Most Datonomy readers will already be aware of this morning's news of a £250,000 ICO fine for Sony over the 2011 PlayStation hack, which Sony reportedly intends to appeal. The ICO published the monetary penalty notice this morning, with Deputy Commissioner David Smith appearing on YouTube "making no apologies" for the size of the fine (the largest imposed on a private sector organisation to date, and the third largest fine ever imposed by the ICO). Understandably, much of the factual detail and specifics on the vulnerabilities of the system have been redacted to avoid compounding the risks to Sony's system by giving future hackers a helping hand. This makes for a slightly frustrating reading experience, and inevitably limits the insight which the decision gives practitioners into the specifics of what might or might not constitute appropriate security in the given context. So, what can we usefully take from the Sony … Continue Reading ››
Datonomy has been reading the draft report of Rapporteur Jan Philipp Albrecht on the proposed Data Protection Regulations – all 215 pages of it!  The full report (available here) was discussed today by the Committee on Civil Liberties, Justice and Home Affairs of the European Parliament and although it is not binding on the Committee or on the Parliament itself, it will carry significant weight during the upcoming negotiation phase of the draft Regulation. What is clear from the report is that both the Commission and the Rapporteur are strongly supportive of radical reform to the current data protection regime. After the report was published Vivianne Reding, EC Commissioner for justice, fundamental rights and citizenship, tweeted that she is "looking forward to swift adoption by both EP [the European Parliament] and Council" of the new data protection regulation. Momentum is building. The helpful: