WhatsApp, the messaging app owned by Facebook, confirmed a serious security vulnerability in its system on Monday, 13 May that left users open to spyware installations on their phone. The breach, affecting both iOS and Android users, enabled the software to be installed through voice calls, even if the call wasn’t picked up. In some cases, the call was removed from the call log, so the missed … [Read more...]
May 17, 2019
May 3, 2019
Ireland’s DPC investigates Facebook over password breach
Ireland’s DPC (Data Protection Commission) has launched a statutory inquiry into Facebook following the disclosure of a data breach affecting millions of users. The social media giant announced in March that a routine security review at the beginning of the year found millions of user passwords stored in plaintext on … [Read more...]
May 1, 2019
Hospital patients’ medical notes found on Drogheda estate
Hospital notes on patients who attended Our Lady of Lourdes Hospital in Drogheda, Co. Louth were discovered on a housing estate earlier this week. The doctor handover notes, detailing the dates of birth, family situations, medical conditions and hospital wards attended of ten patients who visited the hospital’s emergency … [Read more...]
April 18, 2019
What are the 6 data protection principles of the GDPR?
A version of this blog was originally published 31 January 2018. The GDPR (General Data Protection Regulation) outlines six principles that organisations must follow when collecting, processing and storing individuals’ personal data. Data controllers are responsible for complying with those principles, and they must have documented proof of how the organisation is meeting … [Read more...]
April 16, 2019
10 steps to GDPR compliance: How prepared are you?
This blog has been updated to reflect industry changes. Originally published 16 October 2017. It’s not too late to comply with the GDPR (General Data Protection Regulation). The Regulation might have come into effect last year, but it’s requirements need to be regularly reviewed. As such, it doesn’t matter what your compliance posture was six months or a year … [Read more...]
April 2, 2019
February 28, 2019
How will a no-deal Brexit affect EU data transfers?
With Brexit day fast-approaching and the UK and EU in negotiation deadlock, it’s time for organisations to work under the assumption that a formal withdrawal agreement won’t be in place by 29 March 2019. This will be hard work for many of your business activities, but things are surprisingly straightforward regarding personal data … [Read more...]
January 22, 2019
Google fined €50 million in landmark GDPR ruling
Google has been fined €50 million by the CNIL, France’s data protection regulator, for a breach of the EU GDPR (General Data Protection Regulation). It’s by far the biggest fine related to the GDPR, which took effect in May 2018 and gave regulatory bodies much stronger disciplinary powers. What did Google do wrong? The CNIL concluded that Google had violated the GDPR in two … [Read more...]
January 21, 2019
6 tools to help you manage your organisation’s security measures and GDPR compliance
The ability to prevent data breaches has become a lot more important since the GDPR (General Data Protection Regulation) took effect. You should have already been concerned about your customers’ freedom and privacy, your susceptibility to regulatory action and your ability to protect your reputation in the event of a security incident, but these have now taken on heightened significance. The … [Read more...]
January 18, 2019
What is ISO 27001 certification?
ISO 27001 certification demonstrates that an organisation has met the requirements of the international standard for information security. This is hugely beneficial compared to simply following the Standard’s requirements, because it provides proof of the effectiveness of your security systems and satisfies the demands of clients and regulators. The ISO 27001 certification process Before … [Read more...]
