ACI-001 Online Ad Campaign r7_response 728x90
ACI-001 Online Ad Campaign r7_CPO 728x90_15_05_04
CS15_300x250_Banner_FINAL
Certification_CIPT_300x250final-01

(May 6, 2015) The first step to mitigate the risk of data breaches through third-party vendors is to have an effective vendor-management program. It's the best way to ensure that your vendors are doing their jobs correctly—understanding, of course, that one can delegate responsibility but not accountability. In this ongoing series for The Privacy Advisor, K Royal, CIPP/E, CIPP/US, offers tips on how best to avoid a breach via your vendor. “Breaches will happen,” Royal writes, noting if they should happen through a third-party vendor, your organization will want to “have a partner you can rely upon and not an adversary or an unknown.” Missed earlier chapters? Find them in the IAPP Resource Center. Read More

Daily Dashboard

Digital Single Market Plans Unveiled

(May 6, 2015) The EU has unveiled plans for a strategic Digital Single Market to help boost the region’s economy, better compete with U.S. technology firms and help “home-grown” start-ups, The Wall Street Journal reports. The 16 initiatives include reorganization of telecoms, cybersecurity and privacy. GE CEO Jeffrey Immelt said the single market “is a big deal” that “will add tremendously to competitiveness in the long term,” but critics caution Brussels may be putting “government officials in charge of how ... Read More

Daily Dashboard

New: Search the Resource Center

(May 6, 2015) Remember the last time you went to the IAPP’s online Resource Center and couldn’t find what you were looking for? We do too. And that’s why we have added a filtered search function. Looking for tools to help you with a data breach but not quite sure what you need? You can now home in on what you’re looking for by going to the tools page and clicking on the filter for data loss. Voila! A host of helpful resources right in front of your eyes. Browse away. Looking for a study on the Internet of Things? We’ve got you covered on the research page. Wait, what? We don’t have you covered? Email us, and we’ll find what you need. Read More

Daily Dashboard

Wickr Announces Privacy Initiative; AVG Acquires Privax

(May 6, 2015) Online private-messaging service Wickr has announced it is splitting in two, The New York Times reports. Mark Fields will take over as chief executive of the for-profit wing, allowing Wickr Cofounder Nico Sell to lead its new nonprofit initiative. The Wickr Foundation aims to promote privacy and share online communication best practices with teenagers, dissidents, journalists and human rights activists. Fields said he plans to bring Wickr’s core technology to more businesses, the report states. ... Read More

Daily Dashboard

Could Geofencing Be a BYOD Data Security Solution?

(May 6, 2015) In a column for SC Magazine, CoSoSys Founder and CEO Roman Foeckl discusses geofencing as the next generation data security solution. By including geofencing in a larger data protection regime, he argues, organizations can control device access as well as the apps on those devices, keep information within a given geographical territory and prevent unwanted data from getting within the geofenced perimeter. It could also help solve some bring-your-own-device security issues when combined with mobile device management (MDM). The combination of an organization-wide digital strategy, geofencing and MDM “sharply reduces the risk presented by employee-owned devices,” writes Foeckl, adding, “MDM is your insurance policy, but geofencing is your offensive strategy.” Read More

Daily Dashboard

Facebook Escapes DPA’s Fines for Now

(May 6, 2015) Facebook has temporarily escaped daily fines over its revamped policy for users’ photos and data, Bloomberg reports. The Dutch Data Protection Authority (DPA) said Wednesday it lifted the threat of combined penalties totaling as much as 750,000 euros, the report states, “after Facebook agreed to provide information needed to weigh the next steps in the investigation announced in December.” The DPA stepped in last year after Facebook alerted users of changes to its policy in which it claimed the right to use their information and images for commercial purposes. The DPA sought a suspension of Facebook’s new policy pending an investigation or said it would face fines, and Facebook opted to go to court over the dispute. Read More

Daily Dashboard

AHA: Privacy Rules Potential Deterrent To Telehealth Adoption

(May 6, 2015) A report by the American Hospital Association (AHA) says health privacy regulations are one of the potential deterrents to telehealth adoption, HealthIT Security reports. “As telehealth utilization expands, however, myriad significant federal and state legal and regulatory issues will determine whether and how hospitals, health systems and other providers can offer specific telehealth services,” the AHA said. While telehealth technologies can create new electronic health information, they can al... Read More

Daily Dashboard

Lower House Approves Expanded Surveillance Powers

(May 6, 2015) The lower house of the French Parliament has overwhelmingly approved surveillance measures “that could give the authorities their most intrusive domestic spying abilities ever, with almost no judicial oversight,” The New York Times reports. The bill now moves to the upper chamber, where it is also expected to pass. Prime Minister Manuel Valls said, “The last intelligence law was done in 1991, when there were neither cell phones nor Internet.” The bill allows intelligence authorities access to ce... Read More

Daily Dashboard

Court Reverses Landmark Cell-Phone Privacy Decision

(May 6, 2015) A U.S. Circuit court has reversed a landmark privacy decision, Wired reports. Last year, the court ruled against the government in a case involving Quartavious Davis, whose cell phone was tracked by police as he went on a crime spree. But in a decision published Tuesday, a panel of 11th Circuit Court judges overturned the ruling in U.S. v. Davis. The new ruling says that because Davis’s phone location data wasn’t his property but that of the phone carrier, he had no expectation of privacy and the police who were tracking him didn’t need a warrant. “It’s a huge setback as compared to the decision it vacated,” said one law professor. Read More

Daily Dashboard

Judge Dismisses eBay Class-Action; Hospital Hacked

(May 6, 2015) A federal judge has dismissed a class-action lawsuit filed against eBay following a 2014 data breach exposing encrypted passwords and personal information for 145 users, GovInfoSecurity reports. The suit alleged the breach resulted in economic damages for eBay users, including potential identity theft, but experts say plaintiffs would have had to prove actual or threatened injury to have been successful. Meanwhile, Massachusetts-based Partners HealthCare System is being criticized for allowing e... Read More

Daily Dashboard