Background Private parking company, CityParkering, offers the possibility of online payment of your parking fines issued for improper parking on[…]
Read moreCategory: GDPR
GDPR is probably one of the best legislative changes the world had experienced in terms of information security and privacy.
A lot of companies are still far away from properly protecting their users data and we can see this in data breaches and big hacks around the world.
In business, proper security and privacy practices usually means an added cost to the license to operate. It is usually something they do not truly believe in, even though it can mean big costs or even going out of business.
As part of my independent Security and Privacy research, I frequently stumble upon companies like those mentioned above. As a response, I create a report detailing what risks are they exposing themselves and their users too. If they fail to take it into consideration, I will file a complaint to the Data Protection Authority.
Case on FDM.dk and FakturaIT.dk – Invoice Reminders and Phishing Susceptibility
Background Danish Automotive company FDM, contracts another company to handle invoice reminders. The IT setup behind the process raises concerns[…]
Read moreComplaints to the Danish Data Protection Authority – process review and optimization
Working in Information Security triggers me to sometimes look into technical or process issues that might have security implications in[…]
Read more