China last week unveiled its first draft of a new law intended to protect personal information. PrivSec Report summarises the key points. China last week published a first draft of its comprehensive Personal Information Protection Law (Draft PIPL) which aims to provide national level protection of personal data for residents of mainland China. The […]
News
FBI has ‘credible information’ that cyber attackers are targeting US hospitals
US hospitals and health care providers are facing an “increased and imminent” cybercrime threat, the Federal Bureau and Investigation (FBI) and two other federal agencies have warned. The FBI, along with the Cybersecurity and Infrastructure Security Agency (CISA) and the Department of Health and Human Services (DHHS) say they have “credible information” that malicious cyber […]
Uber faces landmark GDPR court challenge over alleged firing of drivers by algorithm
A trade union on Monday filed a complaint in the Amsterdam District Court accusing Uber of “robo-firing” drivers by algorithm. The App Drivers and Couriers Union is bringing the case on behalf of three drivers from London and Birmingham, while a fourth, Lisbon-based driver’s case is supported by the International Alliance of App-based Transport Workers. […]
ICO issues enforcement notice to Experian over unlawful use of data for marketing purposes
The Information Commissioner’s Office (ICO) has issued an enforcement notice to Experian over unlawful use of data for marketing purposes, which Experian plans to appeal. The credit reference agency (CRA) Experian, has been ordered by the ICO to make “fundamental changes” to how it handles people’s personal data within its direct marketing services after a […]
A third of data breaches next year will be caused by insider incidents, report predicts
One in three data breaches in 2021 will come from insider incidents, according to new research from market analysts Forrester. The research predicts the proportion of data breaches from insider incidents will rise from 25% currently due to changes brought about by the Covid-19 pandemic. Following the pandemic’s disruption, the report estimates that remote work […]
ICO probes complaints following allegations Wagamama used Covid-19 track and trace data to survey customers
Wagamama customers in the UK have allegedly been sent a survey after sharing contact details for Covid-19 contact tracing, The Times reports. The Information Commissioner’s Office (ICO) is now making enquiries after receiving a number of complaints about the restaurant chain. UK regulations state that hospitality venues including restaurants must ask at least one member […]
Amazon launches ‘data for cash’ scheme in the US
Amazon has launched a new data for cash scheme called Amazon Shopper Panel where users can volunteer their shopping habit data for rewards. The opt-in and invite-only programme, Amazon Shopper Panel, is available in the US for both iOS and Android users. Users are required to upload 10 receipts per month for any purchases made […]
Bharti Airtel blames controversial privacy policy wording on a ‘clerical error’
Indian telecommunications company Bharti Airtel says a clerical error led to a discrepancy in its privacy policy, which stated the company shared personal information including genetic data with third parties. Subscribers of the service took to social media to post screenshots of the contentious privacy policy, which included a generic statement under ‘collection of personal […]
UK releases details of Russian cyber attacks against Olympics and Paralympics
GRU, Russia’s military intelligence service, hacked officials and organisations involved in the planned 2020 Tokyo Olympic and Paralympic Games, the UK government has announced. The UK government said that the GRU also targeted the 2018 Korean Winter Olympics and Paralympics, which took place in Pyeongchang, even posing as North Korean and Chinese cyber attackers when […]
Facebook’s lead European regulator investigates Instagram’s processing of children’s data
UPDATE 20/10/20: This article was updated to include a comment from Facebook. Ireland’s Data Protection Commission (DPC) has launched two statutory inquiries into the processing of children’s data on Facebook-owned social media platform, Instagram. In the first, the DPC will look at Facebook’s reliance on certain legal bases for processing children’s personal data on Instagram, whether […]