Privacy law

Spanish DPA imposes fine on Telefónica Móviles España

Data security, Data protection, Privacy law, Information privacy, Privacy, General Data Protection Regulation, In Europe, Spanish Data Protection Agency
Wednesday, November 25, 2020 - 10:02pm

The Spanish Data Protection Authority (AEPD) imposed a fine of 75.000 EUR on Telefnica Mviles Espaa, S.A.U., for unlawfully processing the claimants personal data by charging them several invoices corresponding to a third person.

Key Points: 
  • The Spanish Data Protection Authority (AEPD) imposed a fine of 75.000 EUR on Telefnica Mviles Espaa, S.A.U., for unlawfully processing the claimants personal data by charging them several invoices corresponding to a third person.
  • The claimant, who wasnt a defendants client, contacted the controller in order to try to solve the situation, without success.
  • The AEPD considered that Telefnica Mviles Espaa, S.A.U., violated Article 6(1) of the GDPR, by processing the claimant's personal data without any lawful basis, and consequently fined the controller.
  • For further information, please contact the Spanish DPA: prensa@aepd.es

    The press release published here does not constitute official EDPB communication, nor an EDPB endorsement.

Norwegian DPA imposes administrative fine to Østfold HF Hospital

HF, Privacy law
Wednesday, November 25, 2020 - 10:02pm

The Norwegian Data Protection Authority has decided on an administrative fee of NOK 750,000 to stfold HF Hospital.

Key Points: 
  • The Norwegian Data Protection Authority has decided on an administrative fee of NOK 750,000 to stfold HF Hospital.
  • The background is that in the period 2013-2019, the hospital stored report extracts from patient records outside the safe zone.
  • The personal information has been available to 118 employees at stfold HF Hospital, where most have not had an official and justifiable need for such access.
  • For further information, please contact the Norwegian DPA: international@datatilsynet.no

    The press release published here does not constitute official EDPB communication, nor an EDPB endorsement.

The Office of the Privacy Commissioner for Personal Data, Hong Kong 2019-20 Annual Report

Privacy law, Data security, Office of the Privacy Commissioner for Personal Data, Digital rights, Human rights, Identity management, Privacy Commissioner, Privacy, Information privacy, Articles, Social issues
Wednesday, November 25, 2020 - 7:00pm

What's New

Key Points: 
  • What's New

    The Office of the Privacy Commissioner for Personal Data, Hong Kong 2019-20 Annual Report

    The 2019-20 Annual Report of the Office of the Privacy Commissioner for Personal Data, Hong Kong (PCPD) was tabled in the Legislative Council on 25 November 2020.

  • During the reporting year, the multi-fold challenges faced by PCPD not only stretched the regulatory resilience and stamina of the PCPD, but also brought personal data privacy into the limelight and intensified public discussions and deliberations about how to balance personal data privacy rights against other competing interests.
  • The PCPD witnessed in the second half of 2019 unprecedented weaponisation of personal data, often causing psychological harm to the individuals concerned.
  • PCPDs work in relation to the privacy issues arising from COVID-19 was another highlight during the reporting year.

OneRecord Is First To Achieve EHNAC Trusted Dynamic Registration & Authentication Certification

Articles, Terms of service, Digital rights, Human rights, Identity management, Privacy law, TrustArc, Electronic Healthcare Network Accreditation Commission, Internet privacy, Validation, Professional certification, Regulatory compliance
Wednesday, November 25, 2020 - 2:43pm

TDRAAP-Basic certification offers privacy and security self-attestation with targeted validation while the included UDAP technical framework certification demonstrates that an entity's end-to-end API can be trusted by patients and other industry stakeholders.

Key Points: 
  • TDRAAP-Basic certification offers privacy and security self-attestation with targeted validation while the included UDAP technical framework certification demonstrates that an entity's end-to-end API can be trusted by patients and other industry stakeholders.
  • Through EHNAC's third-party summary review via Subject Matter Expert of the Self-Attestation materials, OneRecord was evaluated in areas of security, privacy, regulatory compliance and rights management.
  • "At OneRecord, we don't believe anyone should have to trade privacy for access to information," said Jennifer Blumenthal, CEO of OneRecord.
  • OneRecord is a consumer data management platform comprised of two core products that enable a configurable and personalized healthcare experience.

