Michael G. Fekete of Osler, Hoskin & Harcourt LLP writes: On September 13, 2013, Manitoba joined Quebec, British Columbia and Alberta by enacting provincial private sector privacy legislation. Once it comes into force, Manitoba’s Personal Information Protection and Identity Theft Prevention Act (PIPITPA) will govern the collection, use and disclosure of personal information, including that…
Category: Non-U.S.
Panasonic UK signs undertaking following theft of laptop with unencrypted personal information from third party contractor
Panasonic UK has signed an Undertaking with the Information Commissioner’s Office (ICO) following the theft of an unencrypted laptop containing personal data relating to people who had attended a hospitality event run by a third party company on Panasonic’s behalf. The incident is a good reminder that your contracts with business associates or vendors need…
News Corp Australia statement
Seen on The Australian, but not on News Corp Australia’s web site: This afternoon News Corp Australia was made aware of a vulnerability in the security of our email newsletter database. Some personal information about people who subscribe to our email newsletters was potentially accessible from outside the company. The information does not include credit…
AU: Telco AAPT breached Privacy Act, Melbourne IT given all-clear
Michael Lee reports: Australian Privacy Commissioner Timothy Pilgrim has found AAPT to be in breach of the Privacy Act after it was hacked and failed to secure customer information. That information was held on Melbourne IT’s systems. At the time of the incident, Melbourne IT CEO Theo Hnarakis told ZDNet that “whether it’s current, whether it’s historic, it’s not…
Mass security breach of fast food payment systems in South Africa via variant of Dexter malware (update 1)
Duncan McLeod reports: South Africa’s banks have suffered tens of millions of rand in losses due to a major breach of customer card data by criminal syndicates that infected electronic point-of-sale (POS) devices using a variant of malicious software called Dexter. It’s not known exactly how many POS devices were infected by the malware, but…
ICO reminds organizations of need for BYOD policies to protect data
The Information Commissioner’s Office (ICO) is reminding organizations that they must make sure that their data protection policies reflect how the modern workforce are using personal devices for work. With a YouGov survey earlier this year showing that 47% of all UK employees now use their smartphone, tablet PC or other portable device for work purposes there…