We can justify our work!

I love this “A UK privacy authority has fined the solicitor behind ACS:Law £1,000 for failing to keep the personal data of at least 6,000 people secure.” Although the fine was pretty pathetic, it is still good to see numbers appearing against cost of lost personal and sensitive data as this helps us justify why we are needed! Read more at ZDNet.

What is more important is the loss to his reputation for his lax security, I can imagine that ACS business cost will be just a little bit more than £1,000 😉

Workplace privacy in the US is getting a new set of clothes

Significant developments in workplace privacy law and policy in the US over the past year have left employers with a number of new obligations. Litigation in state and federal courts, state legislation and federal agency actions have all led to increased protections for employees, requiring employers to carefully consider and, as necessary, revise their workplace privacy policies and procedures.

I am not sure exactly which laws these are? Any links to relevant laws would be really appreciated!

Yes please I would like a cookie :-P

I’ve been posting about this before, the thing on “cookie consent” in the new EU privacy law. Well now there have been some guidelines published by the Information Commissioner’s Office.

Simply advice is as follows:

We advise you to now take the following steps:
1. Check what type of cookies and similar technologies you use
and how you use them.
2. Assess how intrusive your use of cookies is.
3. Decide what solution to obtain consent will be best in your
circumstances.

The main difference in behaviour is often those using cookies to collect your behaviour data used to by default give you the option to opt-out, however now you must consent, i.e. opt-in. This is now aligned to the general collection of personal data in the EU.