No GDPR Penalties For UK Swann 'Spying Hack'

By: Charles Rollet, Published on Nov 20, 2018

The UK’s data protection agency has closed its investigation into Infinova-owned Swann Security UK, the ICO confirmed to IPVM, deciding to take “no further action” after customers unintentionally received video from different users in separate incidents earlier this year.

These data breaches received substantial media attention in June/July 2018, such as:

This took place after the arrival of the GDPR - broad new European privacy regulations which include the prospect of heavy fines for such incidents.

In this note, we examine what happened, the UK’s response to IPVM, and what the GDPR implications are for manufacturers and sellers of IoT devices such as video surveillance.

What ********

** ****,*** *** ************ *** ** *** staffers *** ***** * Swann ****** ******* ********* video **** * ********’* kitchen ** *** ********** app. *** *** ***** a **** ******* ********, this **** ** ***, when * ********* ***** customer ********** ** ******* of ********* ***** **** an ******* ***.

***** ***** **** ********, blaming *** ***** ** a ************* ***** *** the ****** ** ********* login *********** ***** **** for **** *******.

** * ******** ****,** *** ******* **** PenTestPartners“************ ******** ***** ***** from *** ****** ** another” ** *****’* ***** service, ********* “********* ****** to ******’* ******.” ***** also ***** **** *****, which *** *** ****** in ******'* ******** *********** being ********.

ICO ************

** *** **, ****** the **, * ****** national ****** – ************** ************’* ****** ** ICO- ******** *** **** protection *******. ** ************ the ***** ******** ******** reported ** *** *** for ******* ******, ********* IPVM **** **** **** the **** *** **** dropped:

*** **** ********* ***** Communications (******) ******* *** been ****** **** ** further ******. *** **** of ********* ***** ****** to *********** *** ********** low *** ** **** satisfied *** ******* *** identified *** *** ************ sufficient ******** ***** ***** commencing *** *** *************

GDPR ********** *****

***** **** ******** **** place ***** *** ************** on *** ** ** the **’* *** **** privacy *****, *** ****, which ****** *** **.

*** ********* **** ***** violations ** **** ********** such ********* **’* *************** “******* ******** **** are *** **** ********** without *** **********’* ************ to ** ********** ****** of ******* *******.”

************* *** *********** ***** have ******* ***** ****** hefty **** ********* ** they *** ******** ** breaches, ***** ********** ******** ** ** ** 40 ******* ***** ** 4% ** ********* *******.

How ***** ******* **** *********

*******, *** ***’* ******** not ** ******** ***** shows ****, ** ***, fears ** ******** *** eye-watering **** ***** *** EU ***** ************ ********* are *********.

*** **** ****** ***** significant ****** ** ******** governments **** ** ***** to ******** ******* ** not ** ****** *********.******* ** **** ************** *** ****** *** “intentional,” ******* ***** *** a “******* ** **** measures ** ******** *** damage ***** ********,” *** whether ***** *** * “lack ** ************* **** authorities”.

** ****** *** ***** and *********** **** ***********, Swann *** **** ** avoid ********* **********.

GDPR ************

************* ****** *** **** this **** ** ******** that *** **** ** toothless. ***-**** ********* ****** possible, ***** * *** factor **** ****** ** Swann’s ***** *** **** the ****** **** ******** a *** ******, **** of **** ***** *** complaints *** ************ ** allowed ************ **.

************, *** ***** **** case **** ********* * precedent ********* ** ************* and *********** **** ** comes ** **** ********. It **** ***** *** importance ** ***** ********** and *********** **** *********** in **** ** * breach.

IPVM’s *** ********* ***** *** ********

*** *** ** ****************** ****’* **** ********* about ****** **************** **** ********** ** IFSEC ** ******.

*** ******-**** ************* ** Swann ******** *** ***** may ** ** ********** of ******* ******* ****** ** a ***** ** **** complaints***** ** ******** **** protection ******** – ******* factor ****** ******* **** manufacturers *** ***********’ *****.

