The European Parliament’s headache over a major human resources data breach earlier this year just won’t fade. Austria-based digital rights group noyb on Thursday said it had filed two complaints against the European Union institution for infringing the bloc’s flagship privacy law, the General Data Protection Regulation (GDPR), over a data breach discovered before the summer.
In June, Parliament notified up to 9,000 staffers that it had suffered a data breach of its recruitment application PEOPLE, which contained staffers’ ID details, birth certificates, employment history, medical records, marriage certificates — which revealed sexual orientation — and proof of work dating back 10 years.
Read more…
Source: Politico Europe
Related:
- Russia toughens penalties for data leaks
November 30, 2024
Russian President Vladimir Putin signed laws that toughen penalties for illegal gathering and distribution of personal data. Administrative liability New fines are introduced. In particular, they total up to 15 mln rubles ($141,000) for illegal transfer of personal information and health details and up to 20 mln rubles ($188,000) for illegal transfer of biometric data. The ...
- Westminster honeytrap victims named in Met Police email blunder
November 29, 2024
The Metropolitan Police has apologised to victims of the Westminster “honeytrap” scandal after it accidentally sent an email which named all of them. The force said it was referring itself to data watchdog the Information Commissioner over the breach. The Met is investigating flirtatious messages being sent by someone calling themselves “Charlie” or “Abi” to as ...
- UK Nuclear body opens cyber security hub
November 27, 2024
A nuclear body has launched a cyber security hub to help protect itself from IT threats. The Nuclear Decommissioning Authority (NDA) opened the centre at Herdus House in Moor Row, near the Sellafield nuclear plant in Cumbria. It said the Group Cyberspace Collaboration Centre (GCCC) provided a space for experts to share knowledge on how to ...
- Ransomware attack on Blue Yonder disrupts Starbucks, Sainsbury’s, Morrisons
November 27, 2024
Starbucks has confirmed that a ransomware attack on software supplier Blue Yonder has disrupted its internal systems for managing employee schedules and tracking work hours. The incident has primarily affected Starbucks’ North American operations, including approximately 11,000 stores across the United States and Canada. Starbucks says the cyberattack has compromised its ability to track baristas’ hours ...
- UK: Prison layouts reportedly leaked on dark web
November 23, 2024
The Ministry of Justice has said it is aware of a data breach affecting prisons in England and Wales. Confidential prison layouts had been leaked onto the dark web in the past two weeks, according to The Times. A former prison governor told the paper organised crime groups could potentially use the information to smuggle drugs ...
- Italian food delivery app Foodinho eats another privacy fine
November 22, 2024
Not for the first time, food delivery firm Foodinho has been spanked by Italy’s privacy watchdog. Per Reuters, the Glovo-owned on-demand delivery app has been fined €5 million ($5.20 million) after it was found to have unlawfully processed the data of more than 35,000 riders registered on the platform. Issues identified included riders’ geolocation data being transferred ...