April 28, 2018,
Guru in a Bottle 
No comments
Great to see so many people at the excellent CIPD Learning & Development Conference 2018 at Olympia, London on Thursday 26 April 2018. I managed to catch up with my colleagues at the Henley Business School stand as well as bump into my publisher Helen Kogan, CEO, Kogan Page! I delivered a presentation about GDPR and HR – busy times!
April 28, 2018,
EU General Data Protection Regulation, GDPR Handbook, Henley Business School, Legal update, News, Thought Leadership No comments
Facebook and Cambridge Analytica now face a series of class actions for ‘surveillance capitalism’ in the US – will this open the floodgates for similar legal actions across the world?
Class Action Complaint Case No. 18-cv-02276 has been brought by Patricia King (Plaintiff) in the US District Court for the Northern District of California and has asked for trial by jury.
The class action reads as follows:
1. Facebook is a social networking platform that engages in surveillance capitalism: It monetizes personal and behavioral data which it acquires through real-time surveillance of Facebook users. (see Shoshana Zuboff, Big Other: Surveillance Capitalism and the Prospects of an Information Civilization, 30 J. Info. Tech. 75 (Apr. 4, 2015), available at http://ssrn.com/abstract=2594754).
2...
April 7, 2018,
EU General Data Protection Regulation, European Commission, GDPR Handbook, Henley Business School, News, Thought Leadership No comments
Unfortunately, the article in the current edition of my favourite business newspaper The Economist in explaining the GDPR was riddled with errors. Tut tut!
Here’s an example: “Data Subjects can demand a copy of the data held on them (data portability) …” which as we all know is a subject access request (SAR) and isn’t an absolute right under the GDPR.
Another error in the article on GDPR is the bold assertion: “The GDPR is prescriptive about what organisations have to do to comply.”
Er, no it isn’t. Few bits go into detail, like the requirements for a data protection impact assessment (Art.35, GDPR) or a subject access request (Art. 15, GDPR).
The GDPR is a deliberate move away from a ‘tick-box’ approach of the Data Protection Directive 95/46/EC that it replaces and moves to a risk-ba...
April 7, 2018,
EU General Data Protection Regulation, European Commission, Guru in a Bottle, Henley Business School, Legal update, News, Social marketing practice, Thought Leadership No comments
The Economist reports today (7 April 2018) that there’s been a bit of wake up call for Facebook and all other social media giants as a result of the furore over the mis-use of personal data. Mark Zuckerberg is openly admitting that Facebook data of up to 87 million people – 37 million more than previously reported – may have been improperly shared with Cambridge Analytica.
As a result of a data breach on a scale not seen since Yahoo!, Americans are looking enviously at Europe where data protection, privacy and security laws protecting the individual are now the global ‘gold standard’ as a result of the GDPR that’s fully enforceable from 25 May – just 34 working days from today.
Rights over personal data are enshrined in the EU’s Charter of Fundamental Rights and EU citizens now have...
Read More
March 30, 2018,
EU General Data Protection Regulation, GDPR Handbook, News, Thought Leadership No comments
Published globally by Kogan Page and available on Amazon from 3 June 2018. Price: £49.99/$85.00. Foreword written by Elizabeth Denham, UK Information Commissioner.
Contents: (1) Speed read of the GDPR (2) The role of the Data Protection Officer (3) The gap between policy, company appetite and reality (4) Upward and downward communication (5) Identifying risks (6) Sanctions, compliance and fines (7) The Data Protection Impact Assessment (8) Privacy and Security Breach Management (9) Managing the Value Chain (10) Introducing Data Protection by Design and by Default (11) Contracting out personal data processing (12) Data incident breach: obligations, implications and management (13) Security standards (14) Implementing Data Protection by Design and by Default (15) Technical security measures...
Read More
March 25, 2018,
EU General Data Protection Regulation, Events, News No comments
Mark Zuckerberg’s “confessional” on CNN broadcast on Thursday 22 March 2018 was a blatant attempt at a public relations ‘damage limitation’ exercise.
I’m not convinced it had the desired effect.
Facebook’s share price continues to fall and pressure for an investigation of the company and its dealings with UK-company Cambridge Analytica continues to mount on both sides of the Atlantic.
“This is a major breach of trust and we are sorry about that, ” says Zuckerberg. Right. But you can’t help feeling he’s trying to play the ‘victim’ of some unwitting scam.
Facebook have made one bad mistake after another – whether that’s providing a platform for sexual exploitation of women and children or the spread of toxic extremist ideology of sick, evil terrorists.
And judging by the law suits its fa...
Read More
March 25, 2018,
Consumer behaviour, EU General Data Protection Regulation, Legal update, News, Social marketing practice, Thought Leadership No comments
Last chance saloon for social media giants, warns Matthew Hancock, Secretary of State, DCMS as British Government raises the prospect of a ‘breach of duty of care’ owed to users of social media services and promises more legislation unless they get themselves sorted out.
Speaking to The Sunday Times (25 March 2018), Hancock said Facebook and other tech giants that harvested personal data from users would be ordered to simplify their terms and conditions so they fitted on a single page.
He’s summoned Facebook, Google and Twitter to a showdown next month following revelations about the way Facebook data was used by the UK firm Cambridge Analytica to help Donald Trump’s Presidential election campaign.
A cloud still hangs over the prospect of unlawful profiling of UK citizens to influence ...
March 25, 2018,
EU General Data Protection Regulation, News, Thought Leadership No comments
On Friday 23 March 2018, the BSI (British Standards Institution) has certified Hitachi Consulting Corporation, a subsidiary of Hitachi, Ltd (TSE: 6501), to a new standard of excellence in data protection, privacy and security developed under the General Data Protection Regulation (GDPR).
Hitachi Consulting becomes one of the first companies in the UK to achieve compliance with the BS 10012:2017 data protection standard for its personal information management system (PIMS) that sits at the heart of its compliance with the GDPR.
“We are immensely proud of this recognition from the one of the world’s leading certification bodies...
Recent Comments