Square 9 GlobalSearch Cloud Receives 2021 BLI Pick Award

Cloud infrastructure, Cision, Health Insurance Portability and Accountability Act, Cloud computing, Privacy law, Computing, Corporations
Tuesday, November 24, 2020 - 4:00pm

NEW HAVEN, Conn., Nov. 24, 2020 /PRNewswire-PRWeb/ --Square 9 Softworks has been awarded a Buyers Lab (BLI) 2021 Pick Award for Outstanding Cloud Document Management and Workflow Solution from Keypoint Intelligence.

Key Points: 
  • NEW HAVEN, Conn., Nov. 24, 2020 /PRNewswire-PRWeb/ --Square 9 Softworks has been awarded a Buyers Lab (BLI) 2021 Pick Award for Outstanding Cloud Document Management and Workflow Solution from Keypoint Intelligence.
  • "With GlobalSearch Cloud, customers get all the same benefits as the on-prem offeringfaster processes, fewer mistakes, and increased worker productivitywithout draining the IT team's budget and man-hours."
  • Additionally, Keypoint Intelligence also recognized GlobalSearch Cloud for its SOC 1, SOC 2, and HIPAA certifications.
  • GlobalSearch Cloud ensures security policies and procedures for handling data meet stringent principles for storage, security, availability, and confidentiality with these certifications.

Office of the Privacy Commissioner for Personal Data, Hong Kong Special Work Arrangements from 24 November 2020 Until Further Notice

Office of the Privacy Commissioner for Personal Data, Digital rights, Human rights, Identity management, Privacy law, Privacy Commissioner, Office of the Australian Information Commissioner, Privacy, Government, Articles, Social issues, Call centre
Monday, November 23, 2020 - 7:00pm

Office of the Privacy Commissioner for Personal Data, Hong Kong

Key Points: 
  • Office of the Privacy Commissioner for Personal Data, Hong Kong
    Having regard to the surge in the number of COVID-19 cases in Hong Kong and the announcement made by the Government on 20 November 2020, the Office of the Privacy Commissioner for Personal Data, Hong Kong (PCPD) will implement the following special work arrangements from 24 November 2020 until further notice:
    Employees will be on duty roster to take turns to work from home;
    Counter services and meetings with members of the public will be arranged on appointment basis;
    Public talks, professional workshops and seminars will continue to be held online;
    All other services, including media enquiries (90997517; ccd@pcpd.org.hk ), general enquiries, matters relating to data breach notifications and complaints will continue to be provided through hotline (28272827), fax (28777026) or email ( communications@pcpd.org.hk ; dbn@pcpd.org.hk and complaints@pcpd.org.hk ).
  • Online services ( www.pcpd.org.hk ) will also continue to be provided; and
    To achieve social distancing, the PCPD appeals to members of the public to make enquiries or complaints by telephone, post or online channels as far as possible.

Privacy Commissioner Calls for Greater Vigilance When Teenagers Go Online Beware of Swindlers of Personal Data

Terms of service, Digital rights, Human rights, Identity management, Privacy law, Office of the Privacy Commissioner for Personal Data, Internet privacy, Privacy Commissioner, Privacy, Articles, Social issues
Monday, November 23, 2020 - 7:00pm

The Office of the Privacy Commissioner for Personal Data (PCPD) noted from the findings of a recent survey on online lewd traps that nearly 90% of the parents interviewed allowed their children to go online unsupervised.

Key Points: 
  • The Office of the Privacy Commissioner for Personal Data (PCPD) noted from the findings of a recent survey on online lewd traps that nearly 90% of the parents interviewed allowed their children to go online unsupervised.
  • The Privacy Commissioner for Personal Data, Hong Kong (Privacy Commissioner), Ms Ada CHUNG Lai-ling, noticed that some criminals devised plots to impersonate teenagers in order to make friends with teenagers online.
  • The Privacy Commissioner said, I urge teenagers to exercise greater vigilance when they go online, or chat on internet, online social platforms or vide instant messaging.
  • The Privacy Commissioner recommends that parents and teachers may try to better understand teenagers online habits and related potential risks and remind teenagers to be more vigilant when they go online.

