South Korea’s privacy watchdog (PIPC) has fined Facebook millions for providing users’ personal information to companies. According to the data protector, the data of at least 3.3 million local Facebook users would have been shared without permission with up to 10,000 companies. Personal data such as relationship statuses, work experience and education were shared with […]
Researchers have discovered hundreds of thousands of stolen Spotify passwords in an unsecured database accessible to anyone on the Internet. The credentials had been stolen from other websites and then used to log in to Spotify accounts of users who reuse their passwords. The total 72 gigabyte Elasticsearch database contained more than 380 million records. […]
RTL News has gained access to a secret consultation between the European defense ministers. This was possible because the Twitter account of Minister Ank Bijleveld briefly contained a photo with the login address and part of the pin code. With a few tries the RTL News reporter succeeded in guessing the pin code of the […]
The EDPB advises you to know your transfers. Mapping all transfers of personal data to third countries to ensure that it has an equivalent level of protection wherever it is processed. You must also verify that the data you transfer is adequate, relevant and limited to what is necessary in relation to the purposes for […]
Vodafone got a Euro 12,250,000 fine on account of having unlawfully processed the personal data of millions of users for telemarketing purposes. This decision marks the final step in a complex proceeding that the Garante had initiated. Following hundreds of complaints and alerts submitted by users against unsolicited phone calls made by Vodafone and/or the […]
Only 47 of 359 apps use Google and Apple’s more privacy-friendly exposure-notification system, which restricts apps to only Bluetooth data collection. More than six out of seven COVID-19-focused iOS apps worldwide are free to request whatever privacy permissions they want, with 59 percent asking for a user’s location when in use and 43 percent tracking […]
Organizations that plan to purchase cloud services should take five measures in advance to prevent uncontrolled risks, the National Cyber Security Center (NCSC) of the Ministry of Justice and Security recommends in a new fact sheet. According to the NCSC, it appears that organizations regularly do not purchase cloud services in a secure manner, which […]
The Cyber Security Council is a national and independent advisory body to the cabinet. They are concerned about the growing dependence on the Netherlands when it comes to the use of new technological applications or services from foreign tech companies. This can lead to potential vendor lock-in and in exceptional cases possible access to data […]
Google loses their appeal on the 50 million euro GDPR fine imposed on it in January 2019. Google said the French DPA has no legislation on her as it is headquartered in Ireland. Read more about this here: https: / /www.adexchanger.com/privacy/google-loses-its-appeal-on-50-million-euro-gdpr-fine/
A report by the Committee of Supervision of the Intelligence and Security Services shows that bulk data sets collected according to the ISS Act 2017 have sometimes been fully (or largely) incorrectly declared ‘relevant’ so that they can be kept for longer than eighteen months. “. Bulk datasets are datasets of which the majority of […]