At a meeting of TERENA’s CSIRT Task Force last week, I presented an updated version of my paper on Privacy and Incident Response.
Responding effectively to incidents is essential to protect the privacy and other rights of individuals and organisations that use the Internet: compromises, phishing, etc. clearly infringe those rights. However incident response may itself [...]
The JISC Legal Information Service have published a toolkit on the legal issues that should be considered by universities and colleges when planning to use external cloud computing providers, including Data Security, Jurisdiction, Confidentiality, Freedom of Information, Intellectual Property Rights, Equality and Accessibility, and Contracts. The organisation’s legal duties are unlikely to change significantly as [...]
Nominet’s Issue Group on dealing with domain names used in connection with criminal activity has published its draft recommendations, which seem reassuringly close to the JANET submission to the original request for comments.
Expedited suspension of a domain is regarded as a last resort, to be used only where alternative approaches via the registrar or registrant [...]
The Article 29 Working Party of European Data Protection regulators have now given a bit more information about their preferred approach to gaining consent for third party cookies in a letter commenting on the (unsatisfactory, they feel) approach proposed by the Internet Advertising Bureau Europe.
The letter explicitly says that each advertising network will [...]