Privacy Transformation - Issue 65
PRIVACY
EU, US initiate talks on potential 'enhanced' Privacy Shield
The U.S. Department of Commerce and the European Commission announced that they have initiated discussions "to evaluate the potential for an enhanced EU-U.S. Privacy Shield framework to comply with the CJEU judgement in the 'Schrems II' case."
See Joint Press Statement issued by U.S. Department of Commerce.
Data Commissioner assessing TikTok plans to establish data centre in Ireland
TikTok must be assessed to see if the company meets the criteria needed to avail of the same One Stop Shop (OSS) data processing mechanism currently given to other tech giants such as Facebook, the Irish Data Protection Commission has said.
Can Killing Cookies Save Journalism?
A Dutch public broadcaster got rid of targeted digital ads—and its revenues went way up.
Opinion: Why Parents Should Pause Before Oversharing Online
As social media comes of age, will we regret all the information we revealed about our families during its early years?
Opinion: We need a Paris Agreement for Privacy
The digital environment shapes our relationships with our governments, businesses and each other. It is indeed an environment, and like the environment of the physical world, its change poses grave challenges.
SECURITY & TECH
Online exam tool ProctorU admits breach after hackers leak its database
ProctorU database containing 444,267 accounts was leaked by ShinyHunters hackers on July 27th, 2020. Here's what happened.
WhatsApp confirms Catalan politician's phone was target of 2019 attack
WhatsApp has confirmed that the mobile phone of a leading pro-independence politician in Catalonia was targeted over its messaging app in a 2019 attack that has been condemned as a possible case of domestic espionage in Europe.
Nearly 40% of A-level result predictions to be downgraded in England
Automatic Decision Making: Nearly 40% of A-level grades submitted by teachers are set to be downgraded when exam results in England are published next week, the Guardian has learned, as criticism intensifies of this year’s makeshift results.
Police built an AI to predict violent crime. It was seriously flawed
A Home Office-funded project that used artificial intelligence to predict gun and knife crime was found to be wildly inaccurate.
At Talkspace, Start-Up Culture Collides With Mental Health Concerns
The therapy-by-text company made burner phones available for fake reviews and doesn’t adequately respect client privacy, former employees say.
Differential Privacy for Privacy-Preserving Data Analysis: An Introduction to NIST Blog Series
Does your organization want to aggregate and analyze data to learn trends, but in a way that protects privacy? Or perhaps you are already using differential privacy tools, but want to expand (or share) your knowledge? In either case, this blog series is for you.
DATA BREACH
Personal details of staff released in Social Protection IT breach
The leaked data included pictures of staff displaying their Personal Public Service Numbers and access to elements of the personal files of staff.
ENFORCEMENT
ITALIAN SUPERVISORY AUTHORITY
10,000 EUR for an organisation accessing personal data of a former employee on his work computer [more info]
SPANISH SUPERVISORY AUTHORITY
3,000 EUR for a company that published a cookie policy on its website, which contained no information about the purpose of their use of cookies and no information about the properties of the installed cookies (e.g. retention period) [more info]
UK SUPERVISORY AUTHORITY
100,000 GBP Penalty notice issued to organisation responsible for instigating the transmission of unsolicited communications to subscribers for the purposes of direct marketing [more info]
80,000 GBP Penalty notice issued to Organisation responsible for making unsolicited direct marketing calls to subscribers on the TPS register without valid consent between. [more info]
More on the latest GDPR enforcement news can be found on:
RESOURCES
How to put cybersecurity at the centre of society: JRC report connects the dots
Everyone has their part to play in securing our digital world, from the child playing online to the policy maker drafting a new regulation, according to this report from the Joint Research Centre (JRC), the European Commission's science and knowledge service.
You can read the report here.