Post by Deleted on Aug 30, 2024 14:42:29 GMT
..by privacy regulator
The Record
So they are not very concerned about people's data privacy, well heck I saw that first-hand in 2008 when they treated people's personal info with recklessness
The United Kingdom’s Labour Party was reprimanded on Wednesday by the country’s privacy regulator for failing to comply with data protection laws while in opposition.
More than 150 people complained to the Information Commissioner’s Office (ICO) about the length of time it was taking the Labour Party to respond to subject access requests (SARs) following a cyberattack in October 2021.
An SAR, under Britain’s privacy laws, gives people the right to ask an organization that is using or storing their personal information to provide them with a copy of that information, as well as the right to ensure the information is up-to-date and accurate, and in some cases deleted.
Organizations holding personal information are required to comply with an SAR “without undue delay and at the latest within one month of receiving the request,” according to the regulator, although this period can be extended by two months if the request is particularly complex.
Following a ransomware attack in 2021 on a company called Tangent supplying Labour’s member system, the party began to develop a backlog of these requests — partially due to a spike in people seeking to know how much of their personal information may have been compromised in the attack.
KP Law, a firm specializing in data breach group action cases, subsequently launched a claim against the Labour Party complaining that the party was “refusing to tell members what data has been exposed.”
“Our early investigations, combined with the Party’s refusal to be accountable and honest following the hack, suggests that Labour’s data protection processes are nothing short of shambolic,” the firm stated.
More than 150 people complained to the Information Commissioner’s Office (ICO) about the length of time it was taking the Labour Party to respond to subject access requests (SARs) following a cyberattack in October 2021.
An SAR, under Britain’s privacy laws, gives people the right to ask an organization that is using or storing their personal information to provide them with a copy of that information, as well as the right to ensure the information is up-to-date and accurate, and in some cases deleted.
Organizations holding personal information are required to comply with an SAR “without undue delay and at the latest within one month of receiving the request,” according to the regulator, although this period can be extended by two months if the request is particularly complex.
Following a ransomware attack in 2021 on a company called Tangent supplying Labour’s member system, the party began to develop a backlog of these requests — partially due to a spike in people seeking to know how much of their personal information may have been compromised in the attack.
KP Law, a firm specializing in data breach group action cases, subsequently launched a claim against the Labour Party complaining that the party was “refusing to tell members what data has been exposed.”
“Our early investigations, combined with the Party’s refusal to be accountable and honest following the hack, suggests that Labour’s data protection processes are nothing short of shambolic,” the firm stated.
The Record
So they are not very concerned about people's data privacy, well heck I saw that first-hand in 2008 when they treated people's personal info with recklessness