GDPR

DIFC brings its new data protection law in accordance with international best practice

The DIFC Data Protection Law does not stipulate a maximum cap on fines, similar to GDPR, but gives the Commissioner discretion to impose a general fine on top of administrative fines, a leading lawyer said.Breaches of the GDPR can give rise to significant administrative fines of up to €10m or €20m or 2% or 4%…

The DIFC Data Protection Law does not stipulate a maximum cap on fines, similar to GDPR, but gives the Commissioner discretion to impose a general fine on top of administrative fines, a leading lawyer said.

Breaches of the GDPR can give rise to significant administrative fines of up to €10m or €20m or 2% or 4% of an organisations’ total annual worldwide turnover for the preceding financial year, depending on the provision of the law that has been breached.

Article 62 of the law, she said grants the DIFC Authority Board of Directors the

Read More

Be the first to write a comment.

Leave a Reply

GDPR

Box boosts cloud security with automated classification

Box has announced that intelligent, automated classification will soon be coming to Box Shield, its advanced security solution for protecting content in the cloud.It will now automatically scan files and classify them based on their content to help businesses detect and secure sensitive data. Box Shield is the fastest growing new product in the company’s…

Box has announced that intelligent, automated classification will soon be coming to Box Shield, its advanced security solution for protecting content in the cloud.

It will now automatically scan files and classify them based on their content to help businesses detect and secure sensitive data. Box Shield is the fastest growing new product in the company’s history and security-conscious and highly regulated organizations including NASA use it to to secure data in the cloud.

  • Secure your data on the go with one of the best secure drives
  • Keep your devices protected online with the best antivirus software
  • Also check out our roundup of the best business VPN solutions

workin

Read More

Continue Reading
GDPR

10 things to consider to ensure GDPR compliance

GDPR (General Data Protection Regulation) was mandated by the European Union and was enshrined in UK Law on 25th May 2018. It goes much further than the original UK Data Protection (of individuals) provisions applying before that date and lays down severe penalties for the officers (Directors, Owners and sometimes Managers) of businesses that do…

GDPR (General Data Protection Regulation) was mandated by the European Union and was enshrined in UK Law on 25th May 2018. It goes much further than the original UK Data Protection (of individuals) provisions applying before that date and lays down severe penalties for the officers (Directors, Owners and sometimes Managers) of businesses that do not comply. 

Fines can be as high as 4% of turnover. Widely reported data breaches have seen British Airways and Marriott Hotels handed fines totalling £300m. 

website of the Information Commissioner’s Office. 

GDPR affects BASDA (The Business Applications Software Developers Association) members both as companies which hold data, for example on their employees and customers, and as providers of business software which enables organisations to hold and process data on individuals. 

Historically almost any information could be held and maintained so long as it was not published. Now any information held about an individual must be fit for purpose (for example, to fulfill any obligations associated with providing a service) and as importantly, must be provided, if requested, to an individual. 

Below are 10 things from BASDA for a business to consider relating to GDPR.

  • Get your taxes in order with the best UK tax software

1. I am a Data Controller. Do I have to register my activities with the GDPR Registrar?

Yes. Data Controllers that hold, maintain and process personal data need to pay a data protection fee to the Information Commissioner’s Office (ICO), unless they are exempt. Currently the fee ranges between £40.00 and £2,500.

(Image credit: Wright Studio / Shutterstock)

2. Who exactly is covered by the provisions of GDPR?

Any individual that believes a Data Controller holds personal data about themselves. This includes employees; client staff; supplier staff; prospective client and supplier staff; people who are sent marketing information about own and third-party products and services etc.

  • Keep your business data secure with the best secure drives available

3. What are my obligations in respect of accessing data I hold?

Individuals have the statutory right to access any personal data a Data Controller may hold about them. This is commonly referred to as ‘subject access’. A request can be made for subject access for full disclosure of all information held by a Data Controller about themselves verbally or in writing and the business has one month to respond. Not responding with full disclosure carries severe penalties for the officers of the business. A fee is not normally chargeable to an individual who makes a request under the provisions of GDPR.

(Image credit: Alexskopje / Shutterstock)

4. What is the information that I may be required to deliver if I receive a request for subject access?

Any information that relates to the subject access, whether held in ‘electronic form’ (to be delivered in paper form), audio recordings, video recordings (then direct copies of these last two) or paper. ‘Electronic form’ includes data held in databases, files (word proccessed, spread sheets etc.) and emails (both business and private).

