Articles about gdpr

Celeb exits car while paparazzi try to take her picture

Call records breach let users feel like Movistars (with everyone watching who they're talking to)

Telefonica Spain has inadvertently exposed the personal details of customers of its Movistar division. Names, addresses, fixed and mobile line numbers, email addresses and the call breakdown of Movistar customers were all exposed because of basic programming errors in Movistar’s online customer portal. Anyone with a Movistar …
John Leyden, 18 Jul 2018
airplane

Thomas Cook website spills personal info – and it's fine with that

Holidaymakers who used Thomas Cook Airlines had their personal information spilled onto the internet no thanks to basic coding cockups. Norwegian programmer Roy Solberg came across an enumeration bug that leaked the full name of all travelers on a booking, the email addresses used, and flight details from Thomas Cook Airlines …
John Leyden, 10 Jul 2018
throw paper

ICANN't get no respect: Europe throws Whois privacy plan in the trash

European data regulators have torn up the latest proposal by internet overseer ICANN over its Whois data service, sending the hapless organization back to the drawing board for a third time. In a letter [PDF] to the US-based internet's naming and addressing systems, the chair of the European Data Protection Board (EDPB) makes …
Nerd thinking, image via Shutterstock

Things that make you go hmmm: Do crypto key servers violate GDPR?

Cryptographic key servers are in "direct violation" of the EU's General Data Protection Regulation, a software developer has claimed. Michael Drahony (AKA yakamok) has written a program (on GitHub) designed to highlight the potential compliance issues posed by use of PGP as an email encryption utility. "Currently you cannot …
John Leyden, 5 Jul 2018
Musician Lotte on stage in Germany

Startup bank Monzo: We warned Ticketmaster months ago of site fraud

Online bank Monzo said it warned Ticketmaster that something weird was going on in early April, two months before the ticket-slinging giant revealed its payment pages had been hacked. Monzo detected an abnormal number of customers who had both bought tickets from Ticketmaster since December and had fraudulent activity on their …
John Leyden, 28 Jun 2018
User interface whiteboarding

Facebook, Google, Microsoft scolded for tricking people into spilling their private info

Five consumer privacy groups have asked the European Data Protection Board to investigate how Facebook, Google, and Microsoft design their software to see whether it complies with the General Data Protection Regulation (GDPR). Essentially, the tech giants are accused of crafting their user interfaces so that netizens are …
Thomas Claburn, 27 Jun 2018
Hand locking door

GDPR forgive us, it's been one month since you were enforced…

A month after the enforcement date of the General Data Protection Regulation – a law that businesses had two years to prepare for – many websites are still locking out users in the European Union as a method of compliance. To celebrate the milestone, El Reg is casting a vulture's eye over the sites that are giving a new …
Rebecca Hill, 25 Jun 2018

ICANN pays to push Whois case to European Court of Justice

Domain-name system overseer ICANN will spend millions of dollars arguing its GDPR case to the European Court of Justice rather than resolve its own internal disagreements. The California-based non-profit said this week it would appeal a decision against it in German court but also, bizarrely, announced that it would also …
Kieren McCarthy, 15 Jun 2018
Currys PC World shop sign. Pic: Shutterstock

Dixons Carphone 'fesses to mega-breach: Probes 'attempt to compromise' 5.9m payment cards

Retailer Dixons Carphone has gone public about a hack attack involving 5.9 million payment cards and 1.2 million personal data records. In a statement (PDF), Dixons Carphone said that "unauthorised access" of data held by the company had prompted an investigation, the hiring of external security experts and efforts to shore up …
John Leyden, 13 Jun 2018
which way

Whois? Whowas. So what's next for ICANN and its vast database of domain-name owners?

Special report DNS overseer ICANN has tried to put a brave face on it but even for an organization with a self-importance that often leads it down a path to delusion, being told that your most important contract is effectively unenforceable has to sting. This week, a German court in Bonn informed the organization, which oversees the naming …

German court snubs ICANN's bid to compel registrar to slurp up data

Global domain name system overlord ICANN’s latest attempt to deal with compliance with European data protection law has been dealt a blow after a German court rejected its request to force a registrar to keep gathering people’s information. The DNS overseer filed a lawsuit in Bonn against German domain registrar EPGA on Friday …
Rebecca Hill, 31 May 2018
A hand outstretched from the water - asking for help...

The glorious uncertainty: Backup world is having a GDPR moment

"The right to erasure is not absolute," the UK Information Commissioner's Office told us as the question of the backup tech industry's exposure to the EU's General Data Protection Regulation was raised in the week after it came into force. The concerns Just last week, Curtis Preston, chief technical architect at Druva, raised …
Chris Mellor, 31 May 2018
Salesforce web page

USA needs law 'a lot like GDPR' – says Salesforce supremo Marc Benioff

Salesforce CEO Marc Benioff thinks America needs “a national privacy law … that probably looks a lot like GDPR.” “This is going to help our industry,” he said of Europe's new privacy rules on a conference call detailing Salesforce's Q1 2019 financial results. “It's going to set the guardrails around trust, around safety. It's …
Simon Sharwood, 30 May 2018
A hipster man with shades claps, saying bravo

BCC is hard, OK? Quite a lot of orgs blurted your email addresses in GDPR mailouts

Amid the chaos of new European data protection rules coming into force at the end of last week, organisations are apparently struggling to grasp even the most basic of technical challenges, sending out non-blinded emails to their users. Topping the irony charts is ad-blocker Ghostery, which sent users an email with more than …
Rebecca Hill, 29 May 2018
Michel Barnier, chief EU Brexit negotiator

Chief EU negotiator tells UK to let souped-up data adequacy dream die

The European Union's chief Brexit negotiator has poured cold water on the UK's dreams of a special deal on data adequacy* after it leaves the bloc. In a speech given over the weekend, Michel Barnier said that the UK "needs to face up to the reality of Brexit" and the way the EU's decision-making systems work. The UK has …
Rebecca Hill, 29 May 2018
letters stuffed in a mailbox. Photo by SHutterstock

Businesses brace themselves for a kicking as GDPR blows in

After years of dire predictions, the problems caused by weak identity management could be about to catch up with businesses across the UK. Their fears have not been caused so much by the criminals as by the bureaucrats, law makers and politicians who have spent years honing the General Data Protection Regulation (GDPR), the …
David Gordon, 29 May 2018
panic

GDPRmageddon: They think it's all over! Protip, it has only just begun

The big day has finally arrived, Europe's General Data Protection Regulation is now in force – but as the calendar flicked over last night, those breathing a sigh of relief will be sorely disappointed. For a start, it is a naive company that has treated 25 May as a deadline, thinking it won't have to worry about data …
Rebecca Hill, 25 May 2018
Max Schrems

Max Schrems is back: Facebook, Google hit with GDPR complaint

Max Schrems, the thorn in Facebook’s side, has returned to launch the first challenges under the EU’s new data protection laws. The complaints, filed on the day Europe's General Data Protection Regulation (GDPR) comes into force, take aim at what he describes as Google and Facebook’s “forced consent”. Under the GDPR, when …
Rebecca Hill, 25 May 2018

Create a news alert about gdpr, or find more stories about gdpr.

Biting the hand that feeds IT © 1998–2018