ISO/IEC 27001 – Information security management

From the document: The ISO 27000 family of standards helps organizations keep information assets secure. ISO/IEC 27001 is the best-known standard in the family providing requirements for an information security management system (ISMS). An ISMS is a systematic approach to managing sensitive company information so that it remains secure. It includes people, processes and IT […]

Tags: ,

Update on the right to be forgotten

According to the Washington Post the “right to be forgotten” just got real.  The newspaper reports that Google received more than 50,000 requests for removal. As ordered by the European court of justice, the company is beginning to remove content from search results. More information on the ECJ decision may be found here. Related documents […]

Tags: ,

Personal data protection in Kazakhstan

On November 26, 2013, the Law of the Republic of Kazakhstan “On personal data and its protection” № 94-V ЗРК (hereinafter – “Personal Data Law”) entered into force. It states the rules on collection, processing, and protection of personal data (except for personal and family needs exclusively) for state archival purposes; for state secrets; for […]

Tags: ,

Kenneth N. Rashbaum and Jason M. Tenenbaum, Facebook Appeals Catch-22 Order: If It Can’t Protect the Privacy Rights of Users and a Gag Order is in effect, Who Can?

The authors discuss some documents revealing that Facebook has been engaged in a Catch-22-type dispute with the New York County’s District Attorney’s Office with regard to protecting the privacy of Facebook users. The discussion stems after the District Attorney’s Office obtained warrants for, among other things, “any and all subscriber and account information and user contact […]


Recent statement on Mass Data Collection in Britain

Mr. Farr’s statement was filed as part of the British government’s response to a legal case brought by Privacy International, Amnesty International and other public interest groups trying to stop the bulk collection of communications data by intelligence agencies. The statement lays out the authority British intelligence agencies claim to have in intercepting communications carried […]

Tags: ,

Do EU authorities think that Google needs help … to help Europeans to be forgotten?

Article 29 privacy group met on June 4, 2014 to decide whether a special taskforce of European privacy overseers should monitor Google’s attempts to respond to citizens’ requests to be forgotten. They decided it should. The taskforce should analyze how European regulators should react in case of complaint of citizens — which might be likely […]

Tags: ,

Italian Data Protection Authority’s Decision on information and consent requirements for the use of cookies — doc. web n. 3118884

Published on June 3, 2014 on the Italian Official Gazette no. 126, the May 8, 2014 Italian Data Protection Authority (GPD)’s decision on the use of cookies by websites. Individuazione delle modalità semplificate per l’informativa e l’acquisizione del consenso per l’uso dei cookie. The GPD orders that pursuant to Articles 122(1) and 154(1)(h) of the Privacy Code, websites […]

Tags: ,

1 24 25 26 27