fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

German Watchdog Bans Facebook From Using WhatsApp Users’ Data

German Watchdog Bans Facebook From Using WhatsApp Users’ Data

The Hamburg Commissioner for Data Protection and Freedom of Information (HmbBfDI) has banned Facebook today from processing WhatsApp user data for the next three months.

The order issued today by the HmbBfDI, one of Germany’s data protection commissioners, comes after WhatsApp said that it will slowly restrict account features for users who refuse to give up control of their data and have it shared with Facebook companies starting May 15th, 2021.

With last week’s policy update, WhatsApp backpedaled on a previous decision that gave users a jarring ultimatum to delete their accounts if they don’t agree to share their data with Facebook.

Three-month ban on using WhatsApp user data

“The order is intended to safeguard the rights and freedoms of the many millions ofusers who approveto the terms of use throughout Germany,” Dr. Johannes Caspar, the head of Hamburg’s data protection agency, said today. “The aim is to prevent disadvantages and damage associated with such a black-box procedure.”

The announcement comes after the data watchdog started urgent proceedings last month with the goal of issuing an order under GDPR guidance to stop Facebook from collecting and processing any data from WhatsApp users for their own purposes.

Hamburg’s data regulator head also wants to extend the emergency ban imposed on Facebook’s WhatsApp data processing capabilities by asking the European Data Protection Board (EDPB) to make it a binding order at the European level.

Also Read: The DNC Registry Singapore: 5 Things You Must Know

However, as the German data watchdog said, its request to Ireland’s Data Protection Commission (DPC) (the lead European supervisory authority) “for an investigation into the actual practice of data sharing was not honoured so far.”

Despite Facebook’s three-month data processing freeze order, WhatsApp will continue pushing its new privacy changes asking users to choose between limited account functionality and accepting to share their data with Facebook.

“As the Hamburg DPA’s claims are wrong, the order will not impact the continued roll-out of the update,” a WhatsApp spokesperson told Reuters.

“We remain fully committed to delivering secure and private communications for everyone.”

WhatsApp policy updates deemed misleading

As detailed in the German data protection agency’s order [PDF], the new policy changes WhatsApp is currently pushing onto its userbase expand the company’s data processing powers concerning:

  • the processing of location information,
  • the transfer of communication data of users to third-party companies explicitly with reference to Facebook,
  • the additional purpose of ensuring the integrity of the services, and the cross-company verification of the account in order to use the service in an “appropriate manner”
  • the use of data to connect with products from Facebook companies

WhatsApp’s new policy provisions on data transfer are confusing, misleading, and contradict themselves, making it hard for users to grasp the actual consequences of agreeing to the new terms the data regulator found.

Also, WhatsApp can share its users’ data with Facebook companies for product improvement and advertising purposes according to the new provisions.

However, as the HmbBfDI data watchdog also discovered, some WhatsApp users’ data, including phone numbers and device identifiers, are already being shared with Facebook for “network security and to prevent spam from being sent.”

“The data protection scandals of recent years, from ‘Cambridge Analytica’ to the recently disclosed data leak that affected more than 500 million Facebook users, show the extent and threats of mass profiling,” Caspar added.

Also Read: How To Comply With PDPA: A Checklist For Businesses

“The order now issued relates to the further processing of WhatsApp user data and is directed at Facebook. The worldwide criticism against the new terms of service should give reason to fundamentally rethink the consent mechanism once again.”

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us