  • Also check out the best email service

5. How do I ensure internal compliance?

The first step is to

Read More

Continue Reading
GDPR

10 ways businesses can minimize the risk of identity theft

Identity theft has been a huge problem for a long time now, however fraudsters are now getting more sophisticated and trying to stay one step ahead.In the unprecedented midst of a pandemic, we are seeing a sharp increase in all types of fraud.  Experienced fraudsters are exploiting the current chaos and sadly we are seeing…

Identity theft has been a huge problem for a long time now, however fraudsters are now getting more sophisticated and trying to stay one step ahead.

In the unprecedented midst of a pandemic, we are seeing a sharp increase in all types of fraud.  Experienced fraudsters are exploiting the current chaos and sadly we are seeing more people turn to fraud in an attempt to boost their income.

best secure router on the market

  • We’ve built a list of the best ransomware protection around
  • Check out our list of the best malware removal services on the market
  • As an SME, it is important to discuss the risks with your customers and suppliers to increase awareness of suspicious emails and cold calls claiming to be from your business.

    All businesses are different and so your risks and exposure to identity theft will differ. Using some of the points below you should sit down and work out what risks you face, both as a business and on behalf of your customers. Where are the danger points and what can you do to stop them, or at least lessen the risk?

    Ensure you’re GDPR

    Read More

    Continue Reading
    GDPR

    SafeVPN

    SafeVPN is a VPN brand run by Network Connect, the company behind brands such as PrivacyWeb and UltraVPN.(There are several similarly named providers, but we’re talking about the service based at SafeVPN.com, and not SafeVPN.net or SaferVPN.com.)Windscribe, a positive sign as it’s an excellent VPN.Want to try SafeVPN? Check out the website hereSome descriptions seem…

    SafeVPN is a VPN brand run by Network Connect, the company behind brands such as PrivacyWeb and UltraVPN.

    (There are several similarly named providers, but we’re talking about the service based at SafeVPN.com, and not SafeVPN.net or SaferVPN.com.)

    Windscribe, a positive sign as it’s an excellent VPN.

    • Want to try SafeVPN? Check out the website here

    Some descriptions seem misleading, or confused. A claim to ‘load videos and websites fast’ makes it sound like SaferVPN will speed up your connection, rather than slow it down. And while the features page of the website says the service protects up to 5 devices at the same time, the front page says 3 (turns out the smaller figure is correct.)

    Headline prices look good, though mostly that’s because there’s an introductory discount. Monthly billing is $6.99 for the first month, $8.99 on renewal; this drops to $4.99 over 6 months, then $9.98 on renewal (yes, really – more expensive than the monthly plan); and although the first term of the annual plan looks cheap, at $2.99 a month, it jumps to $7.50 after that.

    What’s more, this only gets you support for connecting up to three devices. You can upgrade to support unlimited devices for a further $2.92 a month over the first year, rising to $5.83 afterwards. By year two that means you might be paying $13.33 a month on the annual plan to cover unlimited devices.

    If you sign up direct with Windscribe, instead, you’ll be able to access the same servers from unlimited devices for only $4.08 a month on its annual plan. Or if price is your top priority, Surfshark’s two-year plan is a tiny $1.99 a month. Putting that into perspective, SafeVPN charges $125.87 to protect 3 devices for two years; Windscribe asks $97.92 to protect unlimited devices, and Surfshark just $47.76.

    Website

    SafeVPN is quite vague about the amount of logs the service keeps on its users (Image credit: Network Connect)

    Privacy and logging

    Privacy is an issue with every VPN, but the SafeVPN website does its best to reassure you, stating that ‘We promise not to sell your browsing history’ and ‘We won’t keep a log of what you access.’ 

    That’s a good start, but the small print often tells a different story, so we headed off to the SafeVPN Privacy Policy to try to find out more. 

    The document is lengthy and packed with detailed clauses and GDPR-related jargon, but, unfortunately, it’s mostly about general website and business procedures, with no clear information about the VPN.

    The only extra details we could find were in a brief support document, which stated ‘Safe VPN does not monitor your internet searches, or visited websites. We do, however, note the IP of your device and monitor the amount of traffic you put through the Safe VPN servers…’

    It seems that there’s some degree of session logging, but how much? At a minimum, the system might be recording a single incoming IP address as it connects, and maintaining a running total of bandwidth used. But it’s also possible that SafeVPN is keeping a record of every session, with incoming and outgoing IP addresses. There’s not enough information here to say for sure.

    Windows App

    This is the user interface of SafeVPN’s Windows client (Image credit: Network Connect)

    Windows client

    Setting up SafeVPN was mostly straightforward, though with some odd moments. ‘Your antivirus protection starts here’, a web page said as we were signing up. Antivirus protection?

    The Windows client has a familiar interface which, if you’ve ever used another VPN app, you’ll recognize right away. A central console displays your current location and gives you a big Connect button; other locations are available on a simple list, and there are a couple of useful configuration options in a Settings box.

