Weekly Privacy News Update – Episode 54


CNIL suggests the use of burner phones for World Cup apps due to privacy concerns

French data protection authority, the Commission nationale de l’informatique et des libertés (CNIL) urges attendees of the FIFA World Cup in Qatar to use burner phones. The event has required guests to use two apps: Ehteraz, a COVID-19 tracking app, and Hayya, which will be used for entrance to stadiums, schedule viewing, and free transportation. Digital security agencies have flagged the two apps for privacy concerns. Ehteraz will request users for remote access to pictures and video, make uncontrolled calls, and read or modify data of the device. Permissions for Hayya include unregulated access to personal data and full network access. Both apps can also track user location.

Source: Politico, Mashable, IAPP

Irish DPC submits draft decision on inquiry for Yahoo

Ireland’s Data Protection Commission (DPC) submitted a draft decision on its investigation of Yahoo for its requirement of the EU General Data Protection Regulation (GDPR) concerning personal data processing. The inquiry began on August 2019. According to Deputy Commissioner  Graham Doyle, the Irish DPC examined the company’s compliance with the requirements to provide transparent information to data subjects under the provisions of the GDPR. Under Article 60 of the GDPR process, concerned supervisory authorities have until Nov. 24 to give their objections to the draft decision of the DPC.

Source: Data Protection Commission, IAPP

MEPs expressed dissatisfaction with UK’s proposed data protection law revamp

Members of the European Parliament (MEP) revealed their dissatisfaction with the UK’s intention to revamp its data protection law which will put EU-UK adequacy into uncertainty. The latest talks between MEPs and UK officials have created doubt for the EU representatives regarding the proposed UK General Data Protection Regulation reform. The UK Data Protection and Digital Information Bill is undergoing a new public consultation.

Source: Politico, IAPP

Apple persistent in tracking and collecting data despite user setting preference

An independent test by researchers pointed out that Apple tracks and collects data from iPhone users regardless of user setting preferences. The test was done on two Apple devices and included the analysis of the App Store, Apple Music, TV, Books, and Stocks. The research revealed that the analytics control and other privacy settings had no noticeable effect on Apple’s data collection. Opting out or switching off the personalization options did not lessen the detailed analytics the app sent, based on the study.

Source: Gizmodo, IAPP

Masha Komnenic CIPP/E, CIPM, CIPT, FIP
More about the author

Written by Masha Komnenic CIPP/E, CIPM, CIPT, FIP

Masha is an Information Security and Data Privacy Specialist and a Certified Data Protection Officer. She has been a Data Protection Officer for the past six years, helping small and medium-sized enterprises achieve legal compliance. She has also been a privacy compliance mentor to many international business accelerators. She specializes in implementing, monitoring, and auditing business compliance with privacy regulations (HIPAA, PIPEDA, ePrivacy Directive, GDPR, CCPA, POPIA, LGPD). Masha studied Law at Belgrade University, and she passed the Bar examination in 2016. More about the author

Related Articles

Explore more resources