Privacy Transformation - Issue 147
PRIVACY
TikTok children’s privacy lawsuit can proceed, says UK High Court
A UK High Court judge has granted permission for a class-action style privacy lawsuit to proceed against TikTok over its handling of children’s data.
Fine over CCTV use in Limerick is a ‘scandalous disgrace’ says Community Alert chair
LIMERICK City and County Council being fined €110,000 over its use of CCTV cameras is a “scandalous disgrace”, says one of the leading voices in the Community Alert movement.
Ex-INM chief had email account rebuilt in secret data operation
Legal documents filed by Mediahuis confirms names of those closely targeted in 2014 leak.
SECURITY & TECH
FBI: Ransomware gang breached 52 US critical infrastructure orgs
The US Federal Bureau of Investigation (FBI) says the Ragnar Locker ransomware group has breached the networks of at least 52 organizations from multiple US critical infrastructure sectors.
WhatsApp updates privacy policy for European users
Messaging platform WhatsApp has made further changes to its privacy policy for users in Ireland and across Europe following engagement with the Irish Data Protection Commission.
Twitter is launching a Tor service for more secure and private tweeting
Twitter is launching an onion service version of its site that’s optimized for the Tor privacy and anti-censorship network. The announcement comes amid a surge of new interest in Tor following widespread Russian internet censorship.
Gig App Gathering Data for U.S. Military, Others Prompts Safety Concerns
Premise is one of a number of companies offering a service that uses Apple and Google smartphones tools for gathering intelligence and commercial information from afar, sometimes without the users knowing specifically who they are working for.
UK NCSC: Weekly Threat Report
The NCSC's weekly threat report is drawn from recent open source reporting.
DATA BREACH
Samsung confirms data breach after hackers leak internal source code
Samsung has confirmed a security breach after hackers obtained and leaked almost 200 gigabytes of confidential data, including source code for various technologies and algorithms for biometric unlock operations.
ENFORCEMENT
Italy fines Clearview AI almost EUR 20M
Italy's data privacy watchdog on Wednesday fined US-based firm Clearview AI 20 million euros over its controversial facial recognition software.
Royal Mail Group Limited issued with monetary penalty notice for breach of PECR/ePrivacy Regulation
Royal Mail Group Limited issued with monetary penalty notice for breach of the Privacy and Electronic Communications Regulations.
More on the latest GDPR enforcement news can be found on:
RESOURCES
CISA publishes guide on maturing enterprise mobility towards zero trust architectures
The Cybersecurity and Infrastructure Security Agency ('CISA') has published, a guide for public consultation titled "Applying Zero Trust Principles to Enterprise Mobility". CISA has stated that the guide highlights the need for special consideration for mobile devices and associated enterprise security management capabilities due to their technological evolution and ubiquitous use.
CONTRIBUTE
Have an interesting article, book, video, podcast or other resource that you would like to share with fellow privacy practitioners? Please do drop me a note.