Are UK Nightclubs Breaking Data Laws by Storing Your ID Details and Fingerprints?

Frankie Mullin discusses on the Vice website if nightclubs are breaking the law storing clubbers finger prints and scanned IDs.

ID scanning equipment is increasingly a feature in clubs and bars across the UK and is often required by the local licensing authority as part of the licence conditions for a venue.  However, there are concerns about the storage and retention of this personal data and the use to which it can be put, particularly as club owners were found to be unclear about data protection requirements.

The power to require clubs to collect ID is in the Licensing Act 2003 (Mandatory Licensing Conditions) Order 2010, which was introduced by the coalition government.  In the article NO2ID’s General Secretary Guy Herbert highlights that:

“…. at the same time as the government was making a fanfare about repealing Labour’s ID Cards legislation, they were creating a special case of requiring the production of an official ID.”

He also noted that the requirement in the act was specifically for identification, not proof of age.

Facebook offers Tor link for users that prefer to stay as anonymous as possible

James Vincent reports in the Independent that Facebook is to allow a Tor link to its site via a special URL for users who wish to stay anonymous as possible.  Prior to this link, access to Facebook via Tor was essentially blocked by the sites security protocols.

Users will not be anonymous to Facebook as they still have to log on; however, anyone monitoring the internet connection will not be able to identify the user or the user’s location.  This could be useful in countries like Iran, China and North Korea where Facebook is blocked for fear that it will be used by opposition movements.

Derby City Council used RIPA to Spy on Reporter

Chris Mallett reports in the Derby Telegraph of a case where Derby City council used the Regulation of Investigatory Powers Act (RIPA) to spy on a Derby Telegraph reporter.

The incident was highlighted  during a House Of Lords debate on the Regulation of Investigatory Powers act by Lord Black of Brentwood, executive director of the Telegraph Media Group.

However, they were seen by member of Council staff who alerted colleagues who dispatched two members of the internal audit department to conduct the surveillance.  Lord Black highlighted that confidential sources like Miss Green’s were critical for reporting matters of public interest and said:

“Just think about the disastrous impact on local press reporting of local authorities if such sources of information dried up.”

Patient records open to hackers due to NHS Trusts failing to sign up to Windows XP extended support

 

Kat hall reports in the Register that some NHS trusts have failed to put agreements in place with Microsoft for extended security support for Windows XP.

A majority of NHS trusts still operate Windows XP based machines and have signed up to a Cabinet Office agreement with Microsoft to provide ongoing security upgrades until April 2015; however, 18 trusts have so far failed to sign the agreement.

The article highlights that a total of 1.1 million PCs and laptops are estimated to be running Windows at trusts, GPs and other health groups that comprise the NHS in England.  The security risks from a lack of security support depend on factors such as how many non-upgraded machines are on the networks, the effectiveness of perimeter defences and the availability of suitable exploits for an attacker to use.