dcsimg

DPC concludes Public Services Card investigation

This week, Ireland’s DPC (Data Protection Commission) released the findings of its investigation into the controversial PSC (Public Services Card).  What is the PSC? The PSC was introduced as part of a social welfare pilot scheme in 2011. It displays the holder’s full name, PPS (Personal Public Service) number, signature and photograph.   The card was initially required for social welfare … [Read more...]

British Airways fine could be the start of GDPR tidal wave

Earlier this week, the ICO (Information Commissioner’s Office), the UK’s data protection authority, announced that it would be fining British Airways £183.4 million (about €204 million) for a data breach that occurred last year.  The incident, which affected 500,000 customers, involved a sophisticated attack in which criminals diverted traffic from British Airways’ website to a bogus replica, … [Read more...]

GDPR in Ireland – the facts and figures

In this excerpt from GDPR – One Year On, Alice Turley discusses the impact of the GDPR (General Data Protection Regulation) in Ireland.    Data breach notifications in Ireland  Figures from the DPC’s (Data Protection Commission) first annual report show that a total of 4,740 valid data breach notifications were received in 2018. This is a 70% increase on the 2017 figure of 2,795.  There … [Read more...]

From pandemonium to fines – a review of GDPR enforcement in Europe

Do you remember the Y2K bug in the run-up to the new millennium? Warnings that computer systems and networks would stop functioning on 1 January 2000 led to panic and pandemonium as people prepared for its impact.   In some ways, the introduction of the GDPR (General Data Protection Regulation) was reminiscent of the Y2K scare.  Despite the two-year transition period, a lot of organisations left … [Read more...]

Helen Dixon reappointed as Ireland’s Data Protection Commissioner for a second term

Helen Dixon has been reappointed as DPC (Data Protection Commissioner) until 2024 following government approval.   Announcing the decision, Charlie Flanagan, Minister for Justice and Equality, said: “Helen is internationally well regarded for her expertise in this area. This is a very important role as Ireland’s Data Protection Commission is the EU’s lead regulator for the many multinational … [Read more...]

3 cyber security threats you need to prepare for

The key to reducing the damage that data breaches can cause is to spot them quickly. Ponemon Institute’s 2018 Cost of a Data Breach Study found that, on average, organisations that identified a breach within 100 days saved more than $1 million (€880,000) per incident. But to be able to spot a data breach you need to know what to look for. In this blog, we break down five common causes of data … [Read more...]

6 ways your organisation can suffer a data breach

Data breaches aren’t only the result of crooks breaking into organisations’ systems and stealing files. They occur whenever sensitive information is accidentally or unlawfully destroyed, lost, altered, disclosed or accessed. This blog explains how each of the scenarios might take place and provides advice for staying secure. Cyber attack Let’s get the obvious one out of the way. Crooks can … [Read more...]

How to tackle the most common causes of data breaches

Data breaches have serious financial and reputational consequences, but the faster you respond to an incident, the less severe the damage will be. In order to respond promptly, organisations need to understand and prepare for the threats they are most likely to face. These typically fall into two categories. The first, external threats, refers to breaches caused by cyber criminals or third … [Read more...]

The GDPR: When do schools need to report data breaches?

As you should by now be aware, all organisations that process EU residents’ personal data must comply with the GDPR (General Data Protection Regulation). The Regulation intends to unify data protection requirements among EU member states and give individuals more control over the ways their data is used. As a result, the rules for processing personal data have become a lot stricter. This has … [Read more...]

Portuguese hospital appeals GDPR fine

A Portuguese hospital is preparing a legal challenge to appeal two fines totalling €400,000 levied under the GDPR (General Data Protection Regulation). at the Centro Hospitalar Barreiro Montijo (CHBM) were raised in April 2018 when the Sindicato dos Médicos da Zona Sul (Medical Workers Union of the Southern Zone) reported that non-clinical staff were using ‘medical’ profiles to access CHBM’s … [Read more...]