Having trouble receiving the Privacy Advisor in your inbox? Click here for troubleshooting tips.
Global Privacy Dispatches
ITALY—Garante Addresses Medical Research, Welfare Positions Issues
The Garante, Italy’s Data Protection Authority (IDPA), has released three decisions related to research and a register of welfare positions.
ITALY—Garante Releases Enforcement Activity Report
The Garante, the Italian Data Protection Authority (IDPA), has released information on enforcement activity in Italy in 2013 and its relevant plan of inspections for the first semester of 2014.
CANADA—Anti-Spam Legislation To Come Into Force
After much discussion and consultation on the accompanying Regulations, Canada’s anti-spam legislation is about to take full effect. While the CRTC had previously published its regulations on March 28, 2012, the Electronic Commerce Protection Regulation was finally published on December 4, 2013.
UK—Government Department Fined 185,000 GBPs After Terrorist Incident Data Sold at Auction
A government department has been fined after a filing cabinet containing personal information relating to victims of a terrorist incident was sold at auction.
NEW ZEALAND—Privacy Reflections/Predictions for 2014
The high-profile privacy breaches of 2012-13 have shed an unprecedented light on personal information in New Zealand. Outgoing Privacy Commissioner Marie Shroff is leaving the role at a time when protecting personal information, a cause she has actively championed over the past 10 years, is at the forefront of public awareness and is top-of-mind for policy analysts, legislators and businesses alike.
NEW ZEALAND—Will the Tide Turn in 2014?
Last year was not a good one for New Zealand privacy-wise. While Australia forged ahead enacting legislation covering issues such as cross-border controls for personal data and introducing measures to implement breach notification, the government in New Zealand, by contrast, has been dragging its feet and instead adopted a raft of measures diminishing existing privacy protections. This article briefly reviews developments in New Zealand in 2013 and ventures some predictions as to what may lie in store in 2014.
AUSTRALIA—Australia Legislates for Privacy by Design
In March, Australia will be overhauling its privacy laws. One of the key features of the new regime means Australia will become one of the first jurisdictions to effectively legislate for the concept of Privacy by Design.
Career Corner (May 1, 2007)
For organizations large and small, effective privacy and data security management are crucial elements to a healthy business. As all privacy practitioners know, a breakdown in privacy and security controls can damage seriously an organization's reputation with clients, employees and partners. The time and money spent by organizations faced with remediating a privacy breach has amounted to millions of dollars in legal, operational and PR expenses.
Privacy News (May 1, 2007)
Debix, the Identity Protection Network, is warning corporate executives to be aware of identity theft specifically targeted to them.
Web Watch (May 1, 2007)
Michael Weider, CTO of Watchfire, explains the top 10 Web application attacks financial services organizations need to be aware of.
IAPP In the News (May 1, 2007)
The IAPP Board of Directors now includes privacy leaders from Google Inc., Information Integrity Solutions Pty. Ltd., Kelley Drye & Warren and the U.S. Department of Justice. They join existing directors from General Electric Company, Hewitt Associates, Highmark Inc., IBM Corp., Intel, Intuit, Marriott International, Microsoft Corp., Nationwide Insurance Companies, Pfizer Inc., Procter & Gamble, Schering-Plough Corp., the University of Pennsylvania, Walt Disney Company, Wal-Mart, Wiley Rein LLP and Zeno Group.
A How-To Guide to Information Security Breaches (May 1, 2007)
Contrary to what the headlines suggest, information security breaches are not a new phenomena. What is new is that we are hearing about them in record numbers. While consumers are newly focused on information security due to the emergence of e-commerce, the reason security breaches now seem ubiquitous is a result of the development of a body of state laws requiring companies to notify affected individuals in the event of a breach.
Notes from the Executive Director (May 1, 2007)
After nearly a year of work, the President's Identity Theft Task Force recently issued its comprehensive strategic plan for the government's coordinated approach to fight identity theft. The report documents the challenges that privacy professionals grapple with everyday - whether they work in the public or private sectors.
Defensible Process vs. Tactical Defense (May 1, 2007)
The history of risk management and compliance in the financial services industry offers examples of companies that responded to certain risks in purely tactical ways. In many of these cases, the results were difficult for everyone - consumers were hurt, investors incurred losses, corporations lost brand equity and employees lost opportunities - and sometimes their jobs.
N.H. Pharma Law May Set Precedent for Other States (May 1, 2007)
New Hampshire has become the unlikely front in the latest battle between the pharmaceutical industry and privacy advocates. In June 2006, New Hampshire passed its "Prescription Confidentiality Act," which bars the license, transfer, use or sale for any commercial purpose of patient-identifiable or prescriber-identifiable information.