France's data protection authority the Commission nationale de l'informatique et des libertés (CNIL) has announced that it has ceased its monitoring of SAS Hypercosmos, since the shopping centre operator has fully complied with a CNIL request to end the excessive use of video surveillance and biometrics.
The United States Securities and Exchange Commission (SEC) has ordered (25 July 2014) alternative trading system (ATS) operator and Citigroup unit LavaFlow to pay a total of US$5 million to settle charges that it "fail[ed] to protect the confidential trading data of its subscribers".
The Office of the Privacy Commissioner of Canada (OPCC) published Wearable Computing - Challenges and opportunities for privacy protection (undated), a report by the OPCC research group, on 3 July 2014. The report aims to "provide the OPCC with a better understanding of the privacy implications of wearable computing technologies[,] as a foundation for the OPCC's advice to Parliament, policy position development and future compliance activities".
The United States Federal Trade Commission (FTC) has published Data Brokers - A Call for Transparency and Accountability (May 2014), a report resulting from an FTC study of nine data brokers "to shed light on the data broker industry". The overall finding of the report is that "data brokers operate with a fundamental lack of transparency".
Google has made available an online form for users to request that Google remove search results for queries that include their name where those results are "inadequate, irrelevant or no longer relevant, or excessive in relation to the purposes for which they were processed". The form implements a recent ruling (13 May 2014) by the Court of Justice of the European Union, which found that certain users can ask search engines to remove search results for the above reasons.
The Information Commissioner's Office (ICO) has advised that Student Loans Company Limited (SLCL) has signed an undertaking (undated) to comply with the seventh data protection principle, following three separate incidents involving the disclosure of documents containing sensitive customer information, including medical details and a psychological assessment, to the incorrect people.
The Data Inspection Board (DIB) has made available Personal Information In Social Media (May 2014 - Swedish language version available only), a guide detailing the requirements under data protection law imposed upon organisations that use social media such as Facebook, YouTube, Instagram, LinkedIn, Google Plus, Flickr and Pinterest.
Online music streaming service Spotify has published a notice (27 May 2014) advising users of an information security breach that compromised the non-financial data of one of its users. Spotify states that it "will be asking certain Spotify users to re-enter their username and password to log in over the coming days" as a general precaution, and as a further precaution will guide users on the Android operating system to upgrade their Spotify software.
- Anti-Bribery & Anti-Corruption (135)
- Anti-Money Laundering (129)
- Business Ethics and Corporate Culture (173)
- Careful Communication and Proper Use of Computers (15)
- Code of Conduct (6)
- Competition (217)
- Confidentiality and Intellectual Property (35)
- Conflicts of Interest (19)
- Consumer Protection (385)
- Corporate Responsibility and Sustainability (207)
- Employment and Workplace Issues (367)
- Environment, Health & Safety (172)
- Financial Integrity (229)
- Government Contracting (26)
- Information Security (47)
- Insider Trading (94)
- Other (2)
- Privacy and Data Protection (213)
- Records Management (18)
- Respect in the Workplace (6)