Luxembourg in a nutshell. Everything interesting related to Luxembourg in French, English, German and Luxembourgish. We Luxembourgers are multilingual ;-)
Ein Forscherteam der Uni Luxemburg hat einen sicherheitsrelevanten Fehler beim Scannen von Reisepässen aufgedeckt.
Forscher der Universität Luxemburg haben einen Fehler im Sicherheitsstandard entdeckt, der seit 2004 weltweit bei sogenannten elektronischen Pässen verwendet wird. Demnach können solche Pässe aus der Distanz ausgelesen und dessen Inhaber identifiziert werden.
Der Standard ICAO 9303 ermöglicht eigentlich das Scannen dieser Pässe an dafür vorgesehenen e-Pass-Readern, zum Beispiel an Flughäfen. Der Standard wird dabei von der Internationalen Zivilluftfahrtorganisation (International Civil Aviation Organization, ICAO) vorgegeben und ist weltweit gültig. Er soll verhindern, dass gewisse Informationen, die auf dem Pass enthalten sind, miteinander verknüpft werden können.
Ein Forscherteam der Uni Luxemburg hat einen sicherheitsrelevanten Fehler beim Scannen von Reisepässen aufgedeckt.
Forscher der Universität Luxemburg haben einen Fehler im Sicherheitsstandard entdeckt, der seit 2004 weltweit bei sogenannten elektronischen Pässen verwendet wird. Demnach können solche Pässe aus der Distanz ausgelesen und dessen Inhaber identifiziert werden.
Der Standard ICAO 9303 ermöglicht eigentlich das Scannen dieser Pässe an dafür vorgesehenen e-Pass-Readern, zum Beispiel an Flughäfen. Der Standard wird dabei von der Internationalen Zivilluftfahrtorganisation (International Civil Aviation Organization, ICAO) vorgegeben und ist weltweit gültig. Er soll verhindern, dass gewisse Informationen, die auf dem Pass enthalten sind, miteinander verknüpft werden können.
Hotshot is a data privacy and security platform which enables businesses to protect data based upon specific geographical and time-based restriction policies. The startup combines the simplicity of a high-speed communications platform (like Slack) with identity and access management features for cloud platforms (like Okta).
It is the first GDPR-compliant messaging, collaboration and identity platform to be released for use in the EU and North America. Aaron Turner, CEO and Cofounder of Hotshot believes that the EU’s leadership in this area will help the company build a platform which will serve the needs of the EU market as well as deliver technologies that will address the needs of new data privacy regulations in the US as well. Interview with the American serial entrepreneur.
Hotshot is a data privacy and security platform which enables businesses to protect data based upon specific geographical and time-based restriction policies. The startup combines the simplicity of a high-speed communications platform (like Slack) with identity and access management features for cloud platforms (like Okta).
It is the first GDPR-compliant messaging, collaboration and identity platform to be released for use in the EU and North America. Aaron Turner, CEO and Cofounder of Hotshot believes that the EU’s leadership in this area will help the company build a platform which will serve the needs of the EU market as well as deliver technologies that will address the needs of new data privacy regulations in the US as well. Interview with the American serial entrepreneur.
Ever felt you’re being watched online? Marina Stephanova and Barbora Kudzmanaite from Luxembourg professional development meetup MICSE share their tips on limiting your online trail.
Most of us have surely been there – you open a website and have the haunting feeling it's reading your mind, as you are immediately served ads related to the exact same things you have just been chewing over. Convenient, indeed, but one cannot help but wonder what trails ads networks follow to pop up on our screens and what digital footprints we leave.
New technologies make our lives easier but they also invade our privacy in unprecedented ways. The cell phone that keeps you in touch with everybody also tracks your location. Your searches online should be nobody's business, but search engines are logging your activities, and making this precious data available to any third party willing to pay enough. The same applies to social media, which eavesdrop on the content you see, like and share. But why do online companies spend so much time tracking us? The answer is simple, to ensure that perfectly targeted ads appear on your screens, making you click on them without a second thought.
Ever felt you’re being watched online? Marina Stephanova and Barbora Kudzmanaite from Luxembourg professional development meetup MICSE share their tips on limiting your online trail.
Most of us have surely been there – you open a website and have the haunting feeling it's reading your mind, as you are immediately served ads related to the exact same things you have just been chewing over. Convenient, indeed, but one cannot help but wonder what trails ads networks follow to pop up on our screens and what digital footprints we leave.
New technologies make our lives easier but they also invade our privacy in unprecedented ways. The cell phone that keeps you in touch with everybody also tracks your location. Your searches online should be nobody's business, but search engines are logging your activities, and making this precious data available to any third party willing to pay enough. The same applies to social media, which eavesdrop on the content you see, like and share. But why do online companies spend so much time tracking us? The answer is simple, to ensure that perfectly targeted ads appear on your screens, making you click on them without a second thought.
