Issue 42 | Privacy laws and Business | Compliance | Security

Latest Resources

Breaking Global News
Global Compliance and Privacy News - Breaking News, updated every 30 minutes
•   Compliance, Privacy and Security
•  Money Laundering
•  Phishing
•  Regulatory Issues
•  SOX, Basel 2, MiFID

You Tell Us:

News
Are Smartphones Endangering Security? - Wick Hill
Dealing with Internet Security Threats - Ian Kilpatrick
How the New EU Rules on Data Export Affect Companies in and Outside the EU - Thomas Helbing
Farmers' Data Leak Highlights Old Technology Use - Wick Hill
Saving Money with SFTP - Wick Hill
UK Information Commissioner targets firm selling vetting data - Eversheds e80
12 Key Steps to Internet Security - Wick Hill
Telephone Monitoring Legality in the UK - Dechert
Firewall or UTM - Wick Hill
UK Information Commissioner demands mobile device encryption - Eversheds e80
Data loss - liability, reputation and mitigation of risk - Eversheds e80
Phorm, Webwise and OIX - BCS Security Forum
The challenges of PCI DSS compliance - Thales, Russell Fewing
"Quality" Data Vendor Spams us! Editor astounded!
National Gateway Security Survey 2008 - Wick Hill
Unified Threat Management - Watchguard Technologies

news archives:
0 | 1 | 2 | 3 | 4 | 5 |
6 | 7 | 8 | 9 | 10 | 11 |
12 | 13
[What is this?]

Industry Blogs
• Tim Berners Lee's Blog
• Tim Callan's SSL Blog
• Davis Wright Tremaine's Privacy & Security Law Blog
• Emergent Chaos Blog
• Michael Farnum's Blog
• Phillip Hallam-Baker's Blog - The dotFuture Manifesto: Internet Crime, Web Services, Philosophy
• Stuart King's Security and Risk Management Blog
• David Lacey's IT Security Blog
• Metasploit Official Blog
• Jeff Pettorino's Security Convergence Blog
• Jeff Richards's Demand Insights Blog
• David Rowe's Risk ManagementBlog
• Bruce Schneier's Security Blog
• Larry Seltzer's Security Weblog
• Mike Spinney's Private Communications Blog
• Richard Steinnon's Threat Chaos Blog
• The TechWeb Blog
• Tim Trent's Marketing by Permission Blog
• Rebecca Wong 's DP Thinker Blog

Newsletters
23 February Newsletter
Newsletter Archives are located in "News"

Industry Update
Internet Security Intelligence Briefing - November 2005
Find out the latest trends in e-commerce, web usage & the latest threats from adware/Spyware

Reports
Phorm, Webwise and OIX - BCS Security Forum
'The Any Era has Arrived, and Everyione has Noticed' - Stratton Sclavos - VeriSign
Identity Security - Time to Share
Malicious code threats - iDefense
Public Alerts - updated as they happen from Stopbadware.org
Public Alerts - updated as they happen from Websense
Public Advisories - updated as they happen, from iDefense
Phoraging - Privacy invasion through the Semantic web: a special report by Mike Davies of VeriSign

Legislation
Privacy Laws & Business International E-news, Issue 57
Privacy Laws & Business UNited Kingdom E-news, Issue 60

Security Reviews
February 2007 - VeriSign Security Review
The security review archive is here

Case Studies
Finance Industry
Case Study Example
A case study on a Finance industry company.

White Papers
VeriSign® Intelligent Infrastructure for Security
VeriSign® Intelligent Infrastructure: An Overview
Identity Protection Fraud Detection Service - description of the service
Life of a Threat - Video on Threat Management Lifecycle
Optimizing Enterprise Information Security Compliance - Dealing with all the audits
For a full list of all whitepapers, visit our Whitepaper library

Legal Notices
Privacy Policy
Terms of use

PL&B International E-news, Issue 42

Art 29 DP Working Party adopts Opinion on whistleblowing schemes

PL&B's Washington Director, Jane Horvath, appointed Chief Privacy Officer at US Department of Justice

AOL sues gangs in Virginia, USA, over identity thefts, using new law

1. Art 29 DP Working Party adopts Opinion on whistleblowing schemes

The Art 29 Data Protection Working Party, consisting of the 25 Member States' Data Protection Authorities and the European Commission and the EU DP Supervisor, issued an Opinion on February 1st (WP 117) “on the application of EU data protection rules to internal whistleblowing schemes in the fields of accounting, internal accounting controls, auditing matters, fight against bribery, banking and financial crime.” The Opinion deliberately excluded schemes which included other issues, such as Human Resources matters and environmental damage but the Working Party declared that it would return to this issue later.

There is an article on this Opinion, comparing it with last November's decision on whistleblowing by France's DPA, the CNIL, in the PL&B International Newsletter published today. For further information click here

2. PL&B's Washington Director, Jane Horvath, appointed Chief Privacy and Civil Liberties Officer at US Department of Justice

Jane Horvath, who has served as Director of Privacy Laws & Business's Washington DC office since mid-2005 took up a new appointment on February 20th as Chief Privacy and Civil Liberties Officer of the United States Department of Justice reporting to the Deputy Attorney General.

Her new job will be to lead the privacy function at the Department of Justice. In addition to her responsibilities regarding the U.S. Privacy Act and E-Government Act, she will also be wrestling with a number of privacy/civil liberties issues that have arisen with regard to the United States increased security after September 11, 2001.

Her work will certainly focus on the United States' use of commercial information -- an area which she focused on at PL&B where she wrote an article entitled, "US Department of Homeland Security grapples with the risks of using commercial data" (which appeared in Privacy Laws & Business International December 2005 pp.18-20). As security does not stop at the U.S. borders, Jane's insights into the international privacy arena, gained while working with Privacy Laws & Business, were undoubtedly a factor in securing her new job.

Stewart Dresner, Chief Executive, Privacy Laws & Business, says: "In the time that Jane has been with Privacy Laws & Business, she has been a major asset in providing insights into the US privacy scene and the international privacy law information needs among major corporations in the United States. In addition, she has been helpful in preparing for our first workshop in the USA, to be held in Washington DC on March 8th on "Negotiating Successful Binding Corporate Rules Programs for International Transfers of Personal Data; Hot Privacy Issues for HR Managers in the European Union".

We at Privacy Laws & Business wish Jane success in her new role and will miss her valuable contributions."

3. AOL sues in Virginia USA over identity thefts, using new law

America Online said on February 28th that it had filed lawsuits this week against three identity theft gangs, seeking combined damages of $18 million.

AOL, the online division of Time Warner, said that it had filed three civil suits in Alexandria's U.S. District Court for the Eastern District of Virginia, charging phishing gangs with tricking its members with fake Web sites of legitimate companies to fool them into giving up personal information.

The suits were filed under Virginia's anti-phishing statute, adopted in July 2005, the Federal Lanham Act, a trademark law, and the Federal Computer Fraud & Abuse Act, an anti-spam, or junk mail law.

Source: Reuters

There is an article in the PL&B February/March International Newsletter, published yesterday, on the prospects of data protection laws in Europe being used to require companies to inform consumers of data security problems, as required by California's data breach notification law and other similar laws in the USA.

For further details on the Privacy Laws & Business International Newsletter, please click here .