unsecured FTP server – Privacy Design® / [protecting people by good design, solid security, efficient processes and trusted services] Sun, 25 Feb 2018 08:25:23 +0000 en-US hourly 1 https://wordpress.org/?v=6.9.4 /wp-content/uploads/2018/02/cropped-favicon-32x32.jpg unsecured FTP server – Privacy Design® / 32 32 [UK/India] – Health Company Fined by UK’s ICO /2018/02/25/uk-india-health-company-fined-by-uks-ico/ Sun, 25 Feb 2018 08:25:23 +0000 /?p=376 Continue reading "[UK/India] – Health Company Fined by UK’s ICO"

]]>
  • Subcontractor based in India to process sensitive personal data without adequate data processing / data transfer grounds
  • Lack of contractual definition of adequate technical and organisational measures in India
  • Sensitive personal data (with high severity) sent via unencrypted email
  • Sensitive personal data on  FTP server without restricted access controls
  • Patient found his/her data via Internet search

    • https://www.hldataprotection.com/2017/03/articles/international-eu-privacy/health-company-fined-by-uks-information-commissioner-office/

    ]]>