The three companies told consumers that they adhered to the Asia-Pacific Economic Cooperation (APEC) Cross-Border Privacy Rules (CBPR) system, which facilitates privacy-respecting data transfers between countries. This agreement is similar to the EU-U.S. and Swiss-U.S. Privacy Shield, which ... Read More »

Creditreform Compliance Services Establishes New Data Protection Hub

New data protection hub of Creditreform Compliance Services GmbH online! Many companies are currently faced with the challenge of examining which new legislation is relevant in the EU Basic Data Protection Regulation. The fines have risen drastically and ensure that data protection is at the top of the list of priorities.  For this purpose Creditreform Compliance Services GmbH has developed a ... Read More »

Equifax Canada Reports: Millennials Top Target for Fraudsters

Education and better protection needed Equifax Canada (NYSE:EFX) – Millennials are the leading target for fraudsters according to new data from Equifax Canada, which flagged this age group for 49 per cent of all suspected fraud applications in its fraud management database last year. Millennials (aged 18-34) are followed by Generation X (aged 35-50) at 30 per cent and Baby Boomers (aged ... Read More »

Data Quality Issues are Impacting Consumer Trust and Perception

Data has transformed the way the world conducts business, but a new global business survey, commissioned by Experian, has found that many companies are still struggling to keep pace with customer expectations and increased scrutiny. Seven in 10 (72%) of companies said that data quality issues had affected trust and perception by their customers, who are increasingly aware of the ... Read More »