Articles about GDPR

Facebook has been hit with renewed criticism of its privacy policies in recent weeks in the wake of the Cambridge Analytica scandal. Having promised to give users more control over their privacy settings -- and after already introducing some tools to this end -- the social network has now revealed how it will comply with General Data Protection Regulation (GDPR) in Europe and bring new "privacy protection" to users around the world.

With the impending arrival of GDPR, it had previously been thought that European Facebook users would have greater privacy controls than those in other parts of the world. But the company then revealed that GDPR-style privacy controls would actually be made available to everyone. Today, Facebook makes good on that promise, starting the rollout of new privacy settings in Europe and then around the globe.

Continue reading →

A new survey reveals that 60 percent of companies are not likely to meet the May 25 deadline for compliance with the new European GDPR legislation.

The study from Crowd Research Partners shows only seven percent of surveyed organizations say they are in full compliance with GDPR requirements today, and 33 percent state they are well on their way to the compliance deadline.

Continue reading →

If you're a user of Facebook Messenger and you're in Europe, you may well notice a message popping up suggesting that you check your privacy settings. The reminder comes ahead of the new GDPR laws which come into force next month.

The message tells Messenger users to check their privacy settings by May 25. The date is significant, as this is when GDPR kicks in. While the laws apply to Europe, Facebook has already indicated that it will comply with them around the world.

Continue reading →

The recent privacy scandal involving Cambridge Analytica and Facebook data has focused attention on personal data on social networks. With the impending arrival of GDPR in Europe and the requirement for data portability, Facebook-owned Instagram is planning to make it possible for users to download all of their data.

With Zuckerberg facing questions in Congress about Facebook's competition, the timing of this revelation is interesting. With the ability to easily download the content of their Instagram accounts, users will be able to more easily move to alternative services.

Continue reading →

Mark Zuckerberg has laid out Facebook's plans for the future in a conference call with reporters. In it, he said that the social network now planned to bring GDPR-style privacy controls to all of its users, not just those in Europe for whom there will soon be a legal obligation to do so. The new legislation grants people more rights to access the data companies store about them, and demand it be deleted.

The Facebook chief had previously said that non-European users would only be getting access to new options that were "in [the] spirit" of GDPR, but the backlash the social network has faced recently with privacy controversies seems to have forced Zuckerberg's hand.

Continue reading →

In a few weeks, privacy is set to improve for Facebook users -- at least this is the case for people in Europe. May 25 sees the implementation of General Data Protection Regulation (GDPR), and it means that European users will have the right to not only request details of the information stored about them, but also the right to demand its deletion.

While this will be a legal obligation within Europe, it would have been the perfect opportunity for Facebook to extend the same rights to its users around the world. But it's not going to. Mark Zuckerberg has confirmed that GDPR-style privacy protection is not going to be extended to the US and other parts of the world.

Continue reading →

Lax policies and a lack of control is giving far too many employees access to sensitive data according to the latest Global Data Risk Report from data security specialist Varonis.

The report, based on analysis of Data Risk Assessments conducted by Varonis in 2017 for customers and potential customers on their file systems, uncovers some startling figures, with 58 percent of organizations found to have more than 100,000 folders open to all employees.

Continue reading →

With GDPR coming into effect on 25th May, many organizations will find themselves needing to appoint a data protection officer in order to comply.

But appointing full-time compliance staff can be a difficult and costly exercise. Which is why cyber security company ThinkMarble is launching a Virtual Data Protection Officer (VDPO) service.

Continue reading →

One of the key planks of the upcoming GDPR legislation is the right to removal of personal data, the so-called, 'right to be forgotten'.

But a new study from big data application provider Solix Technologies reveals that 65 percent of organizations are unsure if an individual's personal information can be purged from all their systems.

Continue reading →

For enterprises to comply with GDPR it's vital that they have an understanding of where personal data is located in each of their systems.

Metadata discovery specialist Silwood Technology is releasing research into five of the largest and most widely used application packages to understand the scale of the challenge encountered by their customers when locating personal data.

Continue reading →

GDPR is only a few months away, and a lot of the coverage has focused on the impact the regulation will have on the IT and finance departments in businesses. Whilst it’s true that GDPR compliance should be driven largely by finance and IT departments, there’s more to it than that.

One area where there’s little clarity is whether businesses are required to hire more staff. The Data Protection Officer (DPO) role is covered in the regulation document, but many argue it’s unclear whether this is necessary for their business; Privacy International comments that the bill is "unnecessarily complex".

Continue reading →

With GDPR coming into force in May this year, companies are preparing themselves to comply with the new legislation, in particular putting in place procedures to deal with data breaches.

But some, like Uber -- who have suffered a breach in the past and covered it up -- may well be wondering whether it’s better to disclose these events now rather than risk them leaking out once GDPR is in force.

Continue reading →

With the EU's GDPR legislation coming into force in a few months, and new and potentially tougher legislation on data breaches planned in the US, a new study reveals that many enterprises are under prepared.

The report from integrity assurance company Tripwire shows that less than a fifth (18 percent) say that they are fully prepared with a process in place to notify consumers in the event of a data breach. The majority (73 percent) say they are 'somewhat prepared' and would have to figure things out 'on the fly.'

Continue reading →

Facebook has published its privacy principles for the first time, ahead of the European Union's general data protection regulation (GDPR) which comes into force on May 25 -- although the company is pitching it as being part of Data Privacy Day.

On top of this, the social network has also detailed plans to use videos to educate its users about privacy. The videos will explain how to control who has access to personal data, as well as how to manage the data Facebook uses to control the ads it shows users.

Continue reading →

The arrival of GDPR is set to impact on many aspects of commercial operation, not least email. But what about old emails that are stored or archived?

We spoke to Marc French, chief trust officer at cloud email specialist Mimecast to find out more about GDPR and an aspect that organizations may have overlooked.

Continue reading →