À l’heure actuelle, le service de Christophe Buschmann compte cinq personnes, qui pourront s’appuyer sur la vingtaine d’experts sectoriels que compte la CNPD. Mais les effectifs vont augmenter. «Des recrutements d’auditeurs sont en cours, assure-t-il. Nous sommes en train de définir les derniers détails de la méthodologie que nous appliquerons, mais nous veillerons à être très professionnels pour transmettre un sentiment de confiance.» Créée en 2002 suite à la transposition dans la loi de la directive européenne sur la protection des données, la CNPD va devenir une institution-clé de l’État à partir du 25 mai. Il y a trois ans, elle comptait une quinzaine de collaborateurs. Il est prévu qu’ils soient 35 d’ici la fin de l’année et 49 en 2020. Des effectifs qui vont crescendo pour des contrôles qui seront de plus en plus nombreux au fil des ans. Pour l’année 2018, seulement 25 audits sont prévus par la CNPD. «Cela ne veut pas dire que nous n’effectuerons que 25 contrôles, tient à préciser Tine A. Larsen. Nous utiliserons des approches à la fois thématiques et sectorielles. Nous viserons donc à chaque fois plusieurs entreprises.»
À l’heure actuelle, le service de Christophe Buschmann compte cinq personnes, qui pourront s’appuyer sur la vingtaine d’experts sectoriels que compte la CNPD. Mais les effectifs vont augmenter. «Des recrutements d’auditeurs sont en cours, assure-t-il. Nous sommes en train de définir les derniers détails de la méthodologie que nous appliquerons, mais nous veillerons à être très professionnels pour transmettre un sentiment de confiance.» Créée en 2002 suite à la transposition dans la loi de la directive européenne sur la protection des données, la CNPD va devenir une institution-clé de l’État à partir du 25 mai. Il y a trois ans, elle comptait une quinzaine de collaborateurs. Il est prévu qu’ils soient 35 d’ici la fin de l’année et 49 en 2020. Des effectifs qui vont crescendo pour des contrôles qui seront de plus en plus nombreux au fil des ans. Pour l’année 2018, seulement 25 audits sont prévus par la CNPD. «Cela ne veut pas dire que nous n’effectuerons que 25 contrôles, tient à préciser Tine A. Larsen. Nous utiliserons des approches à la fois thématiques et sectorielles. Nous viserons donc à chaque fois plusieurs entreprises.»
Avec l’arrivée du GDPR, cette vidéo de sensibilisation permet de comprendre les éléments importants et les acteurs de la protection des données au Luxembourg. D’autres informations et réunions sur notre site de l’APDL www.apdl.lu.
Avec l’arrivée du GDPR, cette vidéo de sensibilisation permet de comprendre les éléments importants et les acteurs de la protection des données au Luxembourg. D’autres informations et réunions sur notre site de l’APDL www.apdl.lu.
Le RGPD au service de la cybersécurité 03 JANVIER 2018 06:00
Le compte à rebours a commencé: le règlement général sur la protection des données (RGPD) entrera en application le 25 mai prochain. Cette initiative, unique au niveau mondial, vise à renforcer les droits des Européens sur internet. Mais la mise en conformité représente un défi de taille pour les entreprises. À travers ce dossier, découvrez les changements à prévoir, ainsi que des avis d’experts sur ce règlement.
In this Privacy Salon we’ll be taking a quick dive into the “Black Boxes” that increasingly control many aspects of our lives, assessing (as much as we can) their influence, and seeing what we can do to keep control in an age of “algorithmic overlords”
Date: Wednesday 07/11/17, 19:00
Address: Level2 87 route de Thionville L-2611 Luxembourg
In this Privacy Salon we’ll be taking a quick dive into the “Black Boxes” that increasingly control many aspects of our lives, assessing (as much as we can) their influence, and seeing what we can do to keep control in an age of “algorithmic overlords”
Date: Wednesday 07/11/17, 19:00
Address: Level2 87 route de Thionville L-2611 Luxembourg
At the first RegTech Summit held on 12 October 2017, the Luxembourg Institute of Science and Technology (LIST), Digital Luxembourg and eProseedRTC supported the National Commission for Data Protection (CNPD) in launching a tool to enable organisations to evaluate the extent of their compliance with the new General Data Protection Regulations (GDPR).
PREPARING FOR 25 MAY 2018
Companies, public administrations and associations who handle personal data are required to comply with the new European regulations by 25 May 2018.
As a regulatory body, CNPD, together with LIST, have formed a partnership for the purposes of a research project, which is also supported by Digital Luxembourg, in an effort to assist private and public stakeholders in integrating the provisions of the new regulations.
This tool – the "GDPR Compliance Support Tool" - also contributes to Luxembourg's objective of digitising and simplifying procedures, particularly in terms of ensuring compliance with the current and future regulatory framework.
ASCERTAIN YOUR ORGANISATION'S LEVEL OF COMPLIANCE
The "GDPR Compliance Support Tool" is an innovative, intuitive solution enabling users to ascertain the level of maturity of their organisations. It contains a comprehensive, in-depth database covering 350 regulatory requirement criteria.
