HOME | Pepp-Pt
Pan-European Privacy-Preserving Proximity Tracing
(PEPP-PT) makes it possible to interrupt new chains of SARS-CoV-2 transmission rapidly and effectively by informing potentially exposed people. We are a large and inclusive European team. We provide standards, technology, and services to countries and developers.
coronavirus  covid19  tracing  privacy  dataprotection  proximity  tracking  health  Europe 
4 days ago
Coronavirus: Moscow rolls out patient-tracking app - BBC News
Its Social Monitoring app will initially be limited to citizens who have already tested positive for Covid-19 but not been kept in hospital.

It will request access to the user's calls, location, camera, storage, network information and other data. The intention is to check they do not leave their home while contagious.
covid19  surveillance  tracking  mobile  apps  Russia  monitoring 
4 days ago
Design Pattern: Safely Exporting Data - NCSC.GOV.UK
This guidance provides an architecture pattern which will help you to share data, while maintaining the security of your core networks and systems. 
security  cybersecurity  datasharing  datatransfer  databreach 
6 days ago
Keeping Each Other Safe When Virtually Organizing Mutual Aid | Electronic Frontier Foundation
There is great beauty and power in this support, but it also puts security concerns in the spotlight: overlooked privacy settings and overbroad collection of personal data can lead to the unintended disclosure of private information that can be used to harm the very people seeking help.
privacy  security  cybersecurity  guide  EFF  covid19 
6 days ago
#Zoom Class Action (US, San Jose) -
A federal class action claims Zoom Video Communications, wildly popular because of the Covid-19 pandemic, invades privacy by collecting personal information of its users and disclosing it to third parties, including Facebook.
zoom  classaction  privacy  covid19  US  legalaction  video 
6 days ago
Coronavirus: Govt set to release 'contact tracking' app which detects nearby virus carriers | Science & Tech News | Sky News
The app, which will operate on an opt-in basis, will be released either just before or just after the lockdown is lifted
covid19  tracking  health  privacy  dataprotection  NHS  app  innovation  mobile 
6 days ago
Marriott hit by second data breach exposing “up to” 5.2 million people
The breach, which began in mid-January 2020 and was discovered at the end of February 2020, saw contact details, including names, addresses, birth dates, gender, email addresses and telephone numbers exposed. Employer name, gender, room stay preferences and loyalty account numbers were also exposed.
databreach  Marriott  cybersecurity  security 
6 days ago
Zoom: Video chat used by Boris Johnson for cabinet meetings and offices across world dropped by Ministry of Defence over security concerns | The Independent
The Ministry of Defence is reportedly discouraging use of the video chat app Zoom over concerns about its security.

The ban comes as Boris Johnson uses the app to run cabinet meetings and offices across the country rely on it to bring together virtual meetings.
zoom  video  privacy  cybersecurity  security  dataprotection  government 
11 days ago
Cybersecurity Roundup: March 24, 2020 | Violet Blue on Patreon
#Zoom in on the fine print. Know the risks and make the best decisions you can for your situation (harm reduction; reducing harm as best you can while knowing the risks you’re taking)
privacy  cybersecurity  dataprotection  covid19  video  zoom  security 
12 days ago
What You Should Know About Online Tools During the COVID-19 Crisis | Electronic Frontier Foundation
Here are a few things you should know in order to make informed decisions about what works best for you and your communities, and ways you can use security and privacy best practices to protect yourself and others.
coronavirus  covid19  privacy  security  cybersecurity  dataprotection  apps  video  tools 
12 days ago
Zoom privacy: Your video conferences aren’t as private as you think
Zoom has seen a flood of new users as the #COVID-19 outbreak forces more and more employees to transition to working from home. Zoom’s big selling point is its near-frictionless video calls.

However, new users should be aware of the company’s privacy practices.
privacy  video  zoom  security  apps  cybersecurity  dataprotection  tracking 
12 days ago
Hackers Created Thousands of Coronavirus (#COVID-19) Related Sites As Bait
As the world comes to grips with the coronavirus pandemic, the situation has proven to be a blessing in disguise for threat actors, who've taken advantage of the opportunity to target victims with scams or malware campaigns.
security  covid19  malware  cybersecurity  scam 
14 days ago
Tracking the Global Response to #COVID-19 | Privacy International
Tech companies, governments, and international agencies have all announced measures to help contain the spread of the COVID-19 virus. Many of those measures are based on extraordinary powers, only to be used temporarily in emergencies. Others use exemptions in data protection laws to share data.It is essential to keep track of them. When the pandemic is over, such extraordinary measures must be put to an end and held to account.

