News Stream Books Videos Web Conferences Subscriptions Advertise About IAPP Publications
Daily Dashboard Daily Dashboard

The day’s top stories from around the world

 AI Governance Dashboard – New AI Governance Dashboard – New

Stay on top of the latest AI governance news and developments of the profession.

 The Privacy Advisor The Privacy Advisor

Original reporting and feature articles on the latest privacy developments

 Privacy Perspectives Privacy Perspectives

Where the real conversations in privacy happen

 Privacy Tech Privacy Tech

Exploring the technology of privacy

 Canada Dashboard Digest Canada Dashboard Digest

A roundup of the top Canadian privacy news

 Europe Data Protection Digest Europe Data Protection Digest

A roundup of the top European data protection news

 Asia-Pacific Dashboard Digest Asia-Pacific Dashboard Digest

A roundup of the top privacy news from the Asia-Pacific region

 Latin America Dashboard Digest Latin America Dashboard Digest

A roundup of the top privacy news from Latin America

 U.S. Privacy Digest U.S. Privacy Digest

A roundup of US privacy news
Overview KnowledgeNet Chapters Sections Affinity Groups Volunteer Annual Awards Career Central
Find a KnowledgeNet Chapter Near You

Talk privacy and network with local members at IAPP KnowledgeNet Chapter meetings, taking place worldwide.

 IAPP Job Board

Looking for a new challenge, or need to hire your next privacy pro? The IAPP Job Board is the answer.

 IAPP Calendar

Review a filterable list of conferences, KnowledgeNets, LinkedIn Live broadcasts, networking events, web conferences and more.
Overview Online Training Live Online Training In-Person Training Books Practice Exams Train Your Staff Official Training Partners Web Conferences
Artificial Intelligence Governance Professional Artificial Intelligence Governance Professional

Learn how to surround AI with policies and procedures that make the most of its potential by reducing its risks.

 European Data Protection (CIPP/E)

Understand Europe’s framework of laws, regulations and policies, most significantly the GDPR.

 U.S. Private-Sector Privacy (CIPP/US)

Steer a course through the interconnected web of federal and state laws governing U.S. data privacy.

 Canadian Privacy (CIPP/C)

Learn the intricacies of Canada’s distinctive federal/provincial/territorial data privacy governance systems.

 Privacy Program Management (CIPM)

Develop the skills to design, build and operate a comprehensive data protection program.

Privacy in Technology (CIPT)

Add to your tech knowledge with deep training in privacy-enhancing technologies and how to deploy them.

 Foundations of Privacy and Data Protection

Introductory training that builds organizations of professionals with working privacy knowledge.

 Privacy Law Specialist Training (PLS)

Meet the stringent requirements to earn this American Bar Association-certified designation.
Overview Certification Programs Get Certified How to Prepare Continuing Privacy Education (CPE) Fees Certify Your Staff Verify a Certification
CIPP Certification CIPP Certification

The global standard for the go-to person for privacy laws, regulations and frameworks

 CIPM Certification CIPM Certification

The first and only privacy certification for professionals who manage day-to-day operations

 CIPT Certification CIPT Certification

As technology professionals take on greater privacy responsibilities, our updated certification is keeping pace with 50% new content covering the latest developments.

 FIP Designation FIP Designation

Recognizing the advanced knowledge and issue-spotting skills a privacy pro must attain in today’s complex world of data privacy.

 Privacy Law Specialist Privacy Law Specialist

The first title to verify you meet stringent requirements for knowledge, skill, proficiency and ethics in privacy law, and one of the ABA’s newest accredited specialties.

 AIGP Certification AIGP Certification

Ensures individuals responsible for AI systems can reduce the risks associated with this technology.

 Certificação CDPO/BR Certificação CDPO/BR

Mostre seus conhecimentos na gestão do programa de privacidade e na legislação brasileira sobre privacidade.

