Articles about Data Protection

EU data protection chief: Snaffling all air traveller data goes too far

Europe’s data protection tsar has warned law-makers that collecting and storing information on all airline travellers risks breaching EU privacy laws. The so-called PNR (passenger name record) scheme is back on the table after being rejected by MEPs in 2013. The plan is to force airline operators to store every scrap of …
Jennifer Baker, 28 Sep 2015

Don't look now, but there's another EU data protection court case about to bite

It might not be getting quite the level of attention as the Max Schrems case, but tomorrow (Thursday) the European Court of Justice will rule on another case that could have similar ramifications for data protection. The Weltimmo case involves a tricky legal question on jurisdiction for data protection issues when a company …
Jennifer Baker, 01 Oct 2015

Americans care more about EU data protection laws than the French

Around 800 people really do want to compare all the different versions of the EU’s proposed new data protection law. On Monday the European Data Protection Supervisor (EDPS) launched an app that allows users to compare the texts proposed by the European Commission, the European Parliament and the council of national ministers …
Jennifer Baker, 31 Jul 2015
Data Centre

EU steps (marginally, tentatively) towards new data protection law

European ministers are expected to reach some sort of agreement on new data protection laws later today, according to reports and sources, although discussions before a final decision are set to continue for months yet. Justice and Home Affairs ministers from across the EU are meeting Monday in Luxembourg and the main item on …
Jennifer Baker, 15 Jun 2015
Silhouette of spy discerning password from code uses a command on graphic user interface

'Progress made' as EU aims to get new data protection laws ASAP

The second round of negotiations on the new EU General Data Protection Regulation (GDPR) saw real movement on Tuesday, according to negotiators. Sources familiar with the discussions told El Reg that a tentative political agreement has been reached already on Chapter 5 and Article 3. These two elements focus specifically on …
Jennifer Baker, 15 Jul 2015

'Hypocritical' Europe is just as bad as the USA for data protection

Europe is being hypocritical by derailing the Safe Harbour data protection agreement - because its own protections for citizens against indiscriminate surveillance are worse than the USA’s. That’s the view of one expert on international data protection law at a meeting held by European competition group iComp today. Dr Ian …
Andrew Orlowski, 24 Nov 2015
Data Centre

Trumped up lobby group tries to get EU data protection watered down

Late last week, a group labeling itself the European Data Coalition called for Europe’s planned data protection law to be watered down. In a letter to negotiators on the General Data Protection Regulation (GDPR), the group begged them to delete the so-called FISA clause (Article 43a). This rule would prevent companies from …
Jennifer Baker, 01 Sep 2015

EU data protection tsar spams lawmakers with his unwanted opinions

The EU's independent privacy watchdog has stuck his oar into negotiations on a new EU-wide data protection law. Despite having no formal role in drafting the new Data Protection Regulation, European Data Protection Supervisor (EDPS) Giovanni Buttarelli has sent his unsolicited recommendations to the three institutions involved …
Jennifer Baker, 28 Jul 2015
Amazon data center

Amazon's clouds are da bomb, say EU data protection watchdogs

Amazon’s cloud services have been declared safe by Europe’s privacy rights watchdogs. The Article 29 Working Party (a group made up of all Europe’s national data protection authorities), led by the Luxembourgish CNPD, has found that Amazon Web Services’ standard contractual clauses meet all the requirements of EU data …
Jennifer Baker, 01 Apr 2015

Don't use Charlie Hebdo to justify Big Brother data-slurp – Data protection MEP

The European Parliament’s data protection supremo says calls from national leaders to monitor all airline passengers are “playing into terrorists' hands”. German MEP Jan Philipp Albrecht, who heads the Parliament’s overhaul of EU data protection laws, described the plans for mass storage of PNR (passenger name record) data as …
Jennifer Baker, 14 Jan 2015