    The client’s location list doesn’t have a ‘Best’ or ‘Automatic’ selection to access the nearest server, unfortunately, and there’s no Favorites system to speed up re-connecting to your most commonly used locations. The server list does enable choosing either countries or the locations within them, though (useful, as there are nine locations in the eastern US alone). It also highlights servers which specialize in video streaming or support P2P.

    Choose a location, click Connect, and desktop notifications make it clear what the client is doing, and when you do get connected, the client interface updates to indicate its status and display your new IP address.

    Settings

    You can choose your preferred VPN protocol from SafeVPN’s settings panel (Image credit: Network Connect)

    The Settings panel gives you options to load the client when Windows starts, to automatically connect to the best or last connection, and to enable a firewall (SafeVPN’s name for its kill switch), which automatically blocks your internet connection if the VPN connection drops.

    We tested the client by forcibly closing the VPN connection, and found it coped very well. The interface updated to tell us there was a problem; the kill switch correctly blocked internet access for all other apps; the client automatically tried to reconnect to the VPN, and a desktop notification told us when we were protected again.

    Overall, this was a decent performance, but the Windows client was still short on many of the features we see in other top VPN clients. There’s no way to change or reconfigure your protocol, for instance (it’s OpenVPN-only.) There are no DNS options, and no automatic protection whenever you access an insecure or untrusted network. VPN newbies may appreciate SafeVPN’s simplicity, but more demanding or experienced users will be frustrated by its lack of power.

    Mobile apps

    We wanted to check out the Android app, but, well… 

    Google Play Listing

    We tried several times but ultimately we were unable to download SafeVPN’s Android app from the Play Store (Image credit: Google)

    There’s an Android page on the website with a ‘get it on Google Play’ button, but clicking it got us Google’s ‘we’re sorry, the requested URL was not found on this server’ error message.

    We searched Google Play manually and founds lots of VPNs with similar names, but no luck – they were all from different providers.

    We opened a live chat window, and a support agent responded within a couple of minutes. But when we explained the problem, he just told us to search on Google Play. What, it was too difficult to post the URL directly into chat?

    We tried again, still no result. He paused for a moment, then told us to go to the Android page we’d visited first. 

    We explained we had, and pasted the dead link. He said, okay, and told us to enter the URL download.safevpn.com on an Android device.

    Switching to an Android device, we entered the URL, and got the same Google Play ‘we’re sorry, the requested URL was not found on this server’ error we’d seen at the beginning. And that’s where we gave up.

    SafeVPN advertises an iOS app, too, and when we clicked the website link, it took us to a real product. But unfortunately, it wasn’t a SafeVPN product, but Total AV’s iOS app, a security, cleanup and maintenance suite, where the VPN is one of many functions (and as far as we can tell, not provided by SafeVPN.)

    Maybe there’s a perfectly reasonable explanation for this, it’s some temporary issue, and will all be cleared up by the time you read this. But if you’re buying SafeVPN for use on a mobile device, if only occasionally, don’t take the website’s word about the apps on offer. At the very least, find them on your app stores before you buy.

    Performance

    The SafeVPN website claims the service can ‘unlock restricted content’, ‘from video streaming to social networks’, and provides twelve examples: Amazon, BBC iPlayer, Facebook, Google, HBO, Hulu, Instagram, LinkedIn, Skype, Twitter, WhatsApp and YouTube.

    These aren’t just empty words. The SafeVPN Windows client includes specialist unblocking servers for the UK, UK, Canada and Japan. And they worked perfectly in our tests, getting us into BBC iPlayer, US Netflix, Amazon Prime Video and Disney+, a great result.

    New Speedtest Image

    SafeVPN performed quite well in our speed tests (Image credit: Ookla)

    Our performance tests showed above-average speeds from the UK, with our nearest UK server reaching 65-68Mbps on our test 75Mbps line, and UK to US and European locations achieving a solid 40-65Mbps.

    Re-running our tests from a European data center with a 350Mbps+ connection gave us a chance to see what the service could do, and an excellent 150-200Mbps was the result.

    The review ended with some mixed results in our privacy tests, though, with the Windows client showing a DNS leak when connected via IKEv2, but no problems at all when connected via OpenVPN.

    Final verdict

    SafeVPN has taken the excellent Windscribe service, made it much worse (3 device limit, no mobile apps, misleading website), and then, after the introductory deal, added a massive and totally unjustified price premium. If you like the speed and great unblocking performance, go direct to Windscribe, you’ll be much better off.

    • We’ve also highlighted the best VPN

    Read full review

    Read More

    Continue Reading