Latest Legislation News

Law firm in Belgium turns to Enterprise Vault to archive email and achieve corporate governance
posted on 07/06/2010

All Belgian legal firms are required to show “good governance” of their IT Systems. They should be able to show a paper trail of email communication to support an action or advice given to a client. Altius, one of the largest independent law firms in Belgium, has turned to Enterprise Vault from Frontier Technology to archive email, reduce storage and achieve corporate governance. Altius assists companies in their international and Belgian transactions and litigation. The firm wanted their emails to be centrally archived to aid legal cases. They also required a solution to reduce overall storage and give lawyers access to their email archives at home. Due to the volume of email data being generated at Altius, personal email archives were becoming overwhelmed and management were noticing increased overheads and unreliability in their systems. The firm required a solution to store all emails centrally, reduce storage costs and management overheads while allowing full remote access to arc... [more]

Security Industry Authority licensing for in-house door supervisors is now compulsory in Northern Ireland
posted on 06/04/2010

It is an offence throughout the United Kingdom to work in the following designated sectors without an SIA licence: · Cash and Valuables in Transit · Close Protection · Door Supervision · Public Space Surveillance (CCTV) · Security Guard · Key Holding · Immobilisation, restriction and removal of vehicles Compulsory licensing for in-house door staff working at licensed premises, such as pubs, bars and clubs, came into force on 1 April 2010 in Northern Ireland. By law, all door staff must now hold and display a valid Security Industry Authority licence. Those who manage, supervise and/or employ individuals who engage in licensable activity must hold at least a non-front line licence. This is the final stage of SIA regulation in Northern Ireland. In December 2009 it became an offence to work in designated manned guarding activities without a licence. SIA Chief Executive Bill Butler said: “This marks the final piece of the j... [more]

A new era for strong authentication
posted on 06/04/2010

Following the announcement from the UK Ministry of Justice that organisations will be prosecuted under the UK Data Protection Act 1988, Stephen Howes, CEO for GrIDsure, looks at what this means for organisations that store personal data Amendment to the UK Data Protection Act 1988? As many of you will have seen, late last year the UK Ministry of Justice (MoJ) announced plans to give the Information Commissioner’s Office (ICO) new powers to fine organisations for data breaches. One of the headline measures included in the announcement was that as of 1st April 2010, those found responsible for data breaches could be held liable for fines of up to £500,000. This could mean that Data Controllers, Senior Information Risk Officers and anyone working as an IT or data specialist in charge of risk assessment can now be held personally responsible for any data infringements, rather than the company or organisation that they work for. What does this mean for data governors? Clearly, organ... [more]

Ruling confirms HMRC was correct not to confiscate a shipment of fake mobile phones
posted on 25/03/2010

A recent judicial ruling in the UK not to confiscate a shipment of fake phones raises serious questions about the definition of counterfeit goods around the world. In the wake of the verdict, Jim Rittenburg, chair of the International Authentication Association reviews the ruling and examines the potential impact on brand owners, manufactures and consumers. Question: When are fake goods not classed as counterfeit? Answer: When they aren’t intended for sale and don’t infringe registered trademark or intellectual property rights. This, at least, appears to be the answer given by Justice Kitchen in finding Her Majesty’s Revenue and Customs (HMRC) was correct not to confiscate a shipment of so-called ‘Nokia’ phones – in spite of them being proven fakes. Brand owners and manufacturers around the world could be forgiven for being more than a little concerned by this precedent. The case in question originally arose in July 2008 when HMRC examined a shipment of Nokia phones being ... [more]

Strong increase in ICO penalties for serious data leaks or losses
posted on 24/03/2010

From April 6, the UK's Information Commissioners' Office (ICO) has the power to fine organisations up to 500,000 pounds - up from 5,000 pounds previously - for serious data leaks or losses. The critical element in this regard is clearly stated in the ICO's guidance on the new penalties. The guidance states that penalties will be incurred where the "data controller has seriously contravened the data protection principles and the contravention was of a kind likely to cause substantial damage or substantial distress." "The crucial wording in the guidance notes is that the data controller must have known - or ought to have known - that there was a risk that a contravention would occur and ought to have known that there was a risk that a contravention would occur'," said Amichai Shulman, chief technology officer with Imperva. “The problem is the emphasis on being honest upon discovery of a breach which could actually encourage organizations to have lax protection policies and robust CYA p... [more]

Other Security news and resources