Comments (7)

* ** ********* ** GDPR ********** *** ***** to ******* ** ********** like **** ******** *******.

*’** *** *** **** experience **** * ******* Smartcam **. 

*** ******** *** ***** the ***** ******* ****?

** **** * **** the *** * *** someone ****’* ****

****** **** * ****** app :)

** **** * **** the *** * *** someone ****’* ****

***** * ***** ******!

** ****** **** *** experience ICO, *** *** ****, **** will **** ** ** surprise *** ***** ** very **** * ******** flip-side. **** *** *** first **** ** **** in *** **'*, * plethora ** "*******" ******* setting ** ********* *** scamming ****** ** ****** into ****** *** ****** on *** ********** ***** fear ** **** ***** as *** ******* ** use ***** ********. *** they *** *** ** provide *********** **** *** ****** available ** *** ******, then ****** ******* *** myth ** ******** ***** and ************ **** ***** never **** **** ******** on ***** ******. **** were ***** ** * deterrent ** ** **** only ** *********** ***** of ****** ****** *** tangible ******.

*** **** *** *** to ****** **** ****, so ** ***** **** case **** **** **********. The ***** ******* ** GDPR *** *** ** a ******** ******** ** a **** ******. ** determines  *** *****, ****** and ****** ** ****** a ******** *** ******** to ** ****. ***** clear ****** ** **********, coupled **** ********** ******** actions *** **** ******** abuse ** *** **** harvested - **** ***** lead ** * ******** toward *** ****** *** available. *** ** *** ******** Swann *** * ******** minor ****** ***** ***** is **** ****** ** intent *** ** **** damage ** ******** **** integrity ** **********.

*** ** *** * ****** litigious ******* ** ***** matters - ** ******* it *** **** ** odd *******, *** ****** expected **** ** ********** of ********* *** *** and **** *** **** years. ******** - **** was ***** *** ** exclusively *** ****, *** the ******* ** **** is *** **** ****** interest ** **. ***** into ******* ************* **** ******** ** raw ******** **** ********* with ****** **** ***** Facebook, *****, ******* *** many ********** **** ******** ****** peoples *****, **********'* *** business ** * *********** effect *** *** *** a ****** **** ** what **** *** *** up ** **.

*** ********** ** **** Johns ********* **** ** rejected - **** ****** given *** ******* ** where *** "*****" **** place - * **** exhibition ************* *** ******** being **********. * ****** it's * **** *********, but ** ** ****** well ***** *** **** you **** ** *** appalling ******* *** ***** of **** ****** ***** elsewhere. **'* **** ********** considering **** ****** *** ICO *** **** *** be ********** ** ****, its * ***** **** better **** ******** ** place ******* ** *** EU ***** *** **** amount ** **** ********** and ***** ** *** only ***** *********** - but **** ******* ** the ** **** ****** where * ****** *********** ******** ***** **************'* **** ***** ** eyebrow ******* ** *** race ** *** *** of ********* *****.

Read this IPVM report for free.

This article is part of IPVM's 6,534 reports, 880 tests and is only available to members. To get a one-time preview of our work, enter your work email to access the full article.

