[ad_1]
The Data Inspectorate has decided to start investigating the Tamoco company after NRK’s choir disclosures, simply to buy information on the people who remain in the choir.
This is confirmed by Tobias Judin, section manager of the Data Inspection.
“We must analyze this matter as we believe that it is very serious, what has happened here seems very unpleasant and at least it is offensive to anyone who owes it,” he says.
He told NRK that they had suspicions about the sale of Norwegians’ position data on the open market, but that they had not seen any concrete evidence of this prior to NRK’s disclosure.
– We have suspected that this is happening, but we have not had any clear evidence of it. We haven’t seen it in practice before, he says.
THEY HAVE FAILED: Data Inspection Section Director Tobias Judin says they have suspected that the Norwegians may have sold their position data on the open market.
Photo: Martin Gundersen / NRK
Will work with British colleagues
– This is simply unacceptable here, whether illegal or not, the audit should find out, but still ethically unacceptable, says District and Digitization Minister Linda Hofstad Helleland.
Helleland says he wants to contact his British colleague to see how they can manage companies that search together and sell position data on Norwegians.
Since Tamoco is successful in the UK, the Data Inspectorate should also have the help of the UK Data Inspectorate to investigate it.
Judin says they are willing to use the necessary resources.
– We are prepared to use the resources as necessary. But it will probably require much more from the British Data Inspectorate to cooperate with us on this matter, he says.
KARTLA NORDMENN: NRK used position data that we bought from Tamoco to show how easy it is to track Norwegians via mobile. No, the Norwegian Data Inspectorate is reviewing the British company.
Photo: Map: Norway in pictures, illustration: Harald K. Jansson / NRK
At the beginning of the process, NRK had a frequent dialogue with Tamoco by phone and email with company representatives. After NRK announced that we were working on a critical case about the company in terms of data management, they did not respond to our questions and repeated interview attempts.
NRK has again tried to receive comments from Tamoco after the Norwegian Data Inspectorate notified the investigation.
Briefly on the matter
- For NOK 35,000, NRK bought a motion data database of 140,000 Norwegian phones and tablets from the British company Tamoco.
- Tamoco was created in 2012, declaring that they offer data for financial and investment, marketing and urban development purposes. Tamoco writes on its website that it “makes accurate data accessible to everyone.”
- At the beginning of the process, NRK had a frequent dialogue by phone and email with company representatives.
- After NRK announced that we were working on a critical case of its data handling, Tamoco did not respond to our question or to the constant interview questions.
TAMOCO: Behind this door in Holborn, in central London, the Tamoco company was successful. On the website, let’s say you make the data available to everyone.
Photo: Johan Bull / NRK
Helleland: – Ethically totally unacceptable
– Even if you and I agree that this information can be used, we do not accept that the information is put together in an image to follow you and me in your detailed movement patterns, says digitization minister Helleland.
– You say it’s unacceptable, why didn’t you stop it?
“This is a rapid development before digitization and how big can a company make a lot of money from mine and its movement,” says Helleland.
– Unacceptable: District and Digitization Minister Linda Hofstad Helleland reacts strongly to NRK’s disclosure of purchases and sales of Norwegian position data.
Photo: Terje Bendiksby / scanpix
Online privacy (GDPR)
- The EU says that the General Data Protection Regulation (GDPR) was our Norwegian law in 2018. The regulations gave companies new obligations and new rights for people.
-
The Law stipulates that consent must be given in the form of a clear statement in which the interested party, voluntarily, specifically, informed and unequivocal, has given his consent for the processing of his personal data.
-
All agencies that collect information must have so-called “data processing agreements” that require the use of personal data.
-
It should be easier to erase the data that companies have stored.
-
GDPR stands for General Data Protection Regulation and is transposed into the Privacy Policy or Data Security Regulation
Ap asks for answers
Reactions did not wait for Storting either. Storting representative Lene Vågslid has disabled positioning access to various applications.
– You, as a consumer, are helpless, that position information about you that you have not agreed to delete, must reveal in this way, it is totally unacceptable, says Lene Vågslid (Ap).
Guide: how to restrict the tracking of your mobile device
Vågslid now calls on Justice Minister Monica Maeland (H), District and Digitization Minister Linda Hofstad Helleland, and Minister for Children and Family Kjell Ingolf Ropstad to come to the Storting.
The head of the Justice Committee will also clarify the appointment of ministers who have real responsibility in this field.
– I want answers to what the Norwegian ruling powers are doing and what the government has done in the last two years to monitor and enforce these regulations in the best possible way, says Vågslid.
Vågslid wants answers on how the Government enforces the Privacy Regulations that were introduced in 2018 (GDPR).
Vågslid experiences that regulation of criminal measures is open to the underused subliminal host:
– Now we can impose much juicier fines, but through my dialogue with the Consumer Council and others, I discover that the sanctions have been applied to a small extent to no, says Vågslid.
I WANT TO KNOW: The leader of the Storting Justice Committee, Lene Vågslid (Ap), asks the Government to explain what sanctions they have used to enforce the European Privacy Act (GDPR) that came into force in 2018.
Photo: JON PETRUSSON / NRK
– Does Ap request information on how this host is applied?
– We prepare an annual report, and then I hope that Ap shows the same commitment. We also have a proposal for a privacy commission that will address precisely issues like this, Helleland says, before emphasizing seriousness:
– We need to make sure we have legislation that protects our privacy, says Helleland.
NOT SEEN IN SUCH CASES BEFORE: Tobias Judin said the Data Inspectorate has fined several state agencies and private companies after the new GDPR rules came, but not in cases related to the sale of position data from the Norwegians. in the open market.
Photo: Martin Gundersen / NRK
Several companies have been fined
It also requires investigating companies that operate in multiple countries, says Judin at the Norwegian Data Inspectorate.
He points out that there are many other dissuasive fines in Europe that stem from GDPR, including against Google.
– The Data Inspection has fines and fines, mainly for public works so far, but we have and cases against private companies, says Judin.
But they haven’t fined companies that sell Norwegians their position data on the open market previously:
– As far as this case is concerned, companies often operate outside of Norway, so we have not fined such cases before.
