Breach Notification

1 February 2013 at 9:15am

Reporting Information Security Breaches

Andrew Cormack
Breach Notification
incident response
Data Protection Regulation
An interesting, though depressing, figure from Verizon’s 2012 Data Breach Investigations Report is that 92% of information security breaches were discovered and reported by a third party. Not by the organisation that suffered the breach, nor by its customers who are likely to be the victims of any loss of personal data, but by someone else.
Read more
12 October 2012 at 9:32am

EU Network and Information Security legislation

Andrew Cormack
Breach Notification
Botnets
Cybercrime
ENISA
Information Security
I’ve submitted a Janet response to a European consultation on a future EU Network and Information Security legislative initiative.
Read more
20 September 2012 at 12:15pm

ENISA on cyber incident reporting

Andrew Cormack
Breach Notification
Data Protection Regulation
ePrivacy Directive
incident response
eSignature Directive
ENISA have  published an interesting report on cyber incident reporting. Their scope is wide – incidents range from the failure of a certificate agency to storms creating widespread power (and therefore connectivity) outages.
Read more
13 August 2012 at 10:59am

MoJ Summary of Data Protection Responses

Andrew Cormack
Access Management
Breach Notification
Data Protection Regulation
Privacy
incident response
Cloud computing
The Ministry of Justice have published a summary of the responses to their consultation on European Data Protection proposals. On the issues we raised around Internet Identifiers, Breach Notification and Cloud Computing there seems to be general agreement with our concerns.
Read more

2010 - Department for Business Innovation and Skills consultation on implementing the EU Telecoms Framework

Andrew Cormack
Thursday, June 28, 2012 - 14:08
Cookies
Breach Notification
spam
This is JANET(UK)’s response to the Department for Business, Innovation and Skills consultation on Implementing the Revised EU Electronic Communications Framework. JANET(UK) is the operator of JANET, the UK’s National Research and Education Network, that connects universities, colleges, research organisations and regional schools networks to each other and to the Internet.
Read more

2012 - Ministry of Justice call for evidence on EU Data Protection Proposals

Andrew Cormack
Thursday, June 28, 2012 - 13:39
Data Protection Regulation
Privacy
incident response
Cloud computing
Breach Notification
This is Janet’s response to the Ministry of Justice call for evidence on the European Commission’s data protection proposals. The JNT Association, trading as Janet, is the non-profit company limited by guarantee that operates the Janet network connecting education and research organisations in the UK to each other and to the Internet.
Read more
12 June 2012 at 9:30am

Draft EU Regulation on eIdentities

Andrew Cormack
Access Management
Breach Notification
eSignature Directive
The European Commission have proposed a draft eIdentity Regulation, to replace the current eSignatures Directive (99/93/EC). While the proposal is mostly concerned with inter-operability of national electronic IDs and improving the legal significance of digital signatures, timestamps, documents, etc.
Read more
6 June 2012 at 11:47am

How to think about privacy

Andrew Cormack
Breach Notification
Privacy
I've been pointed to an interesting article by Alexis Madrigal about the work of Helen Nissenbaum, an American philosopher who has been looking at what "privacy" actually means, and what sort of things cause us to feel that our privacy has been invaded.
Read more
6 June 2012 at 11:20am

ICO Comments on EU Data Protection proposal

Andrew Cormack
Access Management
Breach Notification
Data Protection Regulation
Privacy
The Information Commissioner has published his initial analysis of the EU Data Protection proposals.
Read more
Subscribe to Breach Notification