Endpoint Security Info » Data Protection Act http://www.endpoint-security.info Endpoint Security in the News. Learn to protect your data by controlling removable storage devices. Thu, 02 Feb 2012 10:58:16 +0000 en hourly 1 http://wordpress.org/?v=3.2.1 Tough measures enforced by the head of EU data protection http://www.endpoint-security.info/2010/12/15/tough-measures-head-of-eu-data-protection/ http://www.endpoint-security.info/2010/12/15/tough-measures-head-of-eu-data-protection/#comments Wed, 15 Dec 2010 07:56:37 +0000 Agent Smith http://www.endpoint-security.info/?p=576

Peter Hustinx, European data protection supervisor, has signaled a change of approach when dealing with EU institutions. According to a new policy paper, The European data protection supervisor (EDPS) will enforce accountability and tougher punitive measures when it comes to EU institutions, especially for serious, deliberate or repeated non-compliance with laws.

The document was published Yesterday and aims to provide greater transparency on the framework that allows EDPS, Peter Hustinx, to monitor, measure and ensure data protection compliance in the EU’s various institutions and bodies.

Endpoint Security and Device Control Solutions with low TCO and great ROI.

Accountability is emphasised the most in this document, thus  EU bodies are required to take the  appropriate measures to ensure compliance with data protection laws.

After five years of non-punitive approach with those who have erred, Hustinx is now turning a new leaf and makes ready to  enforce action if necessary.

Thus,  the body in question will be warned, ordered a rectification, blocked, or even be forced to erase or destroy  all data processed in breach of the rules. Imposing a temporary or definitive ban on processing is also an option as well as  referring the matter to the European Parliament, Commission, Court of Justice or the Council.

“Holding the EU institutions accountable for ensuring compliance with data protection obligations, and for demonstrating such compliance, is a crucial first step in fostering data protection in practice,” Hustinx said. “However, this must be backed up by a framework for dealing with those institutions and bodies that continue to fail to meet the required standards and demonstrate poor compliance records.”

The move comes as the UK’s data protection watchdog, the Information Commissioner’s Office, issued its first punitive fines last month to organisations in breach of the Data Protection Act.

]]> http://www.endpoint-security.info/2010/12/15/tough-measures-head-of-eu-data-protection/feed/ 0 Months later, consequensces knocking on breached door http://www.endpoint-security.info/2009/04/01/months-later-consequensced-knocking-on-breached-door/ http://www.endpoint-security.info/2009/04/01/months-later-consequensced-knocking-on-breached-door/#comments Wed, 01 Apr 2009 10:13:39 +0000 Agent Smith http://www.endpoint-security.info/?p=195

One might think that if several months have passed since an embarrsing data breach and nothing has happened, it’s all cool. One can relax, mind their own business and forget all about security.

That’s not the case if we’re talking UK health authority. Namely, London-based Camden Primary Care Trust. They thought, sometime last August, that dumping PCs containing 2,500 patients’ names, addresses and medical histories beside a skip inside the grounds of St Pancras Hospital was a good idea. They might reconsider now, as the Information Commissioner’s Office has given Camden Primary Care Trust until the end of the month to improve security, consequence of its breaching the Data Protection Act.

According to the Register, “data on the obsolete computers was left unencrypted. The machines were subsequently swiped without authorisation and never recovered”. Given such gross negligence and obvious proof of being completely irresponsible, I cannot help being extremely happy they are forced to do something about their security!

]]> http://www.endpoint-security.info/2009/04/01/months-later-consequensced-knocking-on-breached-door/feed/ 0 Data Breach Effects: Advice on How to Rebuild Credit Ratings http://www.endpoint-security.info/2008/10/13/data-breach-effects-advice-on-how-to-rebuild-credit-ratings/ http://www.endpoint-security.info/2008/10/13/data-breach-effects-advice-on-how-to-rebuild-credit-ratings/#comments Mon, 13 Oct 2008 03:42:19 +0000 Agent Smith http://www.endpoint-security.info/?p=160

As more and more data breaches are revealed and debated online, the number of victims of such incidents increases. From never-ending sales calls to having items charged on your card to seeing credit ratings go down the drain to identity theft, these people are the ones who feel the most powerful consequences, not the companies where the breaches occur.

So what are these people to do to protect themselves and get back to how things were? In what credit ratings are concerned, UK victims are advised to use the Data Protection Act to rebuild them. According to E-Victims org, a former support group for cybercrime victims quoted by the Register, even after establishing fraud and absolving themselves of liability to fraudulent debt, data breach victims still have poor credit ratings.

As credit agencies rely on data from lenders, not on corrections communicated by those who borrow money, the organization says the Act could be used to force lenders to correctly communicate the status of fraud and data breach victims. Otherwise, even if they get a new credit, victims of such breaches will still have to pay higher interest rates. The Register also directs victims to a factsheet published by E-Victims.org aimed to help them with their credit reports.

]]> http://www.endpoint-security.info/2008/10/13/data-breach-effects-advice-on-how-to-rebuild-credit-ratings/feed/ 1