Tag: data protection

Facebook faces European probe

european-commissionData protection authorities in the European Union are getting edgy about Facebook’s privacy policy, it’s been reported.
Facebook released a new privacy policy at the end of last week which, among other things, even tracks you when you’re not logged into the social network.
You are automatically “upgraded” to the new privacy policy but you can choose to opt out.
According to PC World, authorities in Belgium, the Netherlands and Germany have formed a group in the belief that Facebook may breach the European Union’s privacy rules.
Other elements of Facebook policy the authorities are investigating include it claiming rights to data from profiles for business, and sharing of data with third parties.
The same report says that German authorities are worried about Facebook sharing information with its subsidiaries, such as Instagram.
Facebook always maintains that anything it does is to help individual users.
But the company makes its revenues from advertising – and its users are a means to that end.
European data protection authorities are increasingly cooperating with each other to keep multinationals like Facebook and Google on their toes.
The British ICO recently extracted a promise from Google that it would work to improve its privacy policy in Europe.


Redstor appoints new channel sales manager


rstoreblogCloud and data protection company Redstor has appointed a new channel sales manager in the UK, Richard Morecroft.

Redstor hopes Morecroft will bring about increased support and focus for existing channel partners.

He previously worked at BT, Cisco and Vodafone, as well as a consultant who lead implementations for start-ups, including work with top tier companies like IBM, HP, Dell, Fujitsu-Siems and Sony.

“Data management is growing at a very fast pace, with data management becoming increasingly valuable to every company and country,” Morecroft said. “I am keen to find new routes to market for Redstor”.

Redstor, with Morecroft’s help, is planning an expansion to its partner programme in the UK, and potentially selling in the US market.

Dell attempts to clear the air on data laws

dellsig Dell SecureWorks has teamed up with European law firm Field Fisher Waterhouse (FFW) in a bid to dispel common myths about data protection laws.

A whitepaper looks at current laws and exactly how they impact security implementation in the EMEA region, as well as providing some pointers on using external Managed Security Service Providers (MSSP) for security.

Top myths, according to the report, are as follows: using a third party to process personal data isn’t permitted, transferring data outside the European Economic Area can’t happen, organisations can’t use cloud services for processing or storing personal data, and foreign security and law enforcement authorities automatically have access to personal data.

Data protection law, the report points out, applies almost exclusively to data controllers, meaning the office which decides why and how that data is processed. On the other hand there are data processors, for example, a person who processes that data on behalf of a controller, whether that’s an agent, contractor or service provider, without deciding why and how that data is processed.

Processors, Dell says, are not usually subject to European data protection law.

The ever expanding volume and types of cyber attack make it more difficult for companies to protect themselves. At the same time, laws governing how data is handled are becoming more strict. So it makes sense for organisations to use external security like MSSPs to make sure there is data compliance at the country level, the regional level, and global laws. Dell’s report argues how and why legislation supports these moves.

Stewart Room, partner at Field Fisher Waterhouse, said that compliance with security and data protection laws is vital – but some businesses are unsure of how to tackle the problem.

“It is no wonder businesses lack clarity as the requirements vary for different countries, within the EEA and globally,” Room said. “We have developed this whitepaper with Dell SecureWorks to provide guidance and reassurance for organisations and we have found that the laws in EMEA support the use of external providers such as good quality MSSPs which provide better data security because of their enhanced level of expertise, awareness and threat intelligence”.

The report is available on the Dell Secureworks website, here.