Data Protection News Roundup – 9th October 2018

The Data Guardians is delighted to announce its partnership with 123DPO who provide specialist support for GDPR365, a cloud-based hub that makes it simple for organisations to attain, maintain and demonstrate compliance with the GDPR and Data Protection laws. Read more about how this benefits our clients and how you can get a free trial here.


Who’s getting it wrong?

Heathrow Airport has been fined £120,000 by the ICO for “serious” data protection failings after a staff member lost a USB stick last October containing “sensitive personal data”, which was later found by a member of the public. Read more here.

The ICO has fined marketing company Boost Finance Ltd for sending more than 4 million nuisance emails about pre-paid funeral plans. Read more here.


Other News

The UK National Cyber Security Centre has identified a campaign by the GRU, the Russian military intelligence service, of cyber attacks targeting political institutions, businesses, media and sport. They have been conducted in violation of international law and affected citizens in a large number of countries and cost national economies millions of pounds. Read more here.

Google’s parent company Alphabet Inc will shut down the consumer version of Google+ and tighten its data sharing policies after it was announced that the private profile data of at least 500,000 users may have been exposed to hundreds of external developers. The issue was discovered and patched in March after an internal review found that no developers exploited the vulnerability. According to the Wall Street Journal Google also opted not to disclose the security issues due to fears or regulatory scrutiny. Google responded by saying that none of the thresholds it requires to disclose a breach were met. Read more here.

According to research by moneyguru on the Dark Web you can buy the majority of someone’s online life for £744.30. This includes credit and debit cards details, online banking details and PayPal account information for £619.40. According to ONS data, in 25% of fraud cases the amount stolen can vary from £500-£40,000. Read more here.

Google has proposed new data protection legislation in the US that would include similar measures to those in the GDPR. Read more here.

The French Data Protection Authority has published the first results of its assessment of the implementation of the GDPR in France and Europe. The CNIL noted that 24,500 organisations have appointed a Data Protection Officer since 25thMay, which represents 13,000 DPOs. This compares to 5,000 DPOs appointed under the previous data protection framework. Read more here.

The High Court has blocked a case to sue Google for allegedly unlawfully taking data from 4.4 million UK iPhone users. The case sought compensation for people whose handsets were tracked by Google for several months in 2011 and 2012. Read more here.

The ICO has apologised to STS Commercial Ltd following its appeal of a fine the ICO imposed in July.  Read more here.

The ICO has been awarded funding from DCMS to establish a Regulators’ Business and Privacy Innovation Hub which will provide expert support to businesses in information privacy and data protection. Read more here.

Leave a reply

You must be logged in to post a comment.