TELUS program receives prestigious global privacy recognition

S&P/TSX 60 Index, Telus International, International Association of Privacy Professionals, Human rights, Identity management, Privacy law, Telus, Privacy, Internet privacy, IAPP, Articles, Economy of Canada
Monday, November 23, 2020 - 5:52pm

TORONTO, Nov. 23, 2020 (GLOBE NEWSWIRE) -- TELUS has been awarded the HPE-IAPP Privacy Innovation Award by the International Association of Privacy Professionals in recognition of its Data for Good program .

Key Points: 
  • TORONTO, Nov. 23, 2020 (GLOBE NEWSWIRE) -- TELUS has been awarded the HPE-IAPP Privacy Innovation Award by the International Association of Privacy Professionals in recognition of its Data for Good program .
  • This award is proudly shared by the many contributors to the Data for Good program.
  • Using industry-leading privacy standards, TELUS Insights de-identifies customer information, combines it into large aggregated data sets to further ensure privacy, and then extrapolates this data to reveal trends and patterns about how devices move around the TELUS network.
  • TELUS Health is Canada's largest healthcare IT provider, and TELUS International delivers the most innovative business process solutions to some of the worlds most established brands.

Israel grants Lleida.net its fifth digital signature patent

Articles, Mass surveillance, Digital rights, Human rights, Identity management, Privacy law, Application software, COVIDSafe, OTC Markets Group, Electronic signature, Medical privacy, Privacy
Monday, November 23, 2020 - 3:04pm

MADRID, Nov. 23, 2020 /PRNewswire/ -- The Israel Patent Office (ILPO) has granted Spanish technology services company Lleida.net (BME: LLN) (EPA: ALLLN) (OTCQX: LLEIF) a new patent for its electronic notification and certification methods.

Key Points: 
  • MADRID, Nov. 23, 2020 /PRNewswire/ -- The Israel Patent Office (ILPO) has granted Spanish technology services company Lleida.net (BME: LLN) (EPA: ALLLN) (OTCQX: LLEIF) a new patent for its electronic notification and certification methods.
  • This patent, which corresponds to its "Method for the certification of electronic mail containing a recognised electronic signature on the part of a telecommunications operator", is the fifth that Lleida.net has received from the country, and it is valid for 20 years.
  • Israel is an extremely sophisticated country in terms of technological development, and we are proud that our work has been recognized there for the fifth time," explained Sisco Sapena, CEO and founder of the company.
  • The company,with operations in19 countries, has in the last few years become the main European actor in the digital signature industry.

European Data Protection Board - 42nd Plenary session: Presentation of two new sets of SCCs & EDPB adopts statement on ePrivacy Regulation

Information privacy, Privacy law, Privacy, Data security, General Data Protection Regulation, EPrivacy Regulation, European Data Protection Supervisor, SCC, Internet privacy
Friday, November 20, 2020 - 10:00pm

During the plenary, the European Commission presented two new sets of draft Standard Contractual Clauses (SCCs) and the EDPB adopted a statement on the future ePrivacy Regulation.

Key Points: 
  • During the plenary, the European Commission presented two new sets of draft Standard Contractual Clauses (SCCs) and the EDPB adopted a statement on the future ePrivacy Regulation.
  • The European Commission presented two draft SCCs: one set of SCCs for contracts between controllers and processors, and another one for data transfers outside the EU.
  • The draft controller-processor SCCs are fully new and have been developed by the Commission in accordance with Art.
  • In addition, the Commission presented another set of SCCs for the transfer of personal data to third countries pursuant to Art.
  • The Commission has requested a joint opinion from the EDPB and the EDPS on the implementing acts on both sets of SCCs.
  • The EDPB adopted a statement on the future ePrivacy Regulation and the future role of supervisory authorities and the EDPB in this context.
  • The EDPB underlines that many of the provisions of the future ePrivacy Regulation concern processing of personal data and that many provisions of the GDPR and the ePrivacy Regulation are closely intertwined.