French dating sites spanked for laissez faire data protection

French privacy watchdog CNIL has spanked 13 dating websites for abuses of data protection law. The large number of users and extreme sensitivity of the data processed led CNIL to put dating sites on its 2014 programme of inspection. Following raids on eight companies that owned the sites, CNIL has ordered them to change their …
Jennifer Baker, 30 Jul 2015
Samuel L Jackson locates late passengers with RFID

Euro ministers trade data for data protection – yes, your passenger records

After weeks of mounting pressure from national governments for increased access to personal data following the Charlie Hebdo attack, the European Parliament has pulled a switch that aims to simultaneously increase citizens’ privacy rights while also giving law enforcement agencies more ability to track travellers. As they …
Jennifer Baker, 13 Feb 2015

Grumpy EU ministers agree shaky pact on new data protection law

EU states' justice ministers seemed to be competing to sound the most disappointed as they grudgingly agreed to move forward on a new data protection law. Although a compromise general approach was reached, most countries found fault with the text of the proposed General Data Protection Regulation – quite a feat considering …
Jennifer Baker, 15 Jun 2015
Threesome photo via Shutterstock

EU threesome promises good times for data protection reform

Things can only get better. That’s the message from all parties negotiating the new EU Data Protection Regulation. Following the first so-called trilogue meeting on Wednesday, negotiators representing the European Parliament, the European Commission and the council of national justice ministers said that citizens’ data would …
Jennifer Baker, 24 Jun 2015

ICO's data protection tentacles will penetrate NHS bodies

NHS bodies in the UK can now be forced to open themselves up to data protection audits under new powers handed to the Information Commissioner's Office (ICO). The watchdog told that its audits regime follows a "participative approach" and that therefore it would first ask health bodies if they would voluntarily …
OUT-LAW.COM, 03 Feb 2015
Bank vault

UK data watchdog: Massive fines won't keep data safe

The UK’s data protection watchdog has said issuing fines "left, right and centre" is not the way to ensure privacy. However, Information Commissioner Christopher Graham added that this doesn’t mean his office shouldn’t have those exact powers at its disposal. “The obligation laid on data protection authorities always to fine …
Jennifer Baker, 22 May 2015

This isn't the one-stop EU data protection you're looking for

“Nothing is agreed, until everything is agreed.” So said EU Justice Commissioner Vera Jourova on Friday announcing a partial agreement on the proposed new Data Protection Regulation. Clear? It gets worse. Jourova announced that Europe’s data protection ministers had agreed on a so-called “one-stop-shop” mechanism for dealing …
Jennifer Baker, 13 Mar 2015

Internet gossip has NOWT to do with data protection, EU Commish

Comment Europe’s new data chief has taken a leaf out of fellow European Commissioner “H Dot” Oettinger’s book, delivering a cast-iron “no shit, Sherlock” statement about things people write online. The EU’s new Justice Commissioner Vera Jourova was speaking ahead of a meeting of all the EU’s justice ministers about data protection …
Jennifer Baker, 04 Dec 2014
Abbott and Costello dressed as policemen

EU justice ministers agree on police data-sharing law

European justice ministers on Friday reached an agreement on a new EU law governing how police agencies share information. The Data Protection Directive is supposed to protect personal data that is processed for “the prevention, investigation, detection or prosecution of criminal offences or the safeguarding against and the …
Jennifer Baker, 09 Oct 2015
Viviane Reding

EU Parliament rubber-stamps 'irreversible' data protection reforms

EU justice commissioner Viviane Reding scored an important victory in the European Parliament today after securing support for a rewrite of the 28-nation bloc's data protection laws. Proposed changes to the DP Regulation secured 371 politicos in favour, 10 against and 22 abstentions. Altogether 276 MEPs voted for the DP …
Kelly Fiveash, 12 Mar 2014
Max Schrems

