privacidad y seguridad en vacaciones

3 tips on privacy and security while away on holidays

August, the month of holidays par excellence. Sunshine, beach, trips, unplugging from technology, long days, and also the best time of the year for criminals to be up to their old tricks. Although we all know this happens, summer holidays might make us let our guard down. If you don’t mind taking a bit of our advice, don’t let this happen and remember some of the following mistakes that we tend to make.

1. Be careful on social media to keep yout privacy and security

We all love to show how much fun we are having on holiday. The spectacular landscapes we are visiting, dreamy beaches and over-the-top meals in dazzling restaurants. But before becoming immersed in that world, we should stop to think that maybe it’s better to refrain from publicly leaving clues about where we are, what we are doing, how or with whom.

If you don’t want any unpleasant surprises when you get home from a wonderful holiday, save your photos and post them when you have returned. Don’t make the mistake of shouting from the rooftop that you are not home and that thieves are welcome.

2. Attention to privacy and security

According to data from the Centre for Sociological Research (CIS), one in four people (24.5%) have regretted posting something on social media.

Before pressing the share button on your social media accounts, you should always think about who can view your photos. If your profile can be accessed by search engines, keep in mind that anyone can see the photos, videos or comments you post. The Agency offers a series of explanatory video tutorials created together with INCIBE to explain how to access the privacy and security settings of some of the most popular Internet services to ensure that your profile is not displayed when, for example, your name is entered in a search engine.

Once search engines can no longer access your profile, you should also consider the fact that the people who have access to your information in turn choose who has access to their profile: friends, friends of friends or everyone. If you share a photo with your followers or friends on social media and one of them likes it, a friend of a friend, someone who you don’t necessarily know, may end up seeing that image. And there may be situations that you might not want to share with strangers.

3. Do not trust open Wi-Fi networks and shared computers

Data consumption when on holiday is much higher than usual. And that’s with many hours spent away from home. Either on the beach, taking a walk, on a terrace with friends, and let’s not even get into going away on holiday. By spending less time at home, we use more data and are tempted to connect to open Wi-Fi networks.

But what’s the problem? Well, sometimes these networks can be used by cybercriminals to steal your personal data and passwords. If you do use them, do not enter your passwords. Do not exchange sensitive information, do not connect to your banking service, and do not shop online.

Moreover when we are travelling, situations may arise in which we must carry out a procedure and connect from a public computer in a hotel or call shop. In these cases, we recommend using the browser’s private browsing option. Not saving your passwords on the shared device and, after using it, closing all sessions you have opened (email, websites, chats, etc.).

4. Anticipate the theft or loss of your devices

When you travel or take part in summer activities such as going to the pool or beach or visiting tourist sites. The risks of losing or having your mobile or tablet stolen increase. Consequently this can be a disaster for your privacy, since we essentially have all of our personal information on these types of devices.

Then, we suggest that you make a backup copy of the information you store and do not forget to add a password or pattern system to lock the devices.

But first and foremost, enjoy your holiday and unplug from your phone. Being on holiday doesn’t always happen and while you are engrossed with the screen you are missing the magic of the little things. Take your eyes off your phone and delight in your well-deserved holiday!



WeTransfer Logo

Privacy risks of using WