One year after the Privacy Act 2020 took effect in New Zealand, this report investigates the impact of mandatory privacy breach reporting. Unsurprisingly, breach reporting increased significantly, although currently less than half of entities do report within the mandatory 72 hours timeframe: From 1 December 2020 it became mandatory to notify the Office of the…
Category: Breaches
Ie: Irish Regulator Submits Draft Decision on Instagram’s Use of Children’s Data
Robert Bateman reports: The Irish data regulator has submitted a draft decision about Instagram’s user registration process to other EU data protection authorities, bringing the total number of ongoing Irish investigations into Meta (formerly Facebook) companies to three. In a 7 Dec. news release on its website, the Data Protection Commission (DPC) said it was submitting the…
At: Newspaper forced to unmask commenters prevails at rights court
Molly Quell reports: Austria was wrong to force a daily newspaper to hand over information about anonymous website commenters, Europe’s top rights court ruled Tuesday. The European Court of Human Rights sided with Der Standard, finding anonymous comments critical of politicians on the newspaper’s website were covered by freedom of expression. It says Austrian authorities were…
U.K.: The ICO fines the Cabinet Office £500,000 for data protection breach
The Information Commissioner’s Office (ICO) has fined the Cabinet Office £500,000 for disclosing postal addresses of the 2020 New Year Honours recipients online. The ICO found that the Cabinet Office failed to put appropriate technical and organisational measures in place to prevent the unauthorised disclosure of people’s information. This is a breach of data protection…