Archive
Zurich Insurance hit with $3.5m fine…
David Meyer from ZDNet reports that Zurich Insurance was hit with a $3.5m fine by the Financial Services Authority (FSA) in the UK for failing to secure customer data. This comes from an incident when a data tape went missing in transit between processing centers. There was no evidence the data on the tape had been used or exposed, but the lack of process and policy was enough to cause the FSA and step in.
The FSA noted in their statement that:
As there were no proper reporting lines in place Zurich UK did not learn of the incident until a year later
An effective breach of the UK Data Protection Act according to the Information Commissioners Office (ICO).
European Commission requests the UK to strengthen Data Protection Regulation…
This week the European Commission requested the UK to strengthen its data protection legislation to align with the EU Data Protection Directive. Claiming the UK regulations offered less protection than those required under EU rules, the UK has two months to consider the opinion and respond with measures to bring them into line.
The EU highlighted the following points:
1. The ICO cannot monitor third party country data protection rules – assessments which should come before international transfer of personal information
2. The ICO can neither perform random checks on people using or processing personal data, nor enforce penalties following the checks.
The full writeup can be found on the Europe EU Law press release page.
Who?
 | EVP Cyber Product Innovation for Mastercard. Formally the Chief Technology Officer for Intel Secure Home Gateways, CTO for McAfee Enterprise Endpoint, CTO McAfee Innovation team, and Founder/CTO SafeBoot Corp. |
Simon Says - Musings of a Technology CTO 
Comments