 Certification CDPO/FR Certification CDPO/FR

Certification des compétences du DPO fondée sur la législation et règlementation française et européenne, agréée par la CNIL.
Tools and Trackers Research Glossary Global Privacy Directory Enforcement Database Westin Research Center Web Conferences Jobs Privacy Vendor Marketplace
Global Privacy Directory

This tool identifies global data protection authorities and privacy legislation.
US State Privacy Legislation Tracker

The IAPP’s US State Privacy Legislation Tracker consists of proposed and enacted comprehensive state privacy bills from across the U.S.
Reports and Surveys

Access all reports and surveys published by the IAPP.
Privacy Governance Report

This report shines a light on the location, performance and significance of privacy governance within organizations.
Privacy Risk Study

This year’s Privacy Risk Study represents the most comprehensive study of privacy risk undertaken by the IAPP in collaboration with KPMG.
Artificial Intelligence

On this topic page, you can find the IAPP’s collection of coverage, analysis and resources covering AI connections to the privacy space.
CCPA and CPRA

IAPP members can get up-to-date information here on the California Consumer Privacy Act and the California Privacy Rights Act.
EU General Data Protection Regulation

The IAPP's EU General Data Protection Regulation page collects the guidance, analysis, tools and resources you need to make sure you're meeting your obligations.
Data Protection Intensive: UK Data Protection Intensive: UK

Explore the full range of U.K. data protection issues, from global policy to daily operational details.

Global Privacy Summit Global Privacy Summit

Expand your network and expertise at the world’s top privacy event featuring A-list keynotes and high-profile experts.

AI Governance Global AI Governance Global

A new event in Brussels for business leaders, tech and privacy pros who work with AI to learn about practical AI governance, accountability, the EU AI Act and more.

 Canada Privacy Symposium Canada Privacy Symposium

Leaders from across the Canadian privacy field deliver insights, discuss trends, offer predictions and share best practices.

Asia Privacy Forum Asia Privacy Forum

Hear top experts discuss global privacy issues and regulations affecting business across Asia.

 Privacy. Security. Risk. (P.S.R.) Privacy. Security. Risk. (P.S.R.)

P.S.R. focuses on the intersection of privacy and technology. The call for proposals to speak at the 2024 event is open. Submit your ideas today.

 Europe Data Protection Congress Europe Data Protection Congress

Europe’s top experts offer pragmatic insights into the evolving landscape and share knowledge on best practices for your data protection operation.

 ANZ Summit ANZ Summit

Gain exclusive insights about how privacy affects business in Australia and Aotearoa New Zealand.

 Speak at an IAPP Event

View our open calls and submission instructions.

 Sponsor an Event

Increase visibility for your organization — check out sponsorship opportunities today.

Individual Membership Corporate Membership Group Membership Student Membership
Become a Member

Start taking advantage of the many IAPP member benefits today

 Corporate Members

See our list of high-profile corporate members—and find out why you should become one, too

 Renew Your Membership

Don’t miss out for a minute—continue accessing your benefits
{[product.name]} {[ product.name ]}
clear
mode_editEdit
remove_circle_outline {[ getCartItemQuantity(product.id) ]} add_circle_outline
{[ product.price | currencyFilter ]}
TOTAL: {[ getCartTotalCost() | currencyFilter ]} Update cart for total shopping_basket Checkout

The Privacy Advisor | Privacy News Related reading: Navigating Thailand's Digital Platform Services Law

rss_feed

""

New Identity Theft Scam Targets Executives
Debix, the Identity Protection Network, is warning corporate executives to be aware of identity theft specifically targeted to them.

Debix, joined by LooksTooGoodTo BeTrue.com, a Web site funded by the United States Postal Inspection Service, the Federal Bureau of Investigation and the Merchant Risk Council, are advising executives and businesses to take precautions to prevent fraudsters from accessing their lines of credit by stealing the identity of their business executives.

Working with industry and law enforcement, the groups have found a scam in which an ID thief defrauds businesses by stealing the identity of a business executive at a publicly traded company, where personal information such as date of birth, address and phone number are easily accessible in public records. The fraudster then applies for a new credit account at an online retail store in the name of the company and uses the executive's information as a personal guarantee.

The fraudster then orders costly equipment, such as computers, which would quickly deplete the credit line. By the time the retailer sends the delinquent account to collections, the criminal has moved on to the next victim.

"Because these are business lines of credit, often in excess of $20,000, the fraud losses are quick and substantial," said Julie Fergerson, VP of Emerging Technologies at Debix and Co-Founder and Board Member of the Merchant Risk Council. "The good news is executives and business can both take simple steps to protect themselves."

Debix and the Merchant Risk Council, a non-profit organization dedicated to helping merchants prevent fraud, recommend that executives place a fraud alert on their credit files. After a request is made for credit, the creditor would be required to contact the telephone number placed in the executive's credit file before issuing new lines of credit.

Class Action Lawsuits Cropping Up Over Credit Card Receipts
Companies that collect or process credit cards should be aware of a new set of lawsuits related to the printing of credit card numbers on receipts, advises Kirk J. Nahra, CIPP, of Wiley Rein LLP and Editor of The Privacy Advisor.

In a recent communication, Nahra informed clients that a new series of class action lawsuits - brought primarily in California, but expanding around the country - stem from section 1681c(g) of the Fair Credit Reporting Act, a new requirement from the Fair and Accurate Credit Transactions (FACTA) law that prohibits the printing of full credit card numbers on receipts.

Plaintiffs' class action lawyers are taking the position that FACTA permits statutory damages of up to $1,000 per willful violation of the law, as a means of attempting to avoid more common problems related to a lack of damages in certain privacy and security cases.  

The Bureau of National Affairs reports that more than 100 of these suits have been filed in California. A limited number of cases have been filed in other states.

While these suits are new, there has been one early decision testing part of this theory. In a case involving Ikea (Eskandari v. Ikea U.S. Inc, C.D. Call. No. 8:06-cv-01248-JVS-RNB (March 12, 2007), the court issued the first decision in this area, ruling on Ikea's assertion that the Fair Credit Reporting Act did not create a private cause of action for violation of this FACTA provision. The court, in a brief decision, held that the "plain language" of the statute "provides a private right of action for consumers." Accordingly, while this is only the first step in what is likely to be a much more significant battle, the court has allowed this case to go forward.

Companies should review promptly their policies related to credit card receipts, Nahra said. They also should begin to review more aggressively the overall requirements of the FACTA law, including such broadly applicable provisions as the "disposal rule" related to the disposal of consumer report information.

Richard Thomas Reappointed as UK Information Commissioner
Richard Thomas has been reappointed to a second term as Information Commissioner for the UK. Thomas' current five-year term expires in Nov-ember 2007, after which he will serve another two years until June 2009.

"I am obviously very pleased to be asked to continue for the next two years," Thomas told the IAPP. "It is a real privilege to lead the ICO and a very satisfying and rewarding role to ensure that both Freedom of Information and Data Protection are being taken seriously and bring real benefit to the public. I have also very much enjoyed my contact with the international privacy and data protection community and look forward to this further period of cooperation."

Thomas was a keynote speaker at the IAPP Privacy Summit 07 in Washington, D.C. His previous career has included serving as Director of Public Policy at Clifford Chance (the international law firm), Director of Consumer Affairs at the Office of Fair Trading, Head of Public Affairs and Legal Officer at the National Consumer Council and Solicitor with the Citizens Advice Bureau Service. He also has held various public appointments, including membership of the Lord Chancellor's Civil Justice Review Advisory Committee and the Board of the Financial Ombudsman Service.

Most Trusted Companies for Privacy Receive Accolades
TRUSTe and the Ponemon Institute have announced the results of the 2007 Most Trusted Companies for Privacy Study, an annual evaluation of how consumers perceive organizations that collect and manage their personal information. The study ranks companies and federal agencies by industry and compile a list of the overall top performing companies.

For the second year in a row, American Express was rated the top company for privacy trust, followed by Charles Schwab and IBM. Last year's top three were American Express, Amazon and Procter & Gamble. Previous years' winners have included E-Loan, Hewlett-Packard and eBay.

The survey is a Web-based study that gathers information from participants over a six-week period, which ended in February 2007. Responses related to more than 200 companies were analyzed and ranked.

"The Most Trusted Companies for Privacy Study is one of the most interesting and important studies of the year as it gives us a picture of how the public's perceptions change from year-to-year and how different companies respond to evolving privacy challenges," said Larry Ponemon, CIPP, Chairman and Founder, Ponemon Institute. "While we read the bad news in the headlines, it is clear that there are many companies that have put on the mantle of privacy leadership, and that are setting a stellar example for others to follow with their superlative privacy and data security programs."

The executive summary and survey results can be found at www.truste.org/ pdf/2007_Most_Trusted_Companies.pdf.

Comments

If you want to comment on this post, you need to login.

Related Stories
Navigating Thailand's Digital Platform Services Law
In today's digital age, digital platforms have gained immense popularity and are expected to continue their growth across various industries. End users appreciate the convenience these platforms offer for searching, purchasing and comparing products, and accessing user reviews, as well as the flexib...
Read More queue Save This
Related Stories
Recent Comments