Legal Design ITLab StartupPro

The new ISO 27552 standard is an extension to ISO 27001/02, and expands the mandatory clauses and controls,to encompass privacy requirements

This new international standard is officially called
ISO/IEC 27701 (Security techniques — Extension to
ISO/IEC 27001 and ISO/IEC 27002 for privacy information
management — Requirements and guidelines). The introduction of ISO/IEC 27701 is a necessary addition to the existing standards
portfolio. Implementing the controls specified in ISO/IEC 27701 should enable an
organization to document evidence on of how it handles the processing of personal
information. Such evidence may be used to facilitate agreements with business partners
where the processing of personal information is mutually relevant and in the event
of gaining a widely accepted certification mechanism, can assist in demonstrating
compliance with data protection laws such as GDPR.

Regulator looking at use of facial recognition. Use of the technology must be ‘necessary and proportionate’

The Information Commissioner’s Office warned businesses using the surveillance technology that they needed to demonstrate its use was “strictly necessary and proportionate” and had a clear basis in law.

The data protection regulator added it was “currently looking at the use of facial recognition technology” by the private sector and warned it would “consider taking action where we find non-compliance with the law”.

Design Thinking, una modalità per fare innovazione. Verso una Privacy by design-thinking..

La definizione di Design Thinking è un modello progettuale utilizzato per risolvere problemi complessi impiegando una visione e una gestione creative, codificato attorno agli anni 2000 in California dall’Università di Stanford. È considerato un approccio democratico capace di mobilitare tutte le risorse aziendali, visto che consente ai membri di contribuire alle soluzioni. È centrato sulla persona e sulla sua capacità di sviluppare un pensiero sia come soggetto ideatore sia come destinatario del progetto.

British Airways faces $230M GDPR fine for 2018 data breach

The breach, which BA disclosed in September, saw people visiting its website being diverted to a fraudulent site, where details including name, billing address, email address and payment information were harvested.

Introduce Yourself (Example Post)

This is an example post, originally published as part of Blogging University. Enroll in one of our ten programs, and start your blog right. You’re going to publish a post today. Don’t worry about how your blog looks. Don’t worry if you haven’t given it a name yet, or you’re feeling overwhelmed. Just click the …

Continua a leggere “Introduce Yourself (Example Post)”