Danish hotel group fined for failing to delete customers’ details

The Arp-Hansen Hotel Group in Denmark has been fined 1.1m Danish crowns (US$170,000, €148,000) and referred to the police by the country’s data protection authority (Datatilsynet) for storing information on clients longer than necessary.  In an audit visit, the DPA found there were customer profiles which should have been deleted several years earlier. The authority […]

New report reveals cyber security flaws in UK universities

More than half of UK universities have reported at least one data breach to the Information Commissioner’s Office (ICO) over the last year, according to a report from managed security services provider Redscan. According to 86 respondents of 134 UK universities approached by Redscan for Freedom of Information requests in March 2020, there were two […]

Healthcare provider to pay US$1m for stolen laptop breach

A Rhode Island healthcare provider has agreed to pay a U$1,040,000 (€906,000) penalty after the theft of an unencrypted laptop. It was stolen from an employee of Lifespan Health System Affiliated Covered Entity and contained patients’ names, medical record numbers, demographic information, medication information and other data. The breach affected 20,431 individuals. The health provider […]