No change in US law, no data transfer deals – German state DPA

The data protection authority at the German federal state of Schleswig Holstein has declared that any and all data protection workarounds for the transfer of data to the US after the European Court of Justice's Schrems v Facebook judgment are going to be illegal. In its first declaration on the post-Schrems legal landscape, …
Andrew Orlowski, 15 Oct 2015

Silicon Valley freeze-out: EU watchdog tells firms clock is ticking to limit data transfers

Companies have been put on notice by Brussel's top privacy bod, who has warned them that the transfer of EU citizens' data to the US must be limited – and this must happen soon. It comes several weeks after a landmark decision in the European Court of Justice nullified the questionable US-EU Safe Harbour Agreement. "No one …
Kelly Fiveash, 24 Oct 2015
Our Playmobil figure innocently tweeting away at his computer

My employer, comply with data protection law? Don't think so – say 3 in 4 office drones

Less than a quarter of staff at businesses in the UK, France and Germany think their organisation fully complies with data protection laws, according to a new study. Cyber security company Sophos commissioned a survey of 1,500 office workers in the three countries and found that 77 per cent of respondents were not confident …
OUT-LAW.COM, 03 Oct 2014

Top German data cop slaps down Facebook's real name policy

Johannes Caspar, Germany’s Hamburg Commissioner for Data Protection, has told Facebook to allow users to use pseudonyms on the free content ad network. In Tuesday's ruling (in German) Caspar said Facebook’s real names policy is against German data protection law and must stop immediately. Facebook’s policy requires users to …
Jennifer Baker, 29 Jul 2015
Screenshot of Microsoft promotional video touting Office 2013's cloud integration

Most cloud apps flout EU data protection rules – study

Three in four cloud services do not conform to the current EU Data Protection Directive, according to a new study. Enterprise cloud visibility firm Skyhigh Networks found that nearly three-quarters (72 per cent) of the cloud services used by European organisations do not meet the requirements of the current privacy regulations, …
John Leyden, 21 Oct 2014

EMC enables data movement from the white fluffy stuff

Cumulo Hopkintus is forming new product shapes as cloud winds strengthen in the data centre. There’s no bending with these gales, and EMC is having to go with the flow, enabling data movement off its arrays and into the public cloud. But it’s also providing better data protection in the cloud than Amazon, Google or their like …
Chris Mellor, 18 Nov 2015

Microsoft unwraps new auto data-protection in Office 365 tools

Microsoft is expanding its Data Loss Prevention (DLP) tools. DLP is a way of tagging content to mark it as sensitive data and subject to policy, such as a rule that states “data must be encrypted” or “may not be shared outside the organisation”. DLP is already available for email in Exchange, Outlook and Office 365, and is now …
Tim Anderson, 28 Oct 2014

Safe Harbour ruled INVALID: Facebook 'n' pals' data slurp at risk

In a landmark ruling that will have far-reaching repercussions, Europe’s highest court has ruled that data sharing between the EU and US under the Safe Harbour framework is invalid. The decision in the Max Schrems case on Tuesday morning has been anticipated for months, but now legal eagles will have to work out how to manage …
Jennifer Baker, 06 Oct 2015

UK watchdog offers 'safe harbor' advice on US data transfers

David Smith, deputy information commissioner, said businesses should "take stock" of their data transfer arrangements and review whether they provide adequate protection of personal data, as is required by EU law. Smith's comments follow a ruling by the Court of Justice of the EU (CJEU) earlier this month. The CJEU ruled that …
OUT-LAW.COM, 31 Oct 2015
management regulation2

Slurp data in a Eurozone country? Play by their DPA's rules – EU court

Europe’s highest court ruled Thursday that if a company is operating in a particular country and targeting residents of that country for business, then it IS subject to that country’s data protection rules. The Weltimmo case hinged on the question of jurisdiction for data protection issues. Weltimmo is a Slovakian company …
Jennifer Baker, 01 Oct 2015

