A Django site.
December 7, 2009

Inside Security News
insecnews
is about »
» Your data selling for $30 to $40 USD by US companies

What do you mean you don't live in the US. Do you not use any of these companies services over the Internet?

Want an insight to what US companies do with their customer data? Check the documents data retention policies, surveillance capabilities and lawful data-interception guides posted at cryptome.org [1]. In the UK we hope that the Data Protection Act protects us to a point, but we still have to pay to see what is held about us. An expensive exercise.

Any sight of Google's policies?

[1] Cryptome.org [2] http://www.wired.com/threatlevel/2009/12/yahoo-spy-prices

June 9, 2009

Inside Security News
insecnews
is about »
» Handling Personal Data then Do You follow a Code?

If you are handling personal data then the BCS has put together the Personal Data Guardianship Code[1]. It lays out the responsibilities of organizations and people have when handling personal data. It is also a handbook for people who provide their information to services (e.g., online and forms etc).
At first glance it provides a better understanding of how to go through the processes associated with the data life span, as it is called. Its simple and clean layout and formatting shows that the target group is quite large and everyone should read it.
The Code also provides example where appropriate and help the reader understand a section slightly better.
As mentioned quite often by the BCS, on the site and in the document, the Code is not a legal document but a guideline and the users should refer to the relative legislation, e.g. Data Protection Act etc.

Links used:
[1] BCS, Personal Data Guardianship Code - http://www.bcs.org/server.php?show=nav.10666