As seen on EDPB: Origin of the case The Finnish Supervisory Authority (SA) investigated the activities of the online retailer Verkkokauppa.com due to a complaint filed by a customer. The controller had required the person to register themselves as a customer before making purchases online. Shopping in the online shop was not possible without creating…
Category: Breaches
Employers Beware: New Wave of Illinois Genetic Information Privacy Act Litigation
Kathryn Cahoy and Thea McCullough of Covington and Burling write: Likely spurred by plaintiffs’ recent successes in cases under Illinois’s Biometric Information Privacy Act (“BIPA”), a new wave of class actions is emerging under Illinois’s Genetic Information Privacy Act (“GIPA”). While BIPA regulates the collection, use, and disclosure of biometric data, GIPA regulates that of…
Citizen Lab exposed an Israeli spyware firm. Now NSO Group is badgering them in court.
Shawn Musgrave reports: For years, cybersecurity researchers at Citizen Lab have monitored Israeli spyware firm NSO Group and its banner product, Pegasus. In 2019, Citizen Lab reported finding dozens of cases in which Pegasus was used to target the phones of journalists and human rights defenders via a WhatsApp security vulnerability. Now NSO, which is…
Information Commissioner: Persistent sensitive information breaches failing people living with HIV
From the UK Information Commissioner’s Office: Information Commissioner John Edwards has condemned data protection standards at health services for people living with HIV and called for urgent improvements. The statement follows several data breaches, as well as concerns raised by some of the largest HIV organisations in the country. Information Commissioner John Edwards said: “People…