The United States Federal Trade Commission (FTC) has released Consumer Sentinel Network Data Book for January - December 2013 (February 2014), which provides an overview of the complaints received by the FTC in 2013. The FTC received over 2 million complaints during the calendar year 2013, of which 55% related to fraud, 14% related to identity theft and 31% related to other types. Identity theft was the number one complaint category, 30% of which were tax- or wage-related.
United Kingdom (UK)-based bank Barclays has advised (9 February 2014) that it has notified regulators including the UK Information Commissioner's Office (ICO) of a consumer data breach that "appears to be criminal action". According to Daily Mail, the files on at least 2,000 Barclays customers have been leaked, as evidenced by portable data storage device handed to the Daily Mail's offices by an anonymous informant.
The United States (US) Department of Justice (DoJ) has made available DoJ criminal division Acting Assistant Attorney General Mythili Raman's testimony (4 February 2014) before the US Senate Committee on the Judiciary (the Committee) for its hearing on Privacy in the Digital Age: Preventing Data Breaches and Combating Cybercrime.
The United States (US) Federal Trade Commission (FTC) has released a Statement (31 January 2014) marking its 50th data security settlement. The terms of the milestone settlement are set out in Agreement containing consent order (undated), which proposes prohibitions and other requirements of California-based GMR Transcription Services Inc (GMR).
Whitehouse.gov has made available its blog post Big Data and the Future of Privacy (23 January 2014), which advises that the White House, at the request of United States President Barack Obama, is to conduct a "comprehensive review" of various elements of privacy and data protection.
Apple Inc (Apple) has released Update on National Security and Law Enforcement Orders (27 January 2014) (the Update), which provides data to replace the United States (US)-specific data contained in Apple's Report on Government Information Requests (5 November 2013) (the Report).
Data Privacy Day is celebrated on Jan 28 every year. Why not take this opportunity to strengthen your Data Privacy and Data Protection program? Here are some program elements to consider:
The Republic of Korea government is preparing legislative amendments that would increase the maximum fine for a financial institution's failure to protect customer data more than 800-fold to KRW5 billion (approximately US$4.7 million/€3.4 million). The development is reportedly part of the government's response to the recent leak of the personal details of 15 million people who held credit card accounts with nationally-based entities KB Financial Group Inc, NongHyup Financial Group Inc and Lotte Group.
Starbucks Corporation (Starbucks) has made available a letter (16 January 2014) from its chief information officer Curt Garner that encourages customers to download a software update to its mobile app for iOS devices after "a research report identified theoretical vulnerabilities associated with [the app] in the event a customer's [iOS device] were to be physically stolen and hacked".
The United Kingdom (UK) Information Commissioner's Office (ICO) has urged organisations to ensure they have "a clear personal device at work policy", highlighting a recent incident in which a Royal Veterinary College (RVC) worker lost a digital camera containing the images of six RVC applicants.
- Anti-Bribery & Anti-Corruption (125)
- Anti-Money Laundering (107)
- Business Ethics and Corporate Culture (154)
- Careful Communication and Proper Use of Computers (15)
- Code of Conduct (6)
- Competition (185)
- Confidentiality and Intellectual Property (28)
- Conflicts of Interest (17)
- Consumer Protection (307)
- Corporate Responsibility and Sustainability (198)
- Employment and Workplace Issues (335)
- Environment, Health & Safety (151)
- Financial Integrity (187)
- Government Contracting (20)
- Information Security (37)
- Insider Trading (81)
- Other (2)
- Privacy and Data Protection (192)
- Records Management (16)
- Respect in the Workplace (6)