Can we trust organisations with our personal data?

While the EU implemented GDPR over a year ago, many organisations are still failing to comply with the new legislation. As a result, it is worth questioning whether we can truly trust companies with our personal data.

Is our personal data at risk?

Earlier this month, University of Oxford-based researcher James Pavur conducted a study to test GDPR's potential for exploitation. Pavur approached dozens of UK and US firms in order to determine how they would handle a "right of access" request made in someone else's name.

The security expert discovered that large companies tended to comply, while smaller firms ignored him altogether. However, he also found that mid-size businesses often mishandled his requests for data.

When Pavur requested data an educational company held on his fiancee, they revealed her high school grades, mother's maiden name, and the results of a criminal background check survey. Moreover, two UK rail companies provided records of all the journeys she had taken with them over several years.

Overall, Pavur said the organisations disclosed 60 distinct pieces of personal information about his partner. While this test is merely anecdotal, it raises important questions regarding the vulnerability of our personal data.

Are organisations doing enough?

Google, Intel, Microsoft and seven other companies have now created a Confidential Computing Consortium (CCC). In effect, the community aims to define and accelerate the adoption of confidential computing.

While participants plan to make several open source project contributions, the initiative is incredibly ambitious. Just last year, Google shut down its social network platform Google+ after a bug in its software exposed the private data of up to 500,000 users.

In April, Microsoft disclosed that a hacker had compromised the account of a Microsoft support agent. As a result, the company admitted that it is possible that the hacker accessed and viewed the content of some Outlook users' accounts.

Following these incidents, it thus dubious as to whether this new consortium will succeed at thoroughly securing our personal data. With big tech companies possessing more control over our sensitive information than ever, it is now vital that we hold these organisations to account.

Looking to learn more about GDPR? Listen to our podcast with industry experts

OpenAI Takes Aim at Google Search With SearchGPT

Beyond the AI Hype: The Challenges AI Brings to the IT Industry

What is a Prompt Engineering? How to Make LLMs Better

What is a Stochastic Parrot? Understanding the Hidden Flaw in LLMs

Data Mastery: Driving Business Growth with MDM and AI Innovations

Breaking Barriers With Accessible Data Visualization

Teradata and The Very Group: Innovating with Analytics to Help Families Get More

Teradata and Brinker: AI and the Cloud Serve Up Sizzling Food

How a Labour Government Will Change UK Tech, According to Experts

Top 10 Best Public DNS Servers for 2024

What is Engagement Farming and is it Worth the Risk?

Meta to Dissolve 'Reality Labs' Division as Layoffs Loom

Top 10 ERP Software and Systems for 2024

Top 10 SD-WAN Providers to Consider in 2024

Top 10 Best DCIM Software Solutions for 2024

Opentelemetry: The Key to Unified Telemetry Data

Secureworks & IDC MarketScape: Worldwide MDR 2024 Vendor Assessment

Secureworks: 10 Security Controls to Reduce Risk

NHS Suffers Blood Shortage as Cyber Attack Disrupts Donations

Why the Cybersecurity Industry Needs Podcasts

1 TB of Disney Data Leaked in NullBulge Cyber Attack

Why did Yik Yak Fail? How the Messaging App Died

What Happened to AltaVista? The Rise and Fall of a Search Pioneer

What is an AI Skeleton Key? Microsoft Warns of New Vulnerability

OpenAI Takes Aim at Google Search With SearchGPT

NHS Suffers Blood Shortage as Cyber Attack Disrupts Donations

What is a Prompt Engineering? How to Make LLMs Better

What is a Stochastic Parrot? Understanding the Hidden Flaw in LLMs

Data Mastery: Driving Business Growth with MDM and AI Innovations

Beyond the AI Hype: The Challenges AI Brings to the IT Industry

Why the Cybersecurity Industry Needs Podcasts

Breaking Barriers With Accessible Data Visualization

Top 10 ERP Software and Systems for 2024

Top 10 MFA Providers and Software Tools for 2024

Top 10 Best Data Quality Tools for 2024

Top 10 SD-WAN Providers to Consider in 2024

Secureworks & IDC MarketScape: Worldwide MDR 2024 Vendor Assessment

Secureworks: 10 Security Controls to Reduce Risk

AuditBoard: Digital Risk Report 2024

AuditBoard: IT Risk and Compliance Platforms

Cybersecurity Luminary Stephen Khan to Receive Prestigious Hall of Fame Award at Infosecurity Europe

Leadership powerhouse Claire Williams OBE reveals how to navigate change and develop a strong team culture at Infosecurity Europe 2024

Digital Transformation Week Unveils Keynote Topics: Empowering Enterprises with Real-World Insights

Generative AI and Deepfake Expert, Henry Ajder to discuss the impact of generative AI on cybersecurity at Infosecurity Europe 2024

"Everyone's Talking About AI in Cybersecurity!" | TG Singham @ Infosecurity Europe

"You Need to Test that Your Backup Plan Actually Works!" | Kim Larsen @ Infosecurity Europe

"There's a Disparity Between Threat Actors and Security Teams" | Koryak Uzan @ Infosecurity Europe

"There's an Information Overload for Cybersecurity Teams!" | James Johnson @ Infosecurity Europe

Is our personal data at risk?

Are organisations doing enough?

More from EM360 Tech

EM360 Tech

Recommended for you

OpenAI Takes Aim at Google Search With SearchGPT