Already a member? Login here | Join now

Related Reports

Axis Compares Fever Camera Sellers to 9/11 on Sep 18, 2020
Axis Communications, the West's largest surveillance camera manufacturer, has...
Risks Of Managing End User Passwords (Statistics) 2020 on Sep 11, 2020
Alarmingly, most integrators used spreadsheets to manage passwords, IPVM...
Avigilon Social Distancing Analytics Tested on Aug 26, 2020
Avigilon released its social distancing analytics in response to the...
Hikvision Illicitly Uses Back To The Future In Marketing on Jul 03, 2020
NBCUniversal told IPVM that Hikvision UK's ongoing coronavirus marketing...
SimpliSafe Business Security Launched Examined on Sep 22, 2020
SimpliSafe has launched "SimpliSafe Business Security" that the company...
Amazon, Microsoft and IBM Abandoning Face Recognition Is An "Irresponsible PR Stunt" Says AnyVision on Jul 17, 2020
In the wake of national protests against US police abuses, big tech firms...
UK Firm Markets False Fever Screening, Hikvision Disavows on Jun 30, 2020
A UK security firm falsely claimed its Hikvision-based thermal solution could...
IPVM Editorial Staff on Aug 01, 2020
IPVM has the largest and most experienced editorial team covering video...
Genetec and Dahua-Backed Intelbras Split Examined on Jul 29, 2020
China is the cause of the breakup between Canada's and Brazil's largest video...
Fever Camera Sales From Integrators Surveyed on Jun 01, 2020
Fever cameras are the hottest trend in video surveillance currently but how...
Hikvision Admits Minority Recognition, Now Claims Canceled on Jul 23, 2020
For the first time, Hikvision has directly addressed its minority recognition...
2020 Mid Year Video Surveillance Industry Guide on Jul 27, 2020
The first half of 2020 has been shocking, for the world generally, and for...
Wyze Fails To Deliver Own On-Board Analytics, Launches Novel Name Your Own Price Service on Jul 24, 2020
While Wyze failed to deliver their own onboard analytics to replace the...
Sony 61MP Surveillance Sensor Examined on Sep 04, 2020
For a decade, the highest resolution single-imager surveillance cameras have...
Uniview Deep Learning Camera Tested on Jul 14, 2020
Uniview's intrusion analytics have performed poorly in our shootouts. Now,...

Recent Reports

OnTech Smart Services Partners With Google and Amazon To Compete With Integrators on Sep 25, 2020
A pain point for many homeowners to use consumer security and surveillance is...
The Future of Metalens For Video Surveillance Cameras - MIT / UMass / Immervision on Sep 25, 2020
Panoramic cameras using 'fisheye' lens have become commonplace in video...
Hikvision Sues Over Brazilian Airport Loss on Sep 24, 2020
Hikvision was excluded from a Brazilian airport project because it is owned...
China General Chamber of Commerce Calls Out US Politics on Sep 24, 2020
While US-China relations are at an all-time low, optimism about relations...
Verkada Disruptive Embedded Live Help on Sep 24, 2020
Call up your integrator? Have someone come by the next day? Verkada is...
IP Networking Course Fall 2020 - Last Chance - Register Now on Sep 23, 2020
Today is the last chance to register for the only IP networking course...
Drain Wire For Access Control Reader Tutorial on Sep 23, 2020
An easy-to-miss cabling specification plays a key role in access control, yet...
Norway Council of Ethics Finds Hikvision Human Rights Abuses "Ongoing" on Sep 23, 2020
Hikvision's involvement in "serious human rights abuse" in Xinjiang is...
IPVM Camera Calculator User Manual / Guide on Sep 23, 2020
Learn how to use the IPVM Camera Calculator (updated for Version 3.1). The...
Installation Course Fall 2020 - Save $50 - Last Chance on Sep 22, 2020
This is a unique installation course in a market where little practical...
SimpliSafe Business Security Launched Examined on Sep 22, 2020
SimpliSafe has launched "SimpliSafe Business Security" that the company...
FLIR CEO: Many New Fever Entrants "Making Claims That The Science Just Won't Support" on Sep 22, 2020
FLIR's CEO joins a growing number calling out risks with fever / screening...
China Bems Temperature Measurement Terminal Tested on Sep 22, 2020
Guangzhou Bems (brand Benshi) is the manufacturer behind temperature...
Axis Exports To China Police Criticized By Amnesty International on Sep 21, 2020
Axis Communications and other EU surveillance providers are under fire from...
Milestone XProtect on AWS Tested on Sep 21, 2020
Milestone finally launched multiple cloud solutions in 2020, taking a...