undefined | Better HN

0 pointsnonrandomstring2y ago0 comments

That's a really interesting list of cases and fines. They seem really active and mostly to operate internally in De^H^H Norway.

What to do with that money?

Some of the listed companies clearly got fined because their software engineering is rubbish and they made genuine mistakes. Maybe use the money to pay for (and force) those companies to have their programmers trained in better privacy related SE skills?

0 comments

jddj2y ago

One company was fined for changing the password of and then accessing an ex-employee's email account when they left.

Have to think that's pretty widespread behaviour.

https://www.datatilsynet.no/en/news/2021/fined-for-accessing...

jononor2y ago

They operate a number of programs to help companies and government organizations to do the right thing wrt privacy. Both awareness building, providing open resources, but also having advisors that one can call and get case by case guidance (free of charge for small things). Of course GDPR has been a priority for a long time, but recent focused efforts also exist around AI. Example (should translate OK to English): https://www.datatilsynet.no/regelverk-og-verktoy/sandkasse-f...

j / k navigate · click thread line to collapse