ACI_Q2_Ads_successful-728x90
ACI_Q2_Ads_disaster-728x90
ACI_Q2_Ads_battletested-728x90

Certification_CIPT_300x250final-01
PrivacyTraining_ad300x250.Promo1-01

(May 21, 2015) The government has expanded access to metadata being held under recently passed data retention laws with the introduction of a new bill. This new legislation establishing the Australian Border Force also includes an amendment to the Telecommunications (Interception and Access) Act giving the Immigration and Border Protection Department access to metadata, reports CNet. Greens Sen. Scott Ludlam criticized the move in front of the Senate, saying there has been “a great show of narrowing the range of agencies that would be able to access this collected material, and here we are in Parliament, on the very next sitting week after that mandatory data retention bill passed, and the first example of scope creep lies on the table." Read More

Asia-Pacific Dashboard Digest

Company Must Pay $25K After Case-Not-Closed Data-Sharing

(May 21, 2015) Cable company Orcon’s decision to send a customer’s disputed debt to a debt collector before the matter was closed was a breach of the individual’s personal privacy, New Zealand’s Human Rights Review Tribunal ruled. Now the company owes the customer $25,000 in damages and must undergo privacy training in line with the country’s Privacy Act, Stuff.co.nz reports. "In view of the seemingly complete failure by Orcon to evidence an understanding of its obligations under the information privacy principles, it is our view a training order is necessary," the tribunal said. Privacy Commissioner John Edwards said "companies have a very high duty to check they are not in error because there can be profound consequences for the individual if they get it wrong.” Read More

Asia-Pacific Dashboard Digest

Alibaba Partners with Agencies

(May 21, 2015) Alibaba, a Chinese e-commerce company, is coupling its vast cache of behavior-specific consumer data with advertisers’ brand knowledge and their own user data in what Advertising Age describes as an effort to ensure better customer service and a competitive edge. The marketing side of the company, dubbed Alimama, spearheads the initiative. “There's nothing comparable in the West in terms of breadth and scope,” said OgilvyOne China President Jacco ter Schegget. “You're able to follow a user journey in its entire path to purchase, which is very interesting. That completeness, that quality, I cannot get elsewhere." Read More

Asia-Pacific Dashboard Digest

Phone-Monitoring Apps Abound in South Korea; PCPD Shares Online Safety Concerns in Hong Kong

(May 21, 2015) Phone-monitoring apps for parents are flourishing in South Korea, the Associated Press reports, using the example of Smart Sheriff, which allows parents to monitor what their children text, how long they play on certain games and what they search for on the Internet. While this particular monitoring app is certainly popular, detractors cite major privacy issues. "They rob the rights of Internet users," one parent said. Meanwhile, in Hong Kong, the Office of the Privacy Commissioner for Personal ... Read More

Asia-Pacific Dashboard Digest

Telstra Acquires Pacnet, Realizes It’s Been Breached

(May 21, 2015) In a media call Wednesday, Telstra revealed it had been informed shortly after its acquisition of data-center supplier Pacnet that a third-party had gained access to Pacnet’s corporate IT network, Mashable reports. Telstra said the Australian Federal Police (AFP), which is a Pacnet customer, has been informed of the breach, but it’s unknown whether police data had been taken. “The AFP has been advised that the breach was confined to the business operating network of Pacnet, therefore it assessed that no secure or classified material has been compromised,” said an AFP spokesperson. Read More

Asia-Pacific Dashboard Digest

Woman’s Privacy Breach Claim Rejected; Gov’t Workers Warned on Yammer

(May 21, 2015) The Victorian Civil and Administrative Tribunal (VCAT) says there was “no breach” of a woman’s privacy after her employer conducted an investigation on her based on posts she made that were shared on a colleague’s Facebook page. Transport Safety Victoria gave Laura Jurecek a “final warning” after the Facebook dispute, but Jurecek made a claim to the VCAT that the Facebook chats her colleague had shared were “personal information.” Meanwhile, Queensland’s Office of the Information Commissioner has warned public servants that use of the Yammer private social network could land them in trouble with the state’s Privacy Act. Read More

Asia-Pacific Dashboard Digest

Uber Ups the Privacy Ante with New Hires

(May 21, 2015) Sabrina Ross, CIPP/US, formerly of Apple, is joining Uber’s privacy team in the midst of the company’s initiative to improve its privacy processes. “At Uber, she’ll specifically work on privacy aspects of regulatory and policy issues. She’ll also be reviewing the privacy practices of Uber’s partnerships with companies like Spotify, Starwood and American Express,” Re/Code reports. Ross will be joining the likes of Chief Security Officer Joe Sullivan and Managing Counsel Katherine Tassi, who previously served as Facebook’s head of data protection. The focus on privacy has, according to an Uber report, resulted in improvements. “Uber has dedicated significantly more resources to privacy than we have observed of other companies of its age, sector and size,” the review said. Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Choosing the Best File-Sharing Option for Your Org

(May 19, 2015) “Not all file-sharing solutions are created equal,” writes HoGo CEO Hiro Kataoka. But, he adds, “Understanding the context in which an organization intends to use file-sharing technology is just the first step. It’s also important to weigh risk against the primary features of both on-premises and cloud-based file-sharing systems.” In this post for Privacy Tech, Kataoka explores the pros and cons of both solutions and describes the coming hybridization and the promise it will hold for protecting and sharing valuable enterprise data. Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Microsoft Unveils Lockbox-Style Technology; Dropbox Certifies Under ISO Standard

(May 19, 2015) Microsoft’s research arm has announced a new technology that aims to protect cloud workloads, eWeek reports. Last year, Microsoft announced its lockbox approach to safeguarding cloud data, which puts the customers in complete control of their data and requires consent before even Microsoft administrators can access it. The newly revealed Verifiable Confidential Cloud Computing technology takes a similar approach. Meanwhile, Dropbox has announced it has achieved certification for ISO 27018. “We s... Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

System Aims To Produce Fake Passwords In Hacked Databases

(May 19, 2015) Researchers have created a data protection system that would make it more difficult for hackers to obtain passwords from leaked databases, CIO reports. In a research paper submitted for consideration at the 2015 Annual Computer Security Applications Conference, the team of researchers unveiled ErsatzPasswords, which misleads hackers using brute force attacks to unlock hashed passwords. Purdue University’s Mohammed Almeshelkah said adversaries “will still be able to crack that file; however, the passwords they will get back are fake passwords or decoy passwords.” ErsatzPasswords adds an additional step to passwords when they are encrypted, making it impossible to restore them to the original plain-text form. Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest