Search
Content type: News & Analysis
A widely-leaked version of the first legislative proposal for a General Data Protection Regulation is making its way through Brussels and beyond. The purpose of this 'Regulation' is to provide a new tool for harmonising the protection of personal data across the European Union, and one that takes into consideration the current legislative and technological environment. The key point is that Europe's rules on privacy are often taken as an example to the world -- and provide a rare…
Content type: News & Analysis
Gradually and almost imperceptibly, we have immersed ourselves in a global hypermedia environment. This environment increasingly contains everything we do: we work, we play, we organize within it. Our lives have been, in essence, turned inside out and dispersed in endless ethereal clouds - multi-verses - that follow us around in extra dimensionality. “Big Data” refers to the endless digital grains of sand we produce as we move, think and act. Internet Service Providers, web hosting companies,…
Content type: News & Analysis
Last year, Index on Censorship published an interview with Google’s chief legal officer and senior vice president David Drummond. The company was still reeling from the aftermath of the news that an attack had been launched on Gmail from China. Drummond proposed that free speech needed to be part of the international agenda at multilateral and bilateral trade discussions, just like piracy. 'Western governments whose economies certainly benefit from the internet sector should make this happen,'…
Content type: News & Analysis
Independent security researcher Trevor Eckhart revealed yesterday that a recent software update to some HTC smartphones has accidentally given third party applications access to huge amounts of private data, including call logs, geolocation history, SMS data and a whole lot more.
The update surreptitiously installs a suite of applications logging users' interactions with their devices. When a device is first switched on, the user ostensibly has the option not to allow HTC to…
Content type: News & Analysis
The second 2011 meeting of the APEC Privacy Subgroup took place in San Francisco in mid September, and finalised the package of documents that comprise the Cross Border Privacy Rules (CBPR) system. Endorsed by the parent Electronic Commerce Steering Group (ECSG), these will now go forward for ratification by Ministers in Hawaii in November, and subsequent implementation. The Subgroup’s 2012 Work Plan envisages establishment of the Joint Oversight Panel (JoP), commencement of…
Content type: News & Analysis
On the 2nd of August 2011 the Hamburg Commissioner for Data Protection and Freedom of Information has called on Facebook to delete the feature on the social networking site that automatically recognizes facial features and "tags" users when others upload photos of them. According to the local German data protection authority the feature is a violation of local and European data protection laws, and Facebook should adapt the feature to European data protection law or suspend the use of the…
Content type: News & Analysis
Few understand why we focus on refugee privacy. Funders don’t understand it so don’t fund it; the public see the plight of refugees as seen on TV, not as a privacy issue; and often times the international community does everything it can to increase scrutiny of refugees. In this blog, I highlight the privacy issues facing refugees and how these issues can jeopardize refugees’ safety as much as any of the environmental, social, or political risks refugees encounter.
Refugees are amongst…
Content type: News & Analysis
Other human rights organisations often ask us what they should to when it comes to their infosec needs. Should they run their own mail server, or trust Gmail? Should they merge their calendars by email (!), a local server, or use some cloud solution?
We honestly don't know what to tell them. In fact, we are unsure of what we ourselves should be doing. We know that there are risks of keeping things local (e.g. lack of redundancy), and there are risks of data being stored…
Content type: News & Analysis
PI just received a response from Secretary General Thorbjørn Jagland of the Council of Europe (CoE) stating that the CoE is refusing to start an investigation on the collection and storage of citizens biometric data by member states. On 31 March an international alliance of organisations and individuals lodged a petition calling on him to start such an indepth survey under Article 52 of the European Convention on Human Rights (ECHR).
In his answer, received this week, Secretary…
Content type: News & Analysis
An international alliance of organisations and individuals from 27 countries has lodged a petition calling on the Council of Europe to start an indepth survey on the collection and storage of biometric data by member states.
European governments are increasingly demanding storage of biometric data (fingerprints and facial scans) from individuals. These include storage on contactless 'RFID' chips in passports and/or ID cards. Some are going even further by implementing…
Content type: News & Analysis
2011 is supposed to be the year that the APEC pathfinder projects on Cross Border Privacy Rules (CBPR) deliver a functional system for businesses to be certified for transfer of personal information between participating APEC economies.
After the last round of APEC privacy meetings in Washington DC on 1-3 March, this prospect is looking increasingly remote. Even the basic set of documentation and processes required for the process of self-certification and assessment of businesses has yet to…
Content type: News & Analysis
Skype has consistently assured that it protects its users and their communications. Having reviewed the company's technology and policies we have grounds for concern about Skype's overall level of security, and we believe there are a number of questions to which the company must respond. Skype's misleading security assurances continue to expose users around the world to unnecessary and dangerous risk. It's time for Skype to own up to the reality of its security and to take a leadership…