Encryption is shaping up to be one of the great philosophical debates of the technological era. It’s become a proxy for a wider debate about the rights of citizens, and the balance between liberty and security. The debate, and the issues, are real. But encryption is the wrong target. All we’re seeing is yet more … Continue reading Encryption – blessing or curse?
Microsoft and Amazon have both revealed that they are building data centres in the EU. In Microsoft’s case, Deutsche Telekom will be the data “trustee”; I assume this is in part an anticipatory response to the ongoing Stored Communications Act lawsuit presently in progress in Dublin (in brief, a case to determine whether US government … Continue reading Death of the internet or birth of better privacy?
William Brandon, CISO at the Bank of England, has noticed the risks associated with LinkedIn profiles. He’s quite correctly pointed out that telling the world what you do, which systems you look after and whom you work with is a bit of a goldmine for hackers and social engineers. In other news, RBS is the … Continue reading Over-sharing, over-confident and over here
So this month we’ve seen the ECJ torpedo the Safe Harbour agreement which allows businesses handling personal data on EU citizens to transfer it to the US. I wrote about it here and here. The immediate effect was for affected businesses to look for other ways to legitimise carrying on as they had before, such … Continue reading Schrems and Safe Harbour – it gets worse (where’s your data second reprise)
The internet has a freedom problem. Not freedom of speech, or net neutrality, or freedom from bullying – although it has problems with all of those too. I’m talking about freedom from paying for stuff. There are other examples of goods and services being free – like broadcast television and free newspapers – but none … Continue reading Free does not equal good
A few days ago, I wrote about European Court of Justice Advocate General Yves Bot. He had decided that Facebook shouldn't have transferred data about an Austrian student to its US data centres. At the time, this was just an opinion. Now it's an official ruling by the ECJ. This is where it gets interesting. … Continue reading Safe Harbor is officially dead. Now what? (Where’s your data: reprise)
If your company handles personal data, you’ve just been served a wake-up call by a Frenchman. Yves Bot, who serves as an Advocate General at the European Court of Justice, has just given an opinion – which is non-binding, but usually followed by the Court – to the effect that Facebook shouldn’t have stored an … Continue reading Where’s your data? A French magistrate may just have killed SafeHarbor.
Virgin Media want me to let them use my home internet connection so they can provide free wi-fi to other Virgin customers who may be passing. Presumably, in time, they will also charge non-Virgin customers for the same privilege, so generating revenue from an infrastructure I paid them to install. The incentive for me is, … Continue reading Why do we let large businesses behave so badly?
I’m a security consultant, and so a professional paranoiac. Most of the time I defend my personal information like a rabid pitbull. But I’m also a cyclist, and as a consequence I’m happy to share my location, heart rate, sleep patterns, step count, cycling habits, height, weight, body fat content and a whole range of … Continue reading How much would you pay for privacy?
So it begins. Merkel blinked first, talking about protecting European personal data by keeping it in Europe. Now Brazil is about to pass a law making it mandatory to keep Brazilian citizens’ data within the country’s borders. At first glance, this is a kneejerk reaction to the Snowden revelations, intended to punish the US for … Continue reading Never mind data protection, this is data protectionism