Privacy

Data privacy is a growing concern and a number of countries including Germany, France and Russia have recently adopted new data protection regulations to protect their citizens' information.

Add in regulations like HIPAA and FINRA in the US and it's clear that businesses need to have an infrastructure to meet the various requirements or face possible legal consequences.

There are many things that Facebook finds itself accused of on a regular basis. Unfairness to different groups, censorship of content, insensitivity, and endless problems surrounding its attitude to privacy and handling of user data. It seems that concerns about privacy were well-founded as a new report finds that the social network violated European law. Analysis carried out by the Belgian Privacy Commission and ICRI/CIR says that Facebook breaks the law in Europe in a number of ways. As well as placing too many expectations on users to be able to change settings for themselves.

Facebook is also accused of failing to give people the ability opt out of certain privacy-invading features. Back in January, Facebook made some changes to its privacy policies and also introduced simplified documentation. The report found that rather than cleaning up its act, Facebook merely highlighted some of its old, existing practices. The social network is criticized for its "complex web of settings", for failing to explain what is meant when users are told that their data will be used "for advertising purposes", and for not allowing people to opt out of Sponsored Stories and location sharing.

Few weeks go by without Google coming under fire for some privacy-related misdemeanor or other. In Italy, however, the search giant has just agreed to comply with measures put in place by the Data Protection Authority. Moreover, the company will be subjected to regular audits to make sure that everything is in order.

Google is required to make improvements not only to privacy notices for its various services, but also obtain consent from users to use their data in research and profiling. The right-to-be forgotten also rears its head again as the authority requires Google to investigate individuals' requests for search listing removals.

In mid-2013, Edward Snowden revealed that the government-backed agency NSA monitored everything happening on the Internet, including spying on individuals' phone calls, messaging, and emails to glean information and pinpoint suspicious activities in an attempt to stop the growing terrorist acts.

Since the revelations -- which changed everyone's perspective on privacy -- the leaked information from Snowden and acceptance from major technology companies have given us an understanding of how the NSA managed to get our data from the services we heavily rely on. Essentially, either providers agreed to turn over our data or the NSA found another way, a backdoor, to obtain it. But how it manage to tap our phone calls was mostly unclear. Last year, Vodafone did acknowledge that it allowed the NSA to place surveillance tools inside its data centers. But as it turns out, the agency had more ways to log our phone activities.

In a new twist to the on-going NSA story, security firm Kaspersky Lab has discovered that a threat actor of previously unknown complexity and sophistication has been embedding surveillance software on hard drives produced by a number of well-known manufacturers. With names such as Western Digital, Seagate and Toshiba mentioned, and the reach of the spy program stretching to dozens of countries, it's not clear quite how many people may be affected.

Although Kapersky does not go as far as naming the NSA, or even specifying which country is responsible for the advanced surveillance, it seems that the spying campaign is somehow related to Stuxnet -- the tool used by the NSA to attack Iran -- and the Flame group.

The gradual push of just about everything to the cloud means that security and privacy are of greater concern than ever before. This is true for everyone who makes use of cloud services like OneDrive and Azure, but it is of particular interest to enterprise customers.

Today Microsoft has become the first major cloud service provider to adopt ISO/IEC 27018, the world’s first international standard for cloud privacy. The idea is to ensure that there is a global standard that determines how personal data privacy is handled in the cloud. The standard equips people with a number of assurances.

The Investigatory Powers Tribunal (IPT) ruling that GCHQ’s access to information intercepted by the NSA breached human rights laws is feeding a growing and increasingly heated global debate regarding the whole issue of digital privacy.

Earlier this month, the tribunal held that the British intelligence and security agency had been in breach of articles 8 and 10 of the European Convention on Human Rights, referring to the right to private family life and to freedom of expression. But hard on the heels of the UK ruling came news that the US government is creating a dedicated agency to monitor cybersecurity threats, pooling and analyzing information across a spectrum of risks. The Cyber Threat Intelligence Integration Center (CTIIC)’s mission will be to 'connect the dots' between various sources of intelligence.

Have you prepared for the day you die? Let people know if you want to be stuck in a hole in the ground, cremated and scattered in an awkward place, or just left at the side of the road to be picked at by passing foxes? While you may have considered what happens to your lifeless meatsack and your worldly belongings, what about things in the digital realm?

Facebook has just taken a step that will make it easier for a designated loved one to take control of your account. Your 'legacy contact' will be able to set up a memorial to you and download your account archive.

It probably hasn't escaped your notice that today (10 February) is Safer Internet Day. This is intended to promote safer and more responsible use of online technology and mobile phones, especially amongst children and young people.

Online advice site Knowthenet.org.uk -- operated by the Nominet domain registry -- has published some new research looking at the attitudes of parents to their children's use of social media and finds that whilst it has a generally good effect there's still a need for caution.

A secret UK court has ruled that the UK's intelligence agency GCHQ acted unlawfully by intercepting information gathered by the NSA. Investigatory Powers Tribunal said that because the rules surrounding the UK’s access to the NSA's PRISM and UPSTREAM program data were secret, data sharing between the US and UK was illegal. A case has been brought against GCHQ by Privacy International, Bytes for All, Liberty, and Amnesty International.

But while the IPT said that accessing this information breached human rights laws this is no longer the case. Why? The illegality of sharing data collected through these surveillance programs centered on the very fact that they were secret. In blowing the whistle about what the NSA was doing, Edward Snowden unwittingly made this data sharing legal. Whoops.

Many of the things we do online require an ID and password, but typically whilst this makes things easier for the site it doesn't always do a lot to protect the user, who may be revealing more information than they need.

For example you may have to reveal your full date of birth and address to a video streaming service in order to verify your age and region, running a risk that the information may fall into the wrong hands.

A new global study conducted by Microsoft across 12,000 people shows that most internet users still don't believe they're aware of all the data that's being collected about them.

For example, Facebook, Twitter and Google+ know you've read this page, as they track your visits to any website with a 'Like', 'Tweet' or '+1' button, whether you click that button or not. Information gathered can include anything from your IP address and general geography, to insights into your age, gender, income, hobbies, health status and financial situation, by way of your browsing and purchase history.

The UK government has been trying to impose new surveillance laws on the internet at large, but for the past four years privacy activists have thwarted attempts by Labour and the Conservatives.

In a recent push, the government secretly added 18-pages to the Counter-Terrorism and Security Bill (CTSB), including a mirror image of the Communications Data Bill, rejected in 2012 for the potential of national surveillance on every person.

There was a time when Kim Dotcom was hardly out of the news, but it's been a little quieter for him of late. He popped up recently when he apparently intervened and persuaded Lizard Squad to stop attacking the PlayStation Network and Xbox Live. Dotcom used the opportunity and attention he drew to himself to advertise his Mega storage service, and anyone following him on Twitter can't help but have noticed constant references to MegaChat.

Well, the time for talking about MegaChat is over. The browser-based, ultra-secure chat service that offers end-to-end encryption is now ready for you to talk through. Dotcom refers to it being a Skype-killer, but it remains to be seen just how much trust people are willing to place in the service.

You have to take a little (sometimes a lot) of salt with some of the revelations made by Edward Snowden, but his latest claim is, on the surface at least, a damning one for Apple.

According to the NSA whistle-blower’s lawyer, the iPhone has special software installed which can be remotely activated, and used to keep tabs on your whereabouts. A spyPhone, if you will.