The tool will allow stakeholders not only to manage a data processing register in addition to the other documents required to demonstrate their compliance, but also to monitor the progress of their level of organisational maturity. The tool will be offered to companies free of charge and its content will be updated on an ongoing basis.
At the first RegTech Summit held on 12 October 2017, the Luxembourg Institute of Science and Technology (LIST), Digital Luxembourg and eProseedRTC supported the National Commission for Data Protection (CNPD) in launching a tool to enable organisations to evaluate the extent of their compliance with the new General Data Protection Regulations (GDPR).
PREPARING FOR 25 MAY 2018
Companies, public administrations and associations who handle personal data are required to comply with the new European regulations by 25 May 2018.
As a regulatory body, CNPD, together with LIST, have formed a partnership for the purposes of a research project, which is also supported by Digital Luxembourg, in an effort to assist private and public stakeholders in integrating the provisions of the new regulations.
This tool – the "GDPR Compliance Support Tool" - also contributes to Luxembourg's objective of digitising and simplifying procedures, particularly in terms of ensuring compliance with the current and future regulatory framework.
ASCERTAIN YOUR ORGANISATION'S LEVEL OF COMPLIANCE
The "GDPR Compliance Support Tool" is an innovative, intuitive solution enabling users to ascertain the level of maturity of their organisations. It contains a comprehensive, in-depth database covering 350 regulatory requirement criteria.
The tool will allow stakeholders not only to manage a data processing register in addition to the other documents required to demonstrate their compliance, but also to monitor the progress of their level of organisational maturity. The tool will be offered to companies free of charge and its content will be updated on an ongoing basis.
2016 hatte die nationale Kommission für den Datenschutz (CNPD) alle Hände voll zu tun. Zusätzlich zu ihren üblichen Tätigkeiten (siehe Infobox), hat die CNPD begonnen, sich auf eine neue europäische Regelung vorzubereiten, die ab dem 25. Mai 2018 ein einheitliches Datenschutzsystem für Europa vorsieht. Das Ziel dieser Reform ist es, «den Bürgern die Kontrolle über ihre persönlichen Daten wiederzugeben», erklärte Tine A. Larsen, Präsidentin der Kommission, am Donnerstag bei der Vorstellung der Bilanz von 2016.
Mit diesem neuen Gesetzestext müssen Unternehmen und Behörden der CNPD keine Benachrichtigung oder einen Antrag auf Zulassung mehr zukommen lassen. Nunmehr ist die nachträgliche Kontrolle maßgebend und somit wird die Überwachungsrolle der CNPD verstärkt. Dem Vollmitglied Thierry Lallemang zufolge wird diese Kontrolle einige Missbräuche verhindern. «Die Überwachungsmittel der Angestellten werden zum Beispiel viel besser kontrolliert und es wird keine Genehmigungen mehr geben, die in der untersten Ecke einer Schublade herumliegen und doch nicht eingehalten werden».
2016 hatte die nationale Kommission für den Datenschutz (CNPD) alle Hände voll zu tun. Zusätzlich zu ihren üblichen Tätigkeiten (siehe Infobox), hat die CNPD begonnen, sich auf eine neue europäische Regelung vorzubereiten, die ab dem 25. Mai 2018 ein einheitliches Datenschutzsystem für Europa vorsieht. Das Ziel dieser Reform ist es, «den Bürgern die Kontrolle über ihre persönlichen Daten wiederzugeben», erklärte Tine A. Larsen, Präsidentin der Kommission, am Donnerstag bei der Vorstellung der Bilanz von 2016.
Mit diesem neuen Gesetzestext müssen Unternehmen und Behörden der CNPD keine Benachrichtigung oder einen Antrag auf Zulassung mehr zukommen lassen. Nunmehr ist die nachträgliche Kontrolle maßgebend und somit wird die Überwachungsrolle der CNPD verstärkt. Dem Vollmitglied Thierry Lallemang zufolge wird diese Kontrolle einige Missbräuche verhindern. «Die Überwachungsmittel der Angestellten werden zum Beispiel viel besser kontrolliert und es wird keine Genehmigungen mehr geben, die in der untersten Ecke einer Schublade herumliegen und doch nicht eingehalten werden».
As part of the 11th Data Protection Day, the Commission nationale pour la protection des données (CNPD) has published three animated videos about future European regulation concerning data protection and has launched its new complaint form.
With the rise of modern technologies, more and more individual information is collected, exchanged and processed, often without the persons concerned knowing by whom, for what purpose, for how long and with what effects. Globalisation and new connection tools (social networks, smartphones, smart homes, connected cars, etc.) have pushed back the traditional limits that restricted the availability of our personal data.
The exploitation of personal data for advertising purposes is indeed often the basis of the "business model" of social networks, search engines or other companies offering services on the Internet. In the age of digitisation, the protection of individuals' fundamental rights, including data protection, becomes essential.
As part of the 11th Data Protection Day, the Commission nationale pour la protection des données (CNPD) has published three animated videos about future European regulation concerning data protection and has launched its new complaint form.
With the rise of modern technologies, more and more individual information is collected, exchanged and processed, often without the persons concerned knowing by whom, for what purpose, for how long and with what effects. Globalisation and new connection tools (social networks, smartphones, smart homes, connected cars, etc.) have pushed back the traditional limits that restricted the availability of our personal data.
The exploitation of personal data for advertising purposes is indeed often the basis of the "business model" of social networks, search engines or other companies offering services on the Internet. In the age of digitisation, the protection of individuals' fundamental rights, including data protection, becomes essential.
On Tuesday 11 October 2016, Luxembourg’s National Commission for Data Protection (CNPD) and the Service for Media and Communication (SMC) held a conference on the main changes stemming from new data protection regulation.
The conference marked the start of a series of events especially designed in the framework of the Digital Lëtzebuerg initiative with the aim of presenting the new regulation to those concerned and guiding them in its implementation.
More than 500 people attended the conference at the Maison du Savoir at Esch-Belval, where the Prime Minister and Minister of Media and Communication, Xavier Bettel, discussed the challenges and opportunities provided by the new European regulation for Luxembourg. PM Bettel referred to it as “an adaptation to a new world, a world where technological innovation allows for important advances while also guaranteeing the respect of our fundamental principles.”
These new laws, which replace the 1995 directive of the same nature, will be directly applicable in all Member states of the European Union from 25 May 2018. The new regulation aims to give citizens more control over their personal data, give more responsibility to businesses whilst reducing their administrative costs, and also reinforcing the role of data protection authorities like CNPD.
On Tuesday 11 October 2016, Luxembourg’s National Commission for Data Protection (CNPD) and the Service for Media and Communication (SMC) held a conference on the main changes stemming from new data protection regulation.
The conference marked the start of a series of events especially designed in the framework of the Digital Lëtzebuerg initiative with the aim of presenting the new regulation to those concerned and guiding them in its implementation.
More than 500 people attended the conference at the Maison du Savoir at Esch-Belval, where the Prime Minister and Minister of Media and Communication, Xavier Bettel, discussed the challenges and opportunities provided by the new European regulation for Luxembourg. PM Bettel referred to it as “an adaptation to a new world, a world where technological innovation allows for important advances while also guaranteeing the respect of our fundamental principles.”
These new laws, which replace the 1995 directive of the same nature, will be directly applicable in all Member states of the European Union from 25 May 2018. The new regulation aims to give citizens more control over their personal data, give more responsibility to businesses whilst reducing their administrative costs, and also reinforcing the role of data protection authorities like CNPD.
LUXEMBOURG – Un projet de loi relatif à la protection des données a été présenté ce mercredi en commission. Il prévoit une meilleure protection pour les citoyens.
LUXEMBOURG – Un projet de loi relatif à la protection des données a été présenté ce mercredi en commission. Il prévoit une meilleure protection pour les citoyens.
ESORICS 2019 Conference: Researchers at the University of Luxembourg have discovered a flaw in the security standard used in biometric passports (e-passports) worldwide since 2004. This standard, ICAO 9303, allows e-passport readers at airports to scan the chip inside a passport and identify the holder.
Most passports today use the standard ICAO 9303, which is issued by the International Civil Aviation Organization (ICAO). The standard is designed to ensure that the privacy and unlinkability of the passport holder is protected to the highest degree. Unlinkability ensures that an attacker could not distinguish if two elements are closely related.
Dr Ross Horne, Prof. Sjouke Mauw, PhD candidate Zach Smith and Master student Ihor Filimonov tested the standard. They discovered a flaw which allows specific non-authorised equipment to access passport data. “With the right device, you can scan passports in close vicinity and reidentify previously observed passport holders, keeping track of their movements”, Dr Horne explains. “Thus, passport holders are not protected against having their movements traced by an unauthorised observer.”
ESORICS 2019 Conference: Researchers at the University of Luxembourg have discovered a flaw in the security standard used in biometric passports (e-passports) worldwide since 2004. This standard, ICAO 9303, allows e-passport readers at airports to scan the chip inside a passport and identify the holder.
Most passports today use the standard ICAO 9303, which is issued by the International Civil Aviation Organization (ICAO). The standard is designed to ensure that the privacy and unlinkability of the passport holder is protected to the highest degree. Unlinkability ensures that an attacker could not distinguish if two elements are closely related.
Dr Ross Horne, Prof. Sjouke Mauw, PhD candidate Zach Smith and Master student Ihor Filimonov tested the standard. They discovered a flaw which allows specific non-authorised equipment to access passport data. “With the right device, you can scan passports in close vicinity and reidentify previously observed passport holders, keeping track of their movements”, Dr Horne explains. “Thus, passport holders are not protected against having their movements traced by an unauthorised observer.”
Having a strong capacity for renewal is the essential drive to face competition within a global economy that is constantly changing. In the last few years, Luxembourg has grown stronger through the development of innovative technological businesses, whether in the sphere of electronic business, digital content, cloud computing, Big Data or e-payments.
In other words, in terms of digital progress, the Grand Duchy experienced a significant boost in recent years. Today, Luxembourg is among the leading countries of the European Union in this field, just behind Scandinavian countries (Denmark, Sweden, Finland) and the Netherlands.
At a later stage, the objective is to strengthen and consolidate the country's position in the field of ICT in order to, among other considerations, diversify the economy. "Digital Lëtzebuerg" is the name of the institution behind this digital transformation; Luxembourg's new face as a smart nation: a modern, open, highly connected nation that is good to go for a digital society.
In a meeting with Pascal Steichen, CEO of the economic interest grouping known as Securitymadein.lu, he tells us why Luxembourg is setting an example to follow when it comes to cybersecurity.
1. Luxembourg ranked 1st in the world for ICT access and 10th regarding ICT use. In what way does Luxembourg benefit from being a privileged location for companies in the ICT sector?
One of the main benefits is the development of a service-based economy. The high level of equipment and connectivity means that businesses can develop innovative services supported by a high performance digital infrastructure and a very receptive audience.
What's more, the country's size means that it is an ideal environment for innovations to thrive. Last but not least, for over a decade, the government has been strongly and actively supporting digitalisation and cybersecurity as cornerstones of the country's development strategy.
Having a strong capacity for renewal is the essential drive to face competition within a global economy that is constantly changing. In the last few years, Luxembourg has grown stronger through the development of innovative technological businesses, whether in the sphere of electronic business, digital content, cloud computing, Big Data or e-payments.
In other words, in terms of digital progress, the Grand Duchy experienced a significant boost in recent years. Today, Luxembourg is among the leading countries of the European Union in this field, just behind Scandinavian countries (Denmark, Sweden, Finland) and the Netherlands.
At a later stage, the objective is to strengthen and consolidate the country's position in the field of ICT in order to, among other considerations, diversify the economy. "Digital Lëtzebuerg" is the name of the institution behind this digital transformation; Luxembourg's new face as a smart nation: a modern, open, highly connected nation that is good to go for a digital society.
In a meeting with Pascal Steichen, CEO of the economic interest grouping known as Securitymadein.lu, he tells us why Luxembourg is setting an example to follow when it comes to cybersecurity.
1. Luxembourg ranked 1st in the world for ICT access and 10th regarding ICT use. In what way does Luxembourg benefit from being a privileged location for companies in the ICT sector?
One of the main benefits is the development of a service-based economy. The high level of equipment and connectivity means that businesses can develop innovative services supported by a high performance digital infrastructure and a very receptive audience.
What's more, the country's size means that it is an ideal environment for innovations to thrive. Last but not least, for over a decade, the government has been strongly and actively supporting digitalisation and cybersecurity as cornerstones of the country's development strategy.
Avec la digitalisation de la société, de plus en plus d’entreprises, administrations publiques, associations et autres professionnels peuvent être amenés à collecter, échanger et traiter des données à caractère personnel.
Or, les organismes qui utilisent ces données seront soumis à des règles encore plus strictes à compter du vendredi 25 mai, et cela à travers toute l’Union européenne.
Des traitements tels que la vidéosurveillance, la géolocalisation, la gestion des ressources humaines (conservation des CV, par exemple), la biométrie ou encore le transfert vers des pays tiers vont tous devoir se faire dans le respect de ces règles.
Un séminaire organisé par le CNPD Afin de respecter les droits des citoyens et leurs propres obligations, il est important que les acteurs (intéressés, responsables de traitement, sous-traitants…) comprennent la protection des données.
«L’objectif du RGPD est double. D’une part, il vise à redonner le contrôle sur les données qu’il partage au particulier. D’autre part, il doit permettre de faire circuler les données au sein de l’UE», explique la présidente de la Commission nationale de protection des données (CNPD), Tine Larsen.
Avec la digitalisation de la société, de plus en plus d’entreprises, administrations publiques, associations et autres professionnels peuvent être amenés à collecter, échanger et traiter des données à caractère personnel.
Or, les organismes qui utilisent ces données seront soumis à des règles encore plus strictes à compter du vendredi 25 mai, et cela à travers toute l’Union européenne.
Des traitements tels que la vidéosurveillance, la géolocalisation, la gestion des ressources humaines (conservation des CV, par exemple), la biométrie ou encore le transfert vers des pays tiers vont tous devoir se faire dans le respect de ces règles.
Un séminaire organisé par le CNPD Afin de respecter les droits des citoyens et leurs propres obligations, il est important que les acteurs (intéressés, responsables de traitement, sous-traitants…) comprennent la protection des données.
«L’objectif du RGPD est double. D’une part, il vise à redonner le contrôle sur les données qu’il partage au particulier. D’autre part, il doit permettre de faire circuler les données au sein de l’UE», explique la présidente de la Commission nationale de protection des données (CNPD), Tine Larsen.
In Rahmen unserer aktuellen Kampagne mit dem Titel "BIG DATA: wer macht was mit meinen Daten?" und der Einführung der neuen EU-Regelung zur Verarbeitung personenbezogener Daten (DSGVO) am 25. Mai, stellt BEE SECURE Ihnen ein Online-Spiel zu diesem Thema vor.
In die Rolle eines Praktikanten schlüpfen um die Herausforderungen von BIG DATA zu verstehen.
Datak ist ein Serious Game, das im Dezember 2016 vom Schweizer Fernsehen lanciert wurde. Es handelt sich dabei um ein Online-Spiel für Jugendliche ab 15 Jahren, bei dem der Spieler in die Rolle eines Praktikanten schlüpft, der von der Stadtverwaltung eingestellt wird, um sich um die sozialen Netzwerke der fiktiven Stadt "Dataville" zu kümmern.
Der Spieler muss mehrere Entscheidungen bezüglich der Erhebung von Daten treffen - seiner eigenen und jenen der Einwohner. Antwortet er richtig, gewinnt er Geld und Zeit für seinen Arbeitstag, zwei wichtige Elemente um das Spiel zu gewinnen.
In Rahmen unserer aktuellen Kampagne mit dem Titel "BIG DATA: wer macht was mit meinen Daten?" und der Einführung der neuen EU-Regelung zur Verarbeitung personenbezogener Daten (DSGVO) am 25. Mai, stellt BEE SECURE Ihnen ein Online-Spiel zu diesem Thema vor.
In die Rolle eines Praktikanten schlüpfen um die Herausforderungen von BIG DATA zu verstehen.
Datak ist ein Serious Game, das im Dezember 2016 vom Schweizer Fernsehen lanciert wurde. Es handelt sich dabei um ein Online-Spiel für Jugendliche ab 15 Jahren, bei dem der Spieler in die Rolle eines Praktikanten schlüpft, der von der Stadtverwaltung eingestellt wird, um sich um die sozialen Netzwerke der fiktiven Stadt "Dataville" zu kümmern.
Der Spieler muss mehrere Entscheidungen bezüglich der Erhebung von Daten treffen - seiner eigenen und jenen der Einwohner. Antwortet er richtig, gewinnt er Geld und Zeit für seinen Arbeitstag, zwei wichtige Elemente um das Spiel zu gewinnen.
Luxembourg’s data protection agency, the CNPD, has released a data breach notification form ahead of strict new European rules coming into effect later this year.
Among its provisions, the EU’s General Data Protection Regulation requires “data controllers” (organisations that keep personal information) to inform their national regulator of a data breach within 72 hours of discovering it, “if the breach is likely to result in a risk to the rights and freedoms of individuals.”
The GDPR applies starting 25 May.
On its website, the CNPD said organisations were not required to use the form, but it listed the required information.
The CNPD also stated that organisations needed to document all breaches of personal data, even if it is not reported to the privacy watchdog. Organisations are required to record the facts surrounding the breach, its impact and the steps taken to remedy the situation. The CNPD can ask to check this documentation.
The reporting form was published on 12 February, and is available in English and French. It should be submitted via email to databreach@cnpd.lu.
Luxembourg’s data protection agency, the CNPD, has released a data breach notification form ahead of strict new European rules coming into effect later this year.
Among its provisions, the EU’s General Data Protection Regulation requires “data controllers” (organisations that keep personal information) to inform their national regulator of a data breach within 72 hours of discovering it, “if the breach is likely to result in a risk to the rights and freedoms of individuals.”
The GDPR applies starting 25 May.
On its website, the CNPD said organisations were not required to use the form, but it listed the required information.
The CNPD also stated that organisations needed to document all breaches of personal data, even if it is not reported to the privacy watchdog. Organisations are required to record the facts surrounding the breach, its impact and the steps taken to remedy the situation. The CNPD can ask to check this documentation.
The reporting form was published on 12 February, and is available in English and French. It should be submitted via email to databreach@cnpd.lu.
EASING THE WAY TOWARD GRPD PUBLISHED ON 14/12/2017
A few days after receiving the “RegTech Innovation of the Year” Award together with eProseed, the Luxembourg Institute of Science and Technology (LIST) is pleased to announce that on 5 December 2017, its industrial partner eProseed was granted the "IT Development Company of the Year" award by the members of the Luxembourg ICT community at the annual IT One Gala Dinner.
eProseed and LIST achieved a successful collaborative work with the development of the tool enabling organisations to evaluate the extent of their compliance with the new GDPR through a comprehensive database of 350 regulatory requirements.
As mentioned during the award ceremony, the decisive point that justified the jury's choice was the GDPR Compliance Support Tool, a software tool enabling organisations to self-assess their level of compliance with the EU GDPR, which comes into force in May 2018. The GDPR Compliance Support Tool was developed in tight collaboration with Luxembourg's data protection authority (CNPD), LIST and Digital Luxembourg, the government initiative that supports public and private actions in the digital area.
A tool of this kind is a premiere in the European Union.
EASING THE WAY TOWARD GRPD PUBLISHED ON 14/12/2017
A few days after receiving the “RegTech Innovation of the Year” Award together with eProseed, the Luxembourg Institute of Science and Technology (LIST) is pleased to announce that on 5 December 2017, its industrial partner eProseed was granted the "IT Development Company of the Year" award by the members of the Luxembourg ICT community at the annual IT One Gala Dinner.
eProseed and LIST achieved a successful collaborative work with the development of the tool enabling organisations to evaluate the extent of their compliance with the new GRPD through a comprehensive database of 350 regulatory requirements.
As mentioned during the award ceremony, the decisive point that justified the jury's choice was the GDPR Compliance Support Tool, a software tool enabling organisations to self-assess their level of compliance with the EU GRPD, which comes into force in May 2018. The GDPR Compliance Support Tool was developed in tight collaboration with Luxembourg's data protection authority (CNPD), LIST and Digital Luxembourg, the government initiative that supports public and private actions in the digital area.
A tool of this kind is a premiere in the European Union.
Data is the gold dust of the 21st century, and with the amount of that data set to double every two years (reaching 44 trillion gigabytes by 2020), it’s allowing organizations of all sizes to open up opportunities to truly understand their customers. For instance, analyzing data in near real-time and acting on insights to deliver superior experiences.
However, the data bonanza is not a free-for-all. The very acts which excite businesses – holding and using data – have the potential to expose them to significant legal and reputation damage. Just as there has been a groundswell of interest in harnessing the power of data, so consumers are becoming more aware of their right to privacy and what giving away their data can mean. Organizations that fail to properly secure customer information not only face regulatory and legal sanctions, but can expect significant damage to reputation and trust. Marissa Mayer lost her annual bonus over the mishandling of security breaches that exposed the personal information of more than 1 billion users.
Governments are reacting to the increased demand for data legislation as well. Regulations such as the EU’s General Data Protection Regulation (GDPR) which comes into force on 28 May 2018 guarantees the data privacy rights of any EU citizen, no matter where their data is being held or processed. It will have consequences for businesses globally, not just in the European Union.
Data is the gold dust of the 21st century, and with the amount of that data set to double every two years (reaching 44 trillion gigabytes by 2020), it’s allowing organizations of all sizes to open up opportunities to truly understand their customers. For instance, analyzing data in near real-time and acting on insights to deliver superior experiences.
However, the data bonanza is not a free-for-all. The very acts which excite businesses – holding and using data – have the potential to expose them to significant legal and reputation damage. Just as there has been a groundswell of interest in harnessing the power of data, so consumers are becoming more aware of their right to privacy and what giving away their data can mean. Organizations that fail to properly secure customer information not only face regulatory and legal sanctions, but can expect significant damage to reputation and trust. Marissa Mayer lost her annual bonus over the mishandling of security breaches that exposed the personal information of more than 1 billion users.
Governments are reacting to the increased demand for data legislation as well. Regulations such as the EU’s General Data Protection Regulation (GDPR) which comes into force on 28 May 2018 guarantees the data privacy rights of any EU citizen, no matter where their data is being held or processed. It will have consequences for businesses globally, not just in the European Union.
Following Edward Snowden’s revelations about government mass surveillance, end-to-end encryption is now widely available through services such as Facebook’s WhatsApp. The technique ensures that only sender and recipient can read a message.
Dr Jiangshan Yu at the University of Luxembourg has developed a solution to a longstanding problem in the field of end-to-end encryption: With current end-to-end encryption methods, if an attacker compromises a recipient’s device he can then intercept, read and alter all future communications without sender or recipient ever knowing. Dr Yu’s solution, developed in collaboration with Prof. Mark Ryan (University of Birmingham) and Prof. Cas Cremers (University of Oxford), adds an extra layer of security, forcing attackers to leave evidence of any such activity and prompting users to take action.
Following Edward Snowden’s revelations about government mass surveillance, end-to-end encryption is now widely available through services such as Facebook’s WhatsApp. The technique ensures that only sender and recipient can read a message.
Dr Jiangshan Yu at the University of Luxembourg has developed a solution to a longstanding problem in the field of end-to-end encryption: With current end-to-end encryption methods, if an attacker compromises a recipient’s device he can then intercept, read and alter all future communications without sender or recipient ever knowing. Dr Yu’s solution, developed in collaboration with Prof. Mark Ryan (University of Birmingham) and Prof. Cas Cremers (University of Oxford), adds an extra layer of security, forcing attackers to leave evidence of any such activity and prompting users to take action.
Wir freuen uns, dass Sie Interesse daran haben, BEE SECURE bei einer Meinungsumfrage in Luxemburg zu unterstützen!
Diese Befragung soll eine erste Einschätzung über die Bekanntheit, die Reputation vom und Einstellung zum Phänomen „Big Data“ in Luxemburg ermöglichen. Bitte machen Sie daher bei dieser Umfrage mit, unabhängig davon, ob Sie den Begriff "Big Data" kennen oder nicht. Es gibt keine richtigen oder falschen Antworten.
Wir bitten Sie nun, die folgenden allgemeinen Fragen über Ihre Mediennutzung sowie zu Ihrer Meinung bezüglich „Big Data“ zu beantworten.
Ihre Angaben werden zum Zweck dieser Umfrage anonymisiert verarbeitet und werden nicht an Dritte weitergegeben.
Dauer für das Ausfüllen des Fragebogens: ca. 5-10 Minuten
Die Ergebnisse der Umfrage werden nach Abschluss der Auswertungen nachzulesen sein auf https://www.bee-secure.lu/.
Wir freuen uns, dass Sie Interesse daran haben, BEE SECURE bei einer Meinungsumfrage in Luxemburg zu unterstützen!
Diese Befragung soll eine erste Einschätzung über die Bekanntheit, die Reputation vom und Einstellung zum Phänomen „Big Data“ in Luxemburg ermöglichen. Bitte machen Sie daher bei dieser Umfrage mit, unabhängig davon, ob Sie den Begriff "Big Data" kennen oder nicht. Es gibt keine richtigen oder falschen Antworten.
Wir bitten Sie nun, die folgenden allgemeinen Fragen über Ihre Mediennutzung sowie zu Ihrer Meinung bezüglich „Big Data“ zu beantworten.
Ihre Angaben werden zum Zweck dieser Umfrage anonymisiert verarbeitet und werden nicht an Dritte weitergegeben.
Dauer für das Ausfüllen des Fragebogens: ca. 5-10 Minuten
Die Ergebnisse der Umfrage werden nach Abschluss der Auswertungen nachzulesen sein auf https://www.bee-secure.lu/.
Soumis à un lobbying énorme, le projet de règlement européen sur la protection des données a trouvé une issue lors de la présidence luxembourgeoise du Conseil de l’Union européenne. Pleinement applicable le 25 mai 2018, il régule la manière dont nos informations sensibles sont utilisées et conservées.
Soumis à un lobbying énorme, le projet de règlement européen sur la protection des données a trouvé une issue lors de la présidence luxembourgeoise du Conseil de l’Union européenne. Pleinement applicable le 25 mai 2018, il régule la manière dont nos informations sensibles sont utilisées et conservées.
Doch damit verstößt der Hobbyfotograf eindeutig gegen geltendes Recht. Das Gesetz vom 11. August 1982 zum Schutz der Privatsphäre sieht bei Verstößen Haftstrafen von bis zu einem Jahr und Geldstrafen bis 5 000 Euro vor. Außerdem kann der Bildautor auch zivilrechtlich belangt werden.
„Das Recht am eigenen Bild ist oberstes Gebot“, betont auch Jurist Thierry Lallemang, eines von drei Mitgliedern der Luxemburger Datenschutzkommission, der „Commission nationale pour la protection des données“ .
Fotografieren an öffentlichen Plätzen ist grundsätzlich erlaubt. „Das klassische Beispiel wäre der Tourist, der in der Stadt Erinnerungsfotos macht“, erklärt Thierry Lallemang. „Da muss ich schon akzeptieren, dass ich auf einem dieser Bilder zu sehen bin“. In diesem Zusammenhang spricht man von „implizitem Einverständnis“ für die Aufnahme.
„Wenn ein Fotograf mich aber gezielt anvisiert und nur mich knipst, dann ist das etwas ganz anderes“, betont das Kommissionsmitglied Lallemang. „Um solche Bilder zu machen, muss er mich im Vorfeld um Erlaubnis bitten“. Ob der Fotograf nun verdeckt knipst oder offensichtlich, macht keinen Unterschied.
To get content containing either thought or leadership enter:
To get content containing both thought and leadership enter:
To get content containing the expression thought leadership enter:
You can enter several keywords and you can refine them whenever you want. Our suggestion engine uses more signals but entering a few keywords here will rapidly give you great content to curate.
Your new post is loading...
Ein Forscherteam der Uni Luxemburg hat einen sicherheitsrelevanten Fehler beim Scannen von Reisepässen aufgedeckt.
Forscher der Universität Luxemburg haben einen Fehler im Sicherheitsstandard entdeckt, der seit 2004 weltweit bei sogenannten elektronischen Pässen verwendet wird. Demnach können solche Pässe aus der Distanz ausgelesen und dessen Inhaber identifiziert werden.
Der Standard ICAO 9303 ermöglicht eigentlich das Scannen dieser Pässe an dafür vorgesehenen e-Pass-Readern, zum Beispiel an Flughäfen. Der Standard wird dabei von der Internationalen Zivilluftfahrtorganisation (International Civil Aviation Organization, ICAO) vorgegeben und ist weltweit gültig. Er soll verhindern, dass gewisse Informationen, die auf dem Pass enthalten sind, miteinander verknüpft werden können.
Learn more / En savoir plus / Mehr erfahren:
https://www.scoop.it/topic/luxembourg-europe/?&tag=University+Luxembourg
https://www.scoop.it/topic/luxembourg-europe/?&tag=ePassport