This page will be updated as measures are reported.
privacy  dataprotection  rights  privacyinternational  research  covid19 
18 days ago
Gode råd om hjemmearbejde - Data protection advice for working at home
The Danish data protection authority have brought out some simple guidance for those now working at home due to #covid19.
denmark  security  privacy  dataprotection  advice  guidance 
18 days ago
DPA guidance on COVID-19
The IAPP has rounded up COVID-19 guidance published by data protection authorities around the world to date.
iapp  guidance  DPA  covid19  international  dataprotection  privacy 
18 days ago
US Senator outlines new Data Protection Agency to take on Big Tech - The Verge
Sen. Gillibrand’s Data Protection Act would found a new independent agency called the Data Protection Agency (DPA), tasked with protecting consumer data at large.
US  dataprotection  regulator  policy  consumerprotection  privacy 
25 days ago
Halt public use of facial recognition tech, says equality watchdog | UK news | The Guardian
Equalities and Human Rights Commission says mass AFR surveillance is discriminatory and stifles free expression.
facialrecognition  rights  privacy  equality  surveillance  freedomofspeech  EHRC  policing  technology 
25 days ago
Facial recognition technology ‘currently not fit for use’ by Police Scotland, MSPs conclude
“The sub-committee is reassured that Police Scotland have no plans to introduce live facial recognition technology at this time.

“It is clear that this technology is in no fit state to be rolled out or indeed to assist the police with their work.
policing  facialrecognition  Scotland  policy 
4 weeks ago
International airline fined £500,000 for failing to secure its customers’ personal data | ICO
Between October 2014 and May 2018 Cathay Pacific’s computer systems lacked appropriate security measures which led to customers’ personal details being exposed, 111,578 of whom were from the UK, and approximately 9.4 million more worldwide.
dataprotection  security  customerdata  ICO  enforcement  fine  UK  databreach  DPA  privacy  breach 
4 weeks ago
In Coronavirus Fight, China Gives Citizens a Color Code, With Red Flags - The New York Times
A New York Times analysis of the software’s code found that the system does more than decide in real time whether someone poses a contagion risk. It also appears to share information with the police, setting a template for new forms of automated social control that could persist long after the epidemic subsides.
dataprotection  privacy  coronavirus  health  surveillance  policing  China  datasharing 
5 weeks ago
Android malware can steal Google Authenticator 2FA codes | ZDNet
A new version of the "Cerberus" Android banking trojan will be able to steal one-time codes generated by the Google Authenticator app and bypass 2FA-protected accounts.
security  cybersecurity  android  google  2FA  hacking  malware 
5 weeks ago
Civil Society Organizations and General Data Protection Regulation Compliance - Open Society Foundations
a new report from the Open Society Information Program, looks specifically at the ways that the world’s most comprehensive data privacy law impacts nongovernmental organizations.

It examines, in practical terms, what these kind of organizations have done to comply with the law. It also presents research showing ways that governments, businesses, and some powerful individuals have tried—so far unsuccessfully—to use the law to prevent these organizations from pursuing public interest research and reporting.

