The EDPB advises you to know your transfers. Mapping all transfers of personal data to third countries to ensure that it has an equivalent level of protection wherever it is processed. You must also verify that the data you transfer is adequate, relevant and limited to what is necessary in relation to the purposes for […]
Vodafone got a Euro 12,250,000 fine on account of having unlawfully processed the personal data of millions of users for telemarketing purposes. This decision marks the final step in a complex proceeding that the Garante had initiated. Following hundreds of complaints and alerts submitted by users against unsolicited phone calls made by Vodafone and/or the […]
Only 47 of 359 apps use Google and Apple’s more privacy-friendly exposure-notification system, which restricts apps to only Bluetooth data collection. More than six out of seven COVID-19-focused iOS apps worldwide are free to request whatever privacy permissions they want, with 59 percent asking for a user’s location when in use and 43 percent tracking […]
Organizations that plan to purchase cloud services should take five measures in advance to prevent uncontrolled risks, the National Cyber Security Center (NCSC) of the Ministry of Justice and Security recommends in a new fact sheet. According to the NCSC, it appears that organizations regularly do not purchase cloud services in a secure manner, which […]
The Cyber Security Council is a national and independent advisory body to the cabinet. They are concerned about the growing dependence on the Netherlands when it comes to the use of new technological applications or services from foreign tech companies. This can lead to potential vendor lock-in and in exceptional cases possible access to data […]
Google loses their appeal on the 50 million euro GDPR fine imposed on it in January 2019. Google said the French DPA has no legislation on her as it is headquartered in Ireland. Read more about this here: https: / /www.adexchanger.com/privacy/google-loses-its-appeal-on-50-million-euro-gdpr-fine/
A report by the Committee of Supervision of the Intelligence and Security Services shows that bulk data sets collected according to the ISS Act 2017 have sometimes been fully (or largely) incorrectly declared ‘relevant’ so that they can be kept for longer than eighteen months. “. Bulk datasets are datasets of which the majority of […]
The European Commission is going after cloud computing, the online data storage business dominated by big American companies. A draft bill seeks to address concerns about dependence on a small group of providers: chiefly Amazon Web Services, Google Cloud, IBM Cloud and Microsoft Azure. The bill creates an oversight system designed “to preserving the […]
Awareness training in the field of cybersecurity and phishing must be repeated after approximately six months to ensure that employees continue to recognize phishing emails properly. This is evident from a study that was carried out by a number of German universities at an organization from the public sector. In Germany, public organizations are required […]
Last Thursday in the Northern District of California, Brittany Conditi filed a class-action complaint against Instagram and its parent company Facebook for invasion of privacy alleging that Instagram accessed users’ smartphone cameras when not using features that would require camera access, despite the defendants’ representations to the contrary. Specifically, the party who initiated the lawsuit […]