Privacy Transformation - Issue 22
PRIVACY
Is Ireland breaching EU rules by underfunding data regulator?
With the release of Budget 2020, it is worth noting the contrast of the Horse and Greyhound Fund being awarded a budget approaching five times that of the Data Protection Commission, one of the lead supervisory authorities in Europe responsible for the effective enforcement of the General Data Protection Regulation, at a time when it is struggling to cope with the resources it has.
More on this story, and insights into the DPC's requests to be better resourced, can be found here.
EDPB Opinion 15/2019 on the draft decision of the competent supervisory authority of the United Kingdom regarding the Binding Corporate Rules of Equinix Inc.
The EDPB's Opinion on the draft decision regarding the Binding Corporate Rules of Equinix Inc. submitted by the ICO, is now available.
Google Facial Recognition Tactics Raise Racial, Privacy Concerns
The Silicon Valley-based company’s efforts to gather as much facial recognition data as it can — especially from people of color — has raised questions about the tactics it employs to meet that end.
SECURITY & TECH
Edward Snowden - Without encryption we will lose all privacy. This is our new battleground
The US, UK and Australia are taking on Facebook in a bid to undermine the only method that protects our personal information, says US surveillance whistleblower Edward Snowden.
Time running out to get off Amazon's addictive cloud French minister warns
Amazon's cloud computing is like a "soft drug", a French minister said on Tuesday, warning that time was running out for Europe to wean itself off the U.S. company's services.
The latest trend in ad tech fraud: Faking GDPR consent strings
Publishers and vendors have been reviewing their compliance strategies, and more audits are being undertaken to avoid fake GDPR consent strings.
Food writer Jack Monroe 'loses £5,000 in phone-number hijack'
Jack Monroe's bank and PayPal accounts were used after her mobile phone number was hijacked.
DATA BREACH
Sex workers' clients exposed by Dutch hack attack
The names of people who visited sex workers as well as of the workers themselves have been stolen.
Imperva blames data breach on stolen AWS API key
Imperva said it accidentally exposed an internal server from where a hacker stole an AWS API key.
ENFORCEMENT
Romanian online store fined for unsolicited commercial email
The operators of the online store Elefant.ro and legal portal Avocatnet.ro were fined by the National Supervisory Authority for sending unrequested commercial messages.
GUIDELINES
EDPB releases guidance on processing data for online services when processing in the context of a contract
The European Data Protection Board has published its guidelines for the data processing related to contracts for online services in the context of Article 6(1)(b) of the EU General Data Protection Regulation.
RESOURCES
How to 'background check' under the GDPR
Information security, risk and compliance are in focus and one of the core issues for many companies. For obvious reasons it has been early recognized that people are one of the key factors and often times the weakest link in organisational security.