Personal data leakage - liability and fines
Posted: Sun Jan 19, 2025 4:21 am
What is it? A leak of personal data is the saddest thing that can happen to us. Hackers or employees of companies collecting them can steal your phone number, email address, and even passport details, and then use them for their own selfish purposes.
What to do? If a leak has occurred, companies need to have the courage to report it, not hide it. This can result in a fine, but it's a pittance compared to the loss of customer trust. Conscientious managers will investigate and find out the cause so that it doesn't happen again. Companies that don't care will continue to fall victim to criminals.
The article explains:
What is considered personal data
Causes of personal data leaks
The consequences chinese student data package of personal data leaks for customers and companies
What to do if a company experiences a personal data leak
The Biggest Personal Data Leaks of 2022
How to secure your clients' personal data
How to check if personal data has been compromised
What to do if your personal data is stolen
How to protect yourself from possible personal data leaks
Frequently asked questions about personal data breaches
5 Scenarios for Using Neural Networks to Increase Website Conversion by 40%
Download for free
What is considered personal data
It is necessary to clarify what information exactly pertains to them. There is no specific description of the term "personal data" (PD) in legislative acts. We will be guided by the definition provided in paragraph 1 of Article 3 of Federal Law No. 152. The Law "On Personal Data" was adopted on June 27, 2006. It states that all types of information related to the person who owns the information are recognized as such.
In turn, the subject of personal data is the person about whom the information is collected, processed and stored. Another concept that should be disclosed in the context of personal data leakage is the "operator". This is the accepted name for government agencies, private or legal entities that carry out operations with information (collection, processing, storage, distribution, destruction, etc.).
Personal data
Source: shutterstock.com
Types of personal data
general : last name, first name, middle name, gender, date and place of birth, address, marital status, etc. Such information may be known to several subjects or presented in the public domain;
special : race, nationality, political views, attitude to religion, philosophical beliefs, level of physical health, personal relationships, etc. This type of information is in closed access;
biometric : biological and physiological characteristics of the body of a particular individual, by which he can be identified (DNA, fingerprints, etc.);
other : periodically changing information (salary, professional experience, etc.).
The first type of personal data should also include passport and contact information (e-mail, telephone, etc.), passwords, bank card number, and educational information.
It should be noted that not all video and photo options can be used to identify a person. For example, photocopies of a passport are not recognized as biometrics if they are provided instead of the original document by persons wishing to apply for a loan. Fluorography, radiography and photographs from a personal file also fall into this category.
What to do? If a leak has occurred, companies need to have the courage to report it, not hide it. This can result in a fine, but it's a pittance compared to the loss of customer trust. Conscientious managers will investigate and find out the cause so that it doesn't happen again. Companies that don't care will continue to fall victim to criminals.
The article explains:
What is considered personal data
Causes of personal data leaks
The consequences chinese student data package of personal data leaks for customers and companies
What to do if a company experiences a personal data leak
The Biggest Personal Data Leaks of 2022
How to secure your clients' personal data
How to check if personal data has been compromised
What to do if your personal data is stolen
How to protect yourself from possible personal data leaks
Frequently asked questions about personal data breaches
5 Scenarios for Using Neural Networks to Increase Website Conversion by 40%
Download for free
What is considered personal data
It is necessary to clarify what information exactly pertains to them. There is no specific description of the term "personal data" (PD) in legislative acts. We will be guided by the definition provided in paragraph 1 of Article 3 of Federal Law No. 152. The Law "On Personal Data" was adopted on June 27, 2006. It states that all types of information related to the person who owns the information are recognized as such.
In turn, the subject of personal data is the person about whom the information is collected, processed and stored. Another concept that should be disclosed in the context of personal data leakage is the "operator". This is the accepted name for government agencies, private or legal entities that carry out operations with information (collection, processing, storage, distribution, destruction, etc.).
Personal data
Source: shutterstock.com
Types of personal data
general : last name, first name, middle name, gender, date and place of birth, address, marital status, etc. Such information may be known to several subjects or presented in the public domain;
special : race, nationality, political views, attitude to religion, philosophical beliefs, level of physical health, personal relationships, etc. This type of information is in closed access;
biometric : biological and physiological characteristics of the body of a particular individual, by which he can be identified (DNA, fingerprints, etc.);
other : periodically changing information (salary, professional experience, etc.).
The first type of personal data should also include passport and contact information (e-mail, telephone, etc.), passwords, bank card number, and educational information.
It should be noted that not all video and photo options can be used to identify a person. For example, photocopies of a passport are not recognized as biometrics if they are provided instead of the original document by persons wishing to apply for a loan. Fluorography, radiography and photographs from a personal file also fall into this category.