Privacy & Compliance | SC Media

Privacy & Compliance

Facebook says it ‘unintentionally’ harvested 1.5M users’ email contacts via verification feature


Facebook has once again stoked controversy after the social media giant reportedly owned up to “unintentionally” collecting the email contacts of 1.5 million users without their consent. Business Insider revealed the company’s latest data mismanagement gaffe in an April 17 news report, after its staff members created a fake account and entered an email password…


Study: 67 percent of hotel websites grant third parties access to personal booking data, reservations


A study of more than 1,500 hotels in 54 countries found that 67 percent of their websites leak booking reference codes to third-party partners, allowing them to potentially access guests’ booking details and personal information. Such access could even enable the third parties to cancel individuals’ reservations if they so desired, according to Symantec Principal…

Facebook stored hundreds of millions of user passwords in plain text


Facebook is once again making headlines after the company discovered it had been storing hundreds of millions of users passwords in plain text for years. The company says its currently investigating the situation, but said in January it discovered some users passwords had been stored in a readable format  within its internal data storage systems,…

FDA presents guidelines for medical device security

Meditab affiliate exposes medical records, PII on unprotected server


Once again, information was left exposed on an unprotected server – this time by an affiliate of Meditab, a California maker of medical records software sold to doctors, pharmacies and hospitals. Researchers at SpiderSilk found that anyone could read in realtime unencrypted medical records, personal information, drug prescriptions, doctors’ notes and the like from faxes…

Sen. Elizabeth Warren: Break up big tech to promote privacy and competition


Sen. Elizabeth Warren, D-Mass., is calling for the break up of big tech companies including Google, Amazon, Facebook and even Apple. Citing weak antitrust enforcement leading to a dramatic reduction in competition and innovation in the tech sector, on Friday, the Massachusetts Democrat released an op-ed arguing for the break up of the tech giants…

Dutch Data Protection Authority chips away at ‘cookie walls,’ declaring they violate GDPR


Websites that restrict visitors from viewing and interacting with their content unless they first accept the use of cookies that track their browsing activities are violating the terms of the European Union’s General Data Protection Regulation (GDPR), the Netherlands’ Dutch Data Protection Authority (DDPA) has determined. Also known as the Autoriteit Persoonsgegevens (AP), the DDPA…

Meeting GDPR standards doesn’t guarantee Calif. privacy law compliance, experts warn


Soon to be the most restrictive privacy law in the U.S., the California Consumer Privacy Act is set to take effect in January 2020. And companies that sit back and assume their compliance with GDPR is enough to meet the new legislation’s high expectations are in for a rude awakening, warned a panel of privacy…

Is PSD2 the next GDPR? Not quite, but…(video)


The finance, banking and payment services industries have until September 2019 to comply with PSD2, a revised set of European Union regulations that give consumers more options and safer ways to make payments online. At RSA 2019, Geoff Sanders, director of product at anti-fraud and MFA company iovation (and former co-founder and CEO of iovation…

Report: Apple demands companies obtain consent before recording users’ app sessions


Apple has reportedly issued an ultimatum to companies that rely on “session replay” tools to track the way users interact with their iPhone apps: disclose the practice and seek explicit consent for it, or be removed from the app store. Apple’s mandate comes after a TechCrunch report last Wednesday revealed that Air Canada, Hollister, Expedia,…

Amazon Logo

National Enquirer threat to reveal intimate Bezos pics trains focus on privacy protection


By going public with alleged extortion attempts, Amazon CEO Jeff Bezos may have thwarted the National Enquirer’s attempts to quash the Washington Post’s probe into the tabloid media company’s practices, but the incident also turned a harsh spotlight on unethical, potentially illegal acts and ratcheted up concerns about privacy. In a Thursday blog post, Bezos…

Next post in Network Security