Legal eagles accuse Labour of data law breach over party purge

The Labour Party's membership purge, which has seen it weed out 3,000 "infiltrators", could be in breach of the Data Protection Act, legal experts have warned. Labour has vetted new members by trawling social media sites for statements which make it clear they do not share its "aims and values", as well as through data …
Kat Hall, 27 Aug 2015

Stop the war between privacy and security – EU data watchdog

Security and privacy are not mutually exclusive says Europe’s privacy watchdog – and people should stop saying they are. The European Data Protection Supervisor (EDPS), Giovanni Buttarelli, told a Brussels conference he was concerned that “the objective of cyber-security may be misused to justify measures which weaken …
Jennifer Baker, 29 Apr 2015

EMC wolfs down cloudy upstart Maginatics, swallows 'protection' too

EMC is buying cloud storage gateway software biz Maginatics, as predicted, but also plans to buy startup Spanning, which makes cloud-to-cloud data protection technology. Maginatics is heading for EMC's Core Technology Division and the background about its products and capabilities can be read here. Spanning is based in Austin, …
Chris Mellor, 28 Oct 2014

EMC intros data protection-as-a-service: You shall D-PAAS

As the world is moving towards software-defined data centres with infrastructure components virtualised and delivered as a service, data protection appears to be going the same way. EMC has gone and boosted its offerings to do just this. The company says it is adding “new integrations with primary and protection storage …
Chris Mellor, 04 Apr 2014
Data protection cartoon by Data Now lobby group

Watch this cartoon on proposed new EU data rules – or you’re DOOMED. Maybe

A strange new video designed to turn the so-called “Generation D” – generation digital, and the millennials in particular to you, chief – away from the EU's new data protection rules has met with criticism. New (misleading) campaign against EU #dataprotection reform #EUdataP #privacy — kostas rossoglou …
Jennifer Baker, 03 Sep 2015

EU ministers respond sleepily to Viv Reding's 'Snowden wake-up call' on data protection

The European Union's justice commissioner Viviane Reding is convinced that her proposed data protection package will be adopted next year, even though ministers continue to disagree on some of the more delicate points laid out in the planned rules. Brussels' vice president said ahead of a meeting with the justice and home …
Kelly Fiveash, 09 Jun 2014

Amazon's chomping at the Brits: UK to get AWS data center region

Amazon Web Services (AWS) is to build a UK region, alongside existing regions in Dublin and Frankfurt. A region is a high-level concept which is formed from multiple "availability zones," requiring several physical data centers. This represents a substantial commitment from Amazon. Amazon CTO Werner Vogels announced the new …
Tim Anderson, 06 Nov 2015

EU-US data sharing deal for cops edges closer as usual suspects moan

After four years of talks, the EU and the US have finally reached a “gentleman’s agreement” on data sharing for law enforcement. The so-called Umbrella Agreement should allow the exchange of personal data between the EU and the US “for the purpose of prevention, detection, investigation and prosecution of criminal offences” so …
Jennifer Baker, 09 Sep 2015

Ex-Microsoftie in worthless Euro netizens data security promise

An ex-Microsoftie has launched a new cloudy startup that promises to keep the data of Europeans "safe" by storing it only within the EU. But that pledge is utterly worthless, given that – for example – NSA chums are still likely to come calling for access to that data from their security counterparts in the 28-member-state …
Kelly Fiveash, 10 Jun 2015

You call THAT safe? Top EU legal bod says data sent to US is anything but

The top advisor to the European Court of Justice (ECJ) has said the current agreement between the EU and US is not worth the paper it’s written on . Advocate General Yves Bot’s opinion on the so-called Facebook vs Europe case is not legally binding, but the court’s final ruling almost always follows his advice. The case was …
Jennifer Baker, 23 Sep 2015
Houses of Parliament at night-time