Finally, the report provides a best practices guide that can be used to ensure compliance and limit risk.
compliance  report  research  GDPR  guide  charities  civicsociety  ngo 
5 weeks ago
Sports Giant Decathlon Leaks 123 Million Records - Infosecurity Magazine
A team at vpnMentor uncovered the 9GB database on an unsecured Elasticsearch server. It contained information from Decathlon’s Spanish, and potentially also its UK, businesses.
Spain  UK  databreach  Decathlon  example  security 
5 weeks ago
NGOs embrace GDPR, but will it be used against them? – Responsible Data
GDPR compliance is an integral part of organisational resilience, and it requires resources and attention from NGO leaders, foundations and regulators to defend their organisations against attempts by governments and corporations to misuse the GDPR against them.
NGO  charities  GDPR  campaigning  compliance  implementation 
5 weeks ago
Experts react to Google's Brexit-driven decision to move UK data to the US - Business Insider
UK users remain protected by Europe's strict privacy rules for now, even if their data is legally owned by a US entity. It does, however, raise the spectre of reduced privacy in future if a post-Brexit UK alters its laws to become less privacy-oriented.
google  regulation  GDPR  DPA2018  datatransfer  dataprotection  UK  adequacy 
6 weeks ago
First full version of the Cyber Security Body of Knowledge published - NCSC.GOV.UK
This is a comprehensive Body of Knowledge to inform and underpin education and professional training for the cyber security sector, a culmination of international cyber security effort over the last 3 years.
cybersecurity  security  research  guide  guidance  technology  book  NCSC 
6 weeks ago
EU industry chief tells Facebook to adapt to EU, not other way round - Reuters
BRUSSELS (Reuters) - EU industry commissioner Thierry Breton said on Monday it was for Facebook to adapt to Europe’s standards, not the other way round, as he criticized the U.S. social media giant’s proposed internet rules as insufficient.
facebook  regulation  EU 
6 weeks ago
WordPress users: Improper Access Controls in WordPress GDPR Cookie Consent Plugin
The WordPress GDPR Cookie Consent plugin currently has 700,000 active installs. Earlier this week, the plugin was closed “pending a full review” according to the plugin’s page in the directory. The following post describes how improper access controls lead to a stored cross-site scripting vulnerability in the GDPR Cookie Consent plugin that emerged after it was removed from the repository.
consent  wordpress  plugin  GDPR 
7 weeks ago
Councils let firms track visits to webpages on benefits and disability | Technology | The Guardian
Councils are sharing information about users of their websites – including when they seek help with a benefit claim, or with a disability or alcoholism – with dozens of private companies.
cookies  tracking  advertising  surveillance  council  research  UK 
8 weeks ago
The New Humanitarian | EXCLUSIVE: The hack the UN tried to keep under wraps
A leaked internal document revealed the hackers compromised at least a dozen servers belonging to the UN, including servers of the Office of the High Commissioner for Human Rights, which collects sensitive data
hacking  UN  databreach  humanrights  disclosure  personaldata 
8 weeks ago
« earlier      
access accountability adblocking adequacy adtech advertising advice advocacy ai airbnb alexa algorithms amazon analysis analytics android anonymisation anonymity antitrust apis app apple apps assessment auditing automateddecisionmaking automation awareness aws ba banking bbc behaviour belgium biometrics blockchain book brave breach brexit browsers bt business businessmodels california cambridgeanalytica camera campaigning cars cctv charities children china chrome cjeu cnil communications complaints compliance conference confidentiality consent consultation consumerprotection content cookies copyright coronavirus corporateresponsibility council courtdecision covid19 creativecommons crime culture cybersecurity data databreach databroker datacollection dataethics dataminimisation dataportability dataprotection dataprotectionbydesign dataretention datascience datasharing datatransfer dcms deepfake deletion democracy design developers differentialprivacy digitalrights disclosure disinformation dna dpa dpa2018 dpia drones ecj edpb education eea eff elasticsearch email encryption enforcement eprivacy equality equifax erasure ethics eu europe europeancommission event example facebook facerecognition facialrecognition fbi fcc fine frameworks france fraud freedomofspeech ftc fundraising games gdpr ge2019 gentics germany gmail google governance government grindr guidance guide hack hacking harvesting health healthcare hmrc hotel humanrights iab ibm icann ico identity idpc image_recognition india inference innovation instagram international internet investigation iot iphone ireland iso israel italy japan judgement jurisdiction labourparty law lawenforcement lawsuit legalaction legalcase legislation linkedin locationdata machinelearning mailchimp malware marketing marriott maxschrems medicalrecords medicine messaging microsoft mobile monitoring ncsc nest netherlands ngo nhs norway nyc openrights opensource opinion palantir paper parliament passwords pecr personaldata photography pias poland police policies policing policy politics principles privacy privacybydesign privacyinternational privacyshield processing products profiling proposal prosecution prototypes publicbody publishing ransomware realtimebidding records rectification regulation regulator report research resources responsibledisclosure retention review rights righttobeforgotten righttorectification rigthtobeforgotten ring ruling russia samsung sar scam schrems scotland search security siliconvalley siri skype smart snapchat socialmedia software spain spam specialcategory spying spyware staffdata standards statistics strategy study subjectaccessrequests surveillance survey targeting tax technology telephone thirdparties tiktok tinder tool tools toys tracking training transparency transport trust tvs twitter uber uk us userexperience ux video voice voicerecognition vpn vulnerability whatsapp whistleblowing whois windows wordpress yahoo zoom

Copy this bookmark: