A flavour of November news

By Phil Brining

Talk Talk hack estimated to cost up to £35m http://www.bbc.co.uk/news/uk-34784980

VTech hack exposes 6m kids and 5m adults’ data https://www.vtech.com/en/press_release/2015/faq-about-data-breach-on-vtech-learning-lodge/

Starwood Hotels (USA) hit by malware introduced to tills http://www.scmagazine.com/starwood-hotels-hit-with-pos-malware/article/455395/

TuneCore (online music site) database breached http://www.scmagazineuk.com/tunecore-database-hacked-personal-customer-data-stolen/article/458660/

Adele fans’ data compromised on ticket website through insecure code http://www.scmagazineuk.com/it-isnt-over-adele-fans-security-breached/article/456749/

Pearson VUE (manages credentials) hacked http://www.theregister.co.uk/2015/11/23/pearson_vue_data_breach_pcm/

Touchnote Postcard App customer database breached http://www.bbc.co.uk/news/technology-34744132

ICO’s launches video on direct marketing guidance https://iconewsblog.wordpress.com/2015/11/27/why-companies-need-to-think-before-making-marketing-calls/

ICO and Ofcom launch action plan to stop nuisance calls http://stakeholders.ofcom.org.uk/binaries/consultations/silentcalls/JAP_Update_Dec2015.pdf

ICO issues enforcement notice against cold call company https://ico.org.uk/media/action-weve-taken/enforcement-notices/1560332/aurangzeb-iqbal-enforcement-notice.pdf

ICO starts investigation into 1000 companies buying and selling personal information https://ico.org.uk/about-the-ico/news-and-events/news-and-blogs/2015/11/nuisance-call-crackdown-continues-with-letters-to-1-000-companies-trading-names-and-numbers/

ICO issues £370k of fines for PECR compliance failures (cold calling etc.) during November
ICO issues £200k of fines for P7 breach (information security) during November

Unilever ponders personalised marketing under the new regime http://www.thedrum.com/news/2015/12/09/unilever-braced-titanic-shift-media-it-predicts-will-come-once-customer-owns-their

Security experts warn of rise in insider data breaches http://www.scmagazineuk.com/40-of-security-experts-predict-insider-data-breaches-in-coming-year/article/454693/

Contact Us

Send us a Message

Data Protection Project
GDPR Gap Analysis/Audit/Review
Outsourced Privacy Officer/DPO
Support Desk
SAR Support
Cyber Maturity Assessment
NIS Regulations
Information Governance Documentation
DataWise System

We are always happy to make contact with you by either phone, email or a face to face meeting at our office or yours. We work standard UK office hours – every week day 0830 to 1730.


We have been advising those people who have contacted us that they should make a complaint to the Information Commissioner’s Office (ICO) using this link https://ico.org.uk/make-a-complaint/nuisance-calls-and-messages/spam-texts-and-nuisance-calls/.  It would be helpful to the ICO if you knew the number that called you, the date and time of the call and what the call seemed to be about.

You might also want to register your phone number with the telephone preference service (TPS), a national suppression service which should cut down calls of this nature as it is not lawful to make unsolicited direct marketing calls to numbers registered on the TPS.  You can register your number here https://www.tpsonline.org.uk/register.

We know that these kind of calls can be distressing and intrusive and you have our sympathy.  Please do not hesitate to contact us if you would like to discuss it with us otherwise we’d encourage you to report it to the ICO as notifying them of this kind of practice enables them to investigate and take enforcement action where necessary.  You can see the action that has been taken by the ICO here https://ico.org.uk/action-weve-taken/enforcement/.

Data Protection People Limited – March 2021