Antony Savvas reports that Facebook is warning EU data protectors that companies may start court battles if they are fined 2% of their global turnover for a data breach. They also raise a host of other concerns and objections to the draft proposal. Facebook’s response to the draft regulations was obtained under a freedom of information…
Category: Commentaries and Analyses
Experian defends security protocols while investigations into its data security grow
It seems that Experian is trying to defend its data security following Jordan Robertson’s report on dozens of breaches involving compromised client logins. Jordan’s report was based on dozens of breach reports compiled by DataLossDB.org and yours truly, who filed a complaint with the FTC about Experian’s breaches back in April. Pat Dulnier reports on Experian’s defense,…
UK Businesses Consider Abusing ICO Data Breach Fine ‘Loophole’
Tom Brewster reports: Organisations have considered using a “loophole” to avoid data breach fines – by asking the privacy regulator, the Information Commissioner’s Office (ICO), to audit them when they already know personal data has been lost or stolen. The UK privacy watchdog has promised not to fine any company for breaches of the Data Protection Act if…
Lawmakers Release Information About How Data Brokers Handle Consumers’ Personal Information
From Rep. Ed Markey: A bipartisan group of lawmakers, including Reps. Edward J. Markey (D-Mass.) and Joe Barton (R-Texas), co-Chairmen of the Congressional Bi-Partisan Privacy Caucus, today released responses to letters sent to nine major data brokerage companies querying each about how it collects, assembles and sells consumer information to third parties. The companies –Acxiom,…
Published Data Empowers
Over on The New School of Information Security, Adam Shostack takes off from Jordan Robertson’s article on Experian’s too-frequent data breaches to discuss a topic near and dear to my heart: the value of transparency and detailed information. Do read his post.
UK: Public sector squanders £2m due to data leaks
Dan Worth reports: Public sector organisations including the police, NHS and councils have had to pay out £2m in fines as a result of poor data handling practices over the past 18 months. The Information Commissioner’s Office (ICO) was given the ability to levy penalties of a maximum of £500,000 in April 2011 in an…