CIO
2.5K views | +0 today
Follow
Your new post is loading...
Your new post is loading...
Scooped by Pál Kerékfy
Scoop.it!

Personal data belonging to up to 21,000 TalkTalk customers could have been used for scams and fraud

Personal data belonging to up to 21,000 TalkTalk customers could have been used for scams and fraud | CIO | Scoop.it
The Information Commissioner’s Office has fined TalkTalk Telecom Group PLC £100,000 after it failed to look after its customers’ data and risked it falling into the hands of scammers and fraudsters.

 

An ICO investigation found TalkTalk breached the Data Protection Act because it allowed staff to have access to large quantities of customers’ data. Its lack of adequate security measures left the data open to exploitation by rogue employees.

Pál Kerékfy's insight:

A lényeg az, hogy pusztán a lehetőség, hogy illetéktelen alkalmazottak sok-sok ügyfél adataihoz hozzáférhetnek, ok lehet a büntetésre. Ebben az esetben egy indiai alvállalkozó cég három alkalmazottja listázta 25-50 ezer ügyfél adatait. Az nem bizonyosodott be, hogy az adatokat valóban fel is használták.

Érdekes, hogy majdnem három év telt el az eset napvilágra kerülése és a büntetés kiszabása között.

Az indoklás szerint: “TalkTalk had ample opportunity over a long period of time to implement appropriate measures, but it failed to do so. It should have made sure the portal could only be accessed from authorised devices and could have taken steps to prevent large-scale accessing and exporting of personal data through the portal.”

@TalkTalk @ICONews #UK #ICO #TalkTalk #databreach #GDPR

more...
No comment yet.
Scooped by Pál Kerékfy
Scoop.it!

GDPR – sorting the fact from the fiction

GDPR – sorting the fact from the fiction | CIO | Scoop.it
Information Commissioner Elizabeth Denham separates fact from fiction regarding GDPR and financial penalties.

But there’s also some misinformation out there too. And I’m worried that the misinformation is in danger of being considered truth.

“GDPR will stop dentists ringing patients to remind them about appointments” or “cleaners and gardeners will face massive fines that will put them out of business” or “all breaches must be reported under GDPR”. I’ve even read that big fines will help fund our work.

Pál Kerékfy's insight:

Az Egyesült Királyság adatvédelmi biztosa (Information Commissioner) úgy látja, hogy sok félremagyarázás van a GDPR körül, ezért blogjában elkezdte magyarázni. Az első írásában főleg a magas büntetésekkel foglalkozik.

 

#ICO #UK @ICOnews #GDPR #EU

more...
No comment yet.