Julien Hick, Jacqueline van Essen and Vincent Wellens of NautaDutilh write: Belgium recently experienced two significant data breaches (involving, amongst other companies, the Belgian railway operator), which resulted in the online disclosure of personal data relating to thousands of people. These events led the Belgian data protection authority (the Privacy Commission) to issue a recommendation on the security…
Category: Non-U.S.
Mandatory data breach notification law proposed in Canada
Nestor E. Arellano reports: With the Conservative government’s privacy reform bill sitting untouched after being introduced about two years ago, New Democractic Party MP Charmain Borg has introduced a private member’s bill that that would make it mandatory for organizations to report data breach incidents. Bill C-475, Borg’s proposed amendment to the federal Personal Information Protection and Electronics Document…
UK: Council launches investigation following sensitive data breach
Mark Stead reports that a council has been accused of not securing confidential records being discarded, but the council says that they wee the victim of theft: An investigation has been launched into a security breach concerning the personal and highly confidential data of a group of 49 York residents. About 80 documents containing names,…
Mortonhall ashes data stolen from charity office
More grief and anguish for parents of dead babies. David McCann reports: Sensitive documents linked to the babies’ ashes scandal at Mortonhall Crematorium have been stolen in a raid on offices of the bereavement charity which exposed the malpractice. Thieves stole a laptop containing the personal details of families affected by the controversy unearthed in…
Korean Court Orders SK Communications to Pay Damages to ID Theft Victims
The 2011 hack affecting SK Communications, operator of Nate and Cyworld, currently stands as 10th on DataLossDB’s list of largest all-time breaches, affecting 35 million people. The breach not only resulted in lawsuits, but contributed to the government reversing its plans to implement a real-name registration policy. In the latest development, a Seoul court has…
EU proposes new cybercrime reporting rules
BBC reports: Over 40,000 firms, including energy providers, banks and hospitals could be required to report cyber-break-ins under new rules proposed by the EU. It is part of a move to intensify global efforts to fight cybercrime. Digital agenda commissioner Neelie Kroes said that Europe needed to improve how it dealt with cybersecurity. But firms…