ACI_Q2_Ads_battletested-728x90
ACI_Q2_Ads_successful-728x90
ACI_Q2_Ads_disaster-728x90
DPC15_300x250_ads_FINAL
PPC_CIPM_300x250.FINAL-01
PSR15_300x250_ads_FINAL

(May 27, 2015) Winning approval for both binding corporate rules (BCRs) and cross-border privacy rules (CBPRs) takes significant work. But to demonstrate compliance, many of the administrative hurdles are the same. That's why, as companies increasingly turn to BCRs and CBPRs as data transfer mechanisms, an EU/APEC working group has approved a plan for increased interoperability by making it easier for companies to comply with both BCRs and CBPRs all at once. “The idea is that organizations will be able to submit the single questionnaire to both EU DPAs, whose approval is needed for organizations to be granted BCRs, and to APEC Accountability Agents, whose approval is needed to be granted CBPRs,” Angelique Carson, CIPP/US, reports in this exclusive for The Privacy Advisor. Read More

Asia-Pacific Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

In Search of the 2015 Privacy Innovation Award Winners

(May 27, 2015) The call for nominees is now open for the 2015 HP-IAPP Privacy Innovation Awards, which recognize unique global privacy and data protection programs and services in both the private and public sectors, which got us thinking about our past winners. To gear up for this year’s selection, The Privacy Advisor is profiling some of the winners. In this feature, IAPP Publications Managing Editor Jennifer Saunders, CIPP/US, caught up with Vodafone Global Privacy Manager Amanda Chandler and Global Privacy Counsel Kasey Chappelle, CIPP/US, to talk about the 2012 Innovation Award-winning project, Vodafone Privacy Programme, where it is today and Vodafone’s future plans. Read More

Asia-Pacific Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Roundup: Germany, South Africa, Belgium, U.S. and More

(May 26, 2015) The latest proposed draft of Germany’s data retention legislation includes a provision for keeping the data in Germany, which some say may not sit well with U.S. tech firms. Meanwhile, Belgium has written a lengthy recommendation stating why it should be regulating Facebook, and EU ambassadors have agreed to a proposal that would create three levels of fines for violations of the data protection overhaul. Also in this week’s Privacy Tracker weekly legislative roundup, South Africa is taking steps to appoint an information regulator and newly proposed drone regulations may conflict with business uses, and you can read about updates on the 21st Century Cures bill, PCLOB and the USA PATRIOT Act as well as state actions in the U.S. (IAPP member login required.) Read More

Asia-Pacific Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Bad Guys Having a Field Day with Recent Breaches

(May 26, 2015) Brian Krebs reports on the underworld activity sparked by recent leaks of personal data from databases at Adult Friend Finder and mSpy. Rather than cash in via using stolen credentials, the play appears to be extortion and blackmail. With mSpy, a user’s iTunes username and password are necessary to load the program. Now, those who have access to the leaked credentials are remotely locking phones and “the only way to get their data back is to pay a ransom.” Similarly, while Adult Friend Finder di... Read More

Asia-Pacific Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

IoT-Connected Toy Patents Generate “Creepy” Tag

(May 26, 2015) A newly published patent detailing plans by Google for Internet-connected toys has generated concerns, CNBC reports. Such products would act as an “anthropomorphic device” in the form of a “doll or toy that resembles a human, an animal, a mythical creature or an inanimate object,” the patent states. One would be a teddy bear that could control Internet-of-Things devices within the home through voice command or gestures. A spokesperson for Big Brother Watch described “the creepiness of the produc... Read More

Asia-Pacific Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Researchers: “Leaky” Bluetooth Tech a Privacy Risk

(May 26, 2015) Many fitness trackers and smartphones use Bluetooth Low Energy technology (BLE) to communicate back and forth or with beacons in the environment. Some 90 percent of devices may use the tech by 2018. But, reports V3, researchers at security firm Context have found they can track specific devices using BLE within 100 meters. “The information could be used for social engineering as part of a planned cyber attack or for physical crime by knowing people’s movements,” Context’s Scott Lester said. Context has even created an app that scans, detects and logs wearable devices using BLE to show how easy it is to track the signals. Read More

Asia-Pacific Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Mozilla Moves to Browsing-Based Ad Tiles

(May 22, 2015) Mozilla has launched a new program that aims to combine advertisements based on users’ browsing histories while also protecting their privacy, TechCrunch reports. The “Suggested Tiles” program will allow an advertising service to see browsing histories to figure out users’ interests by comparing them to sets of URLs that align with certain categories. “With Suggested Tiles, we want to show the world that it is possible to do relevant advertising and content recommendations while still respecting... Read More

Asia-Pacific Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Bitcoin Releases Privacy Rating Report

(May 22, 2015) The Open Bitcoin Privacy Project (OBPP) has released what it’s calling the Spring 2015 Wallet Privacy Rating Report to assess the effectiveness of the top 10 most popular Bitcoin wallets in protecting users’ privacy, according to CoinReport. The wallets underwent 38 privacy tests that were grouped into five categories, and each test was assigned classifications in relation to usability, quality and feedback. Overall, Darkwallet ranked first among the major Bitcoin wallets and was the first to be “explicitly devoted to privacy as a primary design goal,” the report states. Armory ranked second, followed by Mycelium and Bitcoin Wallet. Read More

Asia-Pacific Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Notes from the IAPP Europe Managing Director, May 22, 2015

(May 21, 2015) Greetings from Brussels! Recently there have been a number of articles in the media related to the retention of metadata, which essentially refers to the retention of information concerning Internet and mobile phone usage. This is an important area of privacy development and also highly controversial. Only recently in Australia, both houses of Parliament voted in favor of legislation that obliges telecommunication companies and Internet service providers (ISPs) to store customers’ metadata&mda... Read More

Europe Data Protection Digest

After DAPIX’s Hard Work, GDPR Stage Is Set

(May 21, 2015) The road toward a revamped data protection mandate in the EU has been a long and arduous one, but this week news came out of Brussels that may inch the region-wide project closer to completion. DAPIX, the Data Protection and Information Exchange, held its last meeting on the General Data Protection Regulation under the current Latvian Presidency, writes Promontory’s John Bowman, CIPP/E, “in anticipation of a general approach agreement being reached on the text at the meeting of the Justice and Home Affairs Council on June 15-16.” In this post for Privacy Perspectives, Bowman discusses the latest news out of Brussels as well as the hard work of DAPIX members and the many other hands involved in creating what will surely be historic privacy legislation. Read More

Europe Data Protection Digest