Privacy is Privacy Even in a Post-Brexit Britain

Written by André Thompson, Privacy Counsel, Trūata. As UK-based companies grapple with the many consequences of Brexit, one European initiative they may be happy to depart from is the General Data Protection Regulation (the GDPR). The considerable burden of compliance that organisations found themselves subject and the complexity of understanding and implementing a compliance programme to […]

#PrivSecLDN: Ethics in data privacy among key themes at PrivSec London

Delegates at PrivSec London were able to learn about crucial issues affecting data privacy and cyber security over the conference’s two days at the Queen Elizabeth II Centre, but its the importance of ethical approach to data handling stood as a key theme.   Attendees in the conference’s Public Sector heard how transparency is crucial: […]

#Privacy: Over 30m payments cards exposed from Wawa breach currently on sale

More than 30 million payment cards stolen from a 2019 breach at convenience store chain Wawa are for sale on the dark web.  In late December last year, Wawa disclosed a major security breach whereby malware had been found on its payment processing servers.  An investigation revealed that the malware had been running at different […]

#Privacy: Sex cam platform exposes thousands of users identification documents

SextPanther, a US-based adult entertainment website has exposed more than 11,000 identity documents of its models.  The documents were stored on an exposed Amazon Web Services (AWS) storage bucket that had no password protection.  The bucket contained documents SextPanther used to verify the ages of models including passports, driver’s licenses and Social Security numbers. Much […]

#Privacy: Telecoms group given access to NHS medical records without patient consent

Birmingham and Solihull Mental Health NHS Foundation Trust have been handing over medical data to Telefonica without obtaining the consent of patients.  According to documents published last month under freedom of information laws, Telefonica, the Spanish group that trades as O2 in the UK, was given free access to a vast amount of medical records […]

#Privacy: Data breach exposes US cannabis users

THSuite, a point-of-sale system in the cannabis industry, has exposed the personally identifiable information (PII) of over 30,000 US Cannabis customers.  On December 24, 2019, the vpnMentor’s research team, led by privacy researchers Noam Rotem and Ran Locar, discovered an unsecured Amazon S3 bucket without any authentication or security online.  The database was identified as […]

#Privacy: EU mulls a five year ban on facial recognition tech

The European Union is considering temporarily banning the use of facial recognition technology in public areas for up to five years.  In an 18-page document seen by the BBC, The European Commission has outlined its plans to introduce new rules that will bolster existing regulations surrounding data and privacy rights.  “Building on these existing provisions, […]