Privacy & Compliance | SC Media

Privacy & Compliance

Report: Apple demands companies obtain consent before recording users’ app sessions

By

Apple has reportedly issued an ultimatum to companies that rely on “session replay” tools to track the way users interact with their iPhone apps: disclose the practice and seek explicit consent for it, or be removed from the app store. Apple’s mandate comes after a TechCrunch report last Wednesday revealed that Air Canada, Hollister, Expedia,…

Amazon Logo

National Enquirer threat to reveal intimate Bezos pics trains focus on privacy protection

By

By going public with alleged extortion attempts, Amazon CEO Jeff Bezos may have thwarted the National Enquirer’s attempts to quash the Washington Post’s probe into the tabloid media company’s practices, but the incident also turned a harsh spotlight on unethical, potentially illegal acts and ratcheted up concerns about privacy. In a Thursday blog post, Bezos…

Airline e-ticketing vulnerability exposes passenger PII

By

A vulnerability in numerous airline e-ticketing systems can expose customer data via unencrypted check-in links that hackers can easily intercept, researchers at Wandera said. “The intercepted and unencrypted links enable unauthorized third parties to view, and in some cases even change, a user’s flight booking details, and/or print their boarding passes,” the researchers, who discovered…

facebook

Germany bans Facebook from combining user data without permission

By

Germany’s Federal Cartel Office, or Bundeskartellamt, on Thursday banned Facebook from combining user data from its various platforms such as WhatsApp and Instagram without explicit user permission. The decision, which comes as the result of a nearly three-year antitrust investigation into Facebook’s data gathering practices, also bans the social media company from gleaning user data…

Amazon’s Ring allegedly let employees access customer video feeds

By

Amazon’s Ring devices reportedly granted the company’s Ukraine-based research and development team as well as U.S. executives and engineers virtually unfettered round the clock access to live feeds from some customer’s cameras, claims which Ring denies. The workers, regardless of whether they needed the information or not, allegedly had access to a folder on Amazon’s…

Federal appeals court says police must get warrants for wireless location data

Report: Wireless geolocation data being resold to unauthorized parties

By

U.S. mobile carriers T-Mobile, Sprint and AT&T have been sharing customers’ geolocation information with third-party partners, who go on to sell that data to additional companies until it winds up in the hands of unauthorized individuals. Citing anonymous sources, a new exposé from Motherboard focuses heavily on the credit reporting company MicroBilt, which is known to purchase carrier…

California forecast: Mostly sunny with a chance of a Weather Channel privacy lawsuit

By

The State of California is suing The Weather Company (TWC) for allegedly misleading users about why their extremely precise location data was needed. The lawsuit claims TWC  told its users that it collects data to personalize alerts and forecast but in reality, uses the data to profit from the selling of location data to advertisers,…

Not using Facebook? Apps still sharing your data with the company, says study

By

A newly released study of 34 prominent Android apps found that roughly 68 percent of them share user data with Facebook even when the device operator isn’t actively logged into the social media service or, for that matter, never created a Facebook account. In such instances, the apps typically communicate to the social media giant…

Facebook subjected to lawsuit, exposé over user data practices

By

District of Columbia Attorney General Karl Racine yesterday filed a civil lawsuit against Facebook, claiming the social media giant’s failure to properly safeguard its users’ data constitutes a violation of the district’s Consumer Protection Procedures Act (CCPA). The lawsuit seeks payment from Facebook in the form of financial restitution and civil penalties, and also asks the…

Data Care Act introduced by Democrat Senate group

By

A group of 15 Senators has introduced the Data Care Act, a measure designed to protect Americans information online and penalize companies that do not properly safeguard such data. The Data Care Act, introduced by Sen. Brian Schatz, D-Hawaii, would require websites, apps, and other online providers to take responsible steps to safeguard personal information and…

Next post in Security News