Data protection laws come to the rescue of poor, underpaid UK MPs

UK lawmakers may escape further expense abuse investigations after paperwork related to pre-2010 claims was shredded by parliamentary authorities in accordance with data protection regulations, sparking accusations of a fresh cover-up of MPs’ expenses. Houses of Parliament at night-time Under the House of Commons' "Authorised …
John Leyden, 03 Nov 2014
Boats storm girl photo via Nikolina Mrakovic

Don't panic, biz bods: A guide to data in the post-Safe Harbor world

The Safe Harbor agreement this week suddenly became of interest to a lot more IT managers than had previously given a stuff about it. But what is Safe Harbor, exactly? The Safe Harbor agreement between the US and the EEA - which comprises the member states of the EU plus Iceland, Norway and Liechtenstein – dating from 2000, …
Dave Cartwright, 09 Oct 2015
Facebook's Mark Zuckerberg, speaking at the 2015 F8 conference

Facebook is VIOLATING your SEXUAL privacy, warn Belgian data cops

Belgium’s privacy watchdog has pilloried Facebook for its tracking of users and non-users, saying it is in breach of EU law. The Commission de Protection de la Vie Privée (CPVP) said it was staggered by the fashion in which Facebook tramples users’ rights and tracks them across the web whether they want it or not. The Belgian …
Jennifer Baker, 15 May 2015
Kindle Big Brother wants public sector to rip up data protection law

The British government is in the preliminary stages of designing a controversial system which will share citizens' sensitive personal information across government departments without their consent. Leaked documents show civil servants are planning to mimic the data-sharing systems used by firms like Amazon or Tesco. This could …
Team Register, 04 Aug 2014

Angry Austrian could turn Europe against the US - thanks to data

In a David versus Goliath battle, an Austrian law student may topple the biggest EU-US data sharing deal when he gets his day in court in a couple of weeks' time. Max Schrems, who set up the Europe v Facebook group, alleges that Facebook violated the so-called safe harbour agreement which protects EU citizens' privacy. He says …
Jennifer Baker, 13 Mar 2015
Medieval writing. Pic: Hans Splinter

In EU-US data sharing we trust – but can we have that in writing, say MEPs

European lawmakers won’t blindly accept an EU-US agreement on new data sharing laws without important legal questions being answered and fine print being read, according to several prominent MEPs. After four years of talks, the EU and the US reached a “gentleman’s agreement” on data sharing for law enforcement last week. On …
Jennifer Baker, 16 Sep 2015

Fingerprints, facial scans, EU border data slurp too tasty for French to resist

French authorities want fingerprint and facial scans of everyone entering or leaving the EU. The proposal from the French delegation came as the European Commission puts more pressure on interior ministers to adopt its so-called “smart borders” package. The Commission plan is to set up a digital dragnet to monitor all non-EU …
Jennifer Baker, 12 Oct 2015
Facebook's Mark Zuckerberg, speaking at the 2015 F8 conference

Facebook profiles? They're not 'personal data' Mr Putin

With less than a week until a new Russian data localisation law comes into effect, Facebook is making a last-ditch effort to avoid compliance. The rules forcing companies to keep Russians’ personal data on Russian soil becomes law on 1 September. It is not yet clear what sanctions, if any, will be handed out for non-compliance …
Jennifer Baker, 27 Aug 2015

Jail incompetent council folk who leak our data, thunders furious BBW

A report published today by British privacy rights group Big Brother Watch (BBW) says the scale of private data being leaked is so great that those responsible should be jailed. Between April 2011 and April 2014, local councils experienced around four data breaches a day – a total of 4,236 instances – according to figures …
Jennifer Baker, 11 Aug 2015

Has Europe cut the UK adrift on data protection?

Comment In 1805, William Pitt the Younger, on hearing of Napoleon's victory at the Battle of Austerlitz, is reported to have said: "Roll up that map (of Europe) – it will not be wanted these 10 years". Well I have attended two meetings which suggest that the European Union has already rolled up its Data Protection Map of Europe so it …