December 3, 2024 at 08:39AM Researchers warn that the GDPR’s data portability regulations, while promoting privacy, pose significant risks. Users can now easily export sensitive data, making it vulnerable to hackers. The risk extends to companies, as compromised personal accounts can lead to cyberattacks. Employees must separate personal and professional online activities to enhance security. … Read more
October 30, 2024 at 07:54AM Intruder simplifies compliance with frameworks like ISO 27001, SOC 2, and GDPR through continuous vulnerability scanning, automated reporting, and active system monitoring. By providing comprehensive protection and audit-ready reports, Intruder aids organizations in meeting security requirements efficiently, making the compliance journey less daunting and more manageable. ### Meeting Takeaways – … Read more
October 25, 2024 at 05:31PM On October 24, LinkedIn was fined €310 million by EU regulators for violating GDPR data privacy rules. The Data Protection Commission found LinkedIn unlawfully processed user data for targeted advertising. Despite asserting compliance, LinkedIn will work to align its practices with regulations following this reprimand and order for compliance. ### … Read more
October 7, 2024 at 04:40AM British people express apathy towards the inundation of online cookie and data permission requests. Though aware of the risk, many succumb to the convenience of accepting cookies. Privacy regulations like the EU cookie law and GDPR attempt to protect users, but businesses find ways to circumvent them. Standardized APIs could … Read more
October 7, 2024 at 02:48AM Europe’s top court has ruled that Meta Platforms must limit the use of personal data from Facebook for targeted ads, even with user consent, to comply with GDPR. The case, filed by privacy activist Max Schrems, highlighted the importance of data minimization. The decision also impacts other online ad companies. … Read more
September 30, 2024 at 02:54AM The Irish Data Protection Commission fined Meta €91 million for a security lapse, violating GDPR. Meta stored users’ passwords in plaintext, leading to exposure and potential abuse. The incident affected Facebook and Instagram passwords, prompting prompt DPC notification and technical measures. Meta took immediate action and proactively informed the DPC. … Read more
September 12, 2024 at 08:24AM Ireland’s Data Protection Commission (DPC) has initiated a cross-border inquiry into Google’s AI model to ensure compliance with EU regulations. The focus is on Google’s Data Protection Impact Assessment (DPIA) and its processing of personal data under the General Data Protection Regulation (GDPR). This reflects broader efforts by EU and … Read more
September 4, 2024 at 05:18AM The Dutch Data Protection Authority has fined Clearview AI €30.5 million for violating the GDPR by creating an “illegal database” of billions of facial photos without consent. Clearview faces further penalties if it doesn’t cease violations. The company claims it isn’t subject to EU regulations, but the Dutch DPA is … Read more
September 3, 2024 at 10:18AM The Netherlands’ Data Protection Agency fined Clearview AI 30.5 million euros for creating an “illegal database” of billions of photos without sufficient consent. Clearview’s chief legal officer contested the decision, claiming it falls outside EU data protection regulations. The company faces further penalties if it continues to breach regulations. Clearview … Read more
August 26, 2024 at 11:36AM The Dutch DPA fined Uber €290 million for failing to comply with E.U. data protection laws by transferring sensitive driver data to the U.S. Uber collected and stored a range of personal driver information on U.S. servers without adequate protection. Uber contested the decision, claiming their actions were GDPR-compliant. Earlier, … Read more