Sustaining the balance scale: Data privacy vs. security

No. 72: Bringing you the news that matters in video privacy and security

Governments, Law enforcement and public sector businesses often navigate a precarious balancing act: how to harmonise the somewhat contradictory goals of ensuring robust security and preserving privacy. In a world increasingly intertwined with digital technology, there is inevitable tension between the two. 

This week's large-scale data breach affecting Canadian government, military, and police employees, involved decades' worth of personal and financial information. It is a sobering example of the potential risks associated with the collection and storage of vast amounts of personal data, where a single point of failure can lead to widespread privacy violations.

Meanwhile, Senator Wyden's letter about the US government's Hemisphere Project signifies a need to reevaluate how neither national security nor privacy can be compromised for the sake of the other. 

As countries go forward, improving security will continue to be a high priority. However, the increased awareness around privacy and the growth in more specific privacy laws means that the balance between security and privacy is already starting to be realised. What is necessary now is to embed, create and implement surveillance technologies that incorporate privacy within the product. There is strength in embedding privacy into security measures - the two can enhance each other to create a combined balance of strength, commitment to privacy and safeguarding security.  

As always, please send any feedback or topics of interest you would like to be covered.

Seena, Editor


News

Scottish NHS board receives reprimand from ICO after sensitive data breach and CCTV issues

The ICO has issued a reprimand to NHS Fife after an unauthorised individual gained access to an NHS Fife ward, obtaining the personal information of 14 patients and even assisting in patient care. The theft of this sensitive data was compounded by a CCTV malfunction, due to accidental deactivation by staff.

Digit News: Scots NHS Board Receives Reprimand from ICO for Data Breach

The ICO: NHS Fife

 

Privacy concerns sparked as trillions of records can be accessed by US police  

Senator Ron Wyden has expressed serious concerns about the legality and privacy implications of the Hemisphere Project. This is a secretive program allowing US law enforcement to access trillions of phone records without warrants, and potentially violate Fourth Amendment rights. 

Wired: Secretive White House Surveillance Program Gives Cops Access to Trillions of US Phone Records

The Verge: The US government is working with AT&T to run a nationwide phone surveillance program

 

Extensive data breach hits Canadian government and military personnel 

A significant data breach of government contractors has potentially compromised the personal and financial information of Canadian government, military, and police employees dating back to 1999. The ransomware gang, LockBit, has claimed responsibility for stealing over 1.5 TB of data.

SC Magazine: LockBit may have stolen 24 years of data on Canadian government employees

CPO Magazine: Third Party Data Breach of Contractors Exposed Personal Information of Canadian Government Employees Dating Back 25 Years

 

UK counter-terror police to potentially retain biometrics of suspects

The UK Government plans to amend the Data Protection and Digital Information Bill to allow counter-terrorism police to retain the biometrics of individuals deemed a potential threat. In an aim to bolster national security and combat fraud, this change includes indefinite retention of biometrics for individuals with foreign court convictions, particularly for serious offences.

Biometric Update: Amendments to UK data protection bill could give more power over biometrics to police

UK Authority: Counter-terrorism police to be given more powers to retain biometrics

 

Security researcher uncovers malware risks in children's tablets

A researcher at the Electronic Frontier Foundation has discovered multiple security and privacy concerns in the Dragon Touch KidzPad Y88X children's tablet, including outdated software, malware traces, and invasive data collection practices. 

Tech Crunch: Children’s tablet has malware and exposes kids’ data, researcher finds

IAPP: Researcher discovers children's tablet potentially exposes data


AI Snippet of the Week

AI surpasses students in essay writing, says study

A University of Passau study reveals that AI chatbots such as OpenAI's ChatGPT, outperform secondary school students in writing English essays. The study's findings underscore the rapid advancements in AI language models and a need for educational systems to adapt to these emerging technologies.

Tech Xplore: Study shows ChatGPT writes better school essays than students

Scientific Reports: A large-scale comparison of human-written versus ChatGPT-generated essays


Policy Updates

UK House of Lords introduces AI Regulation Bill

The House of Lords has introduced the Artificial Intelligence (Regulation) Bill which proposes a regulatory framework for AI, including the establishment of an AI Authority, regulatory principles for AI, and requirements for businesses using AI. 

UK Parliament: Artificial Intelligence (Regulation) Bill [HL]

One Trust: UK: Artificial Intelligence (Regulation) Bill introduced in Parliament


To subscribe to our fortnightly newsletter, please click here

Thanks for reading, if you have any suggestions for topics or content that you want to see covered in future please drop a note to: info@secureredact.co.uk

Previous
Previous

The grey area of biometric data

Next
Next

Health data and AI: where can we find the balance?