The European Parliament’s headache over a major human resources data breach earlier this year just won’t fade. Austria-based digital rights group noyb on Thursday said it had filed two complaints against the European Union institution for infringing the bloc’s flagship privacy law, the General Data Protection Regulation (GDPR), over a data breach discovered before the summer.
In June, Parliament notified up to 9,000 staffers that it had suffered a data breach of its recruitment application PEOPLE, which contained staffers’ ID details, birth certificates, employment history, medical records, marriage certificates — which revealed sexual orientation — and proof of work dating back 10 years.
Read more…
Source: Politico Europe
Related:
- European Union: Regulation UE 2019/452 On Foreign Direct Investment Comes Into Application
October 13, 2020
As of yesterday, 11 October 2020, the EU Regulation 2019/452 of 19 March 2019 (“Regulation”) on the control of foreign direct investment is directly applicable in Italy. The aim of the Regulation is to establish a common system among Member States of the European Union in order to monitor foreign investment. With this Regulation, the ...
- Cyberthreats for ICS in Energy in Europe. Q1 2020
September 4, 2020
Computers in European countries which are used to configure, maintain and control equipment in the energy industry on which Kaspersky products are installed. This includes Windows computers on which various software packages for the energy industry are installed, including but not limited to human-machine interface (HMI), OPC gateway, engineering, control and data acquisition software. Overall, in ...
- European court strikes down EU-US Privacy Shield user data exchange agreement as invalid
July 16, 2020
A crucial mechanism for transferring EU citizen data between the United States and Europe has been ruled as invalid in what could be a major blow to thousands of companies. Known as the EU-US Data Privacy Shield, the pact was designed for the exchange of data across country borders with high and legally-enforced data protection standards, ...
- E.U. Authorities Crack Encryption of Massive Criminal and Murder Network
July 3, 2020
European law-enforcement officials have shut down an encrypted Android-based communications platform used exclusively by criminals to plot murders, traffic illegal drugs, commit money laundering and plan other organized crimes. An international law-enforcement team from the France and the Netherlands cracked the encryption of EncroChat, a secure mobile messaging service that was “one of the largest providers of encrypted communications,” ...
- Europol: Hacker Group Selling Databases With Millions Of User Credentials Busted In Poland And Switzerland
May 5, 2020
Polish and Swiss law enforcement authorities, supported by Europol and Eurojust, dismantled InfinityBlack, a hacking group involved in distributing stolen user credentials, creating and distributing malware and hacking tools, and fraud. On 29 April 2020, the Polish National Police (Policja) searched six locations in five Polish regions and arrested five individuals believed to be members of ...
- Swiss encryption company secretly owned by U.S. and German intelligence agencies
February 11, 2020
The U.S. intelligence community actively monitored for decades the diplomatic and military communications of numerous Latin American nations through encryption machines supplied by a Swiss company that was secretly owned by the CIA and the German intelligence agency, BND, according to reports today by the German public television channel, ZDF and the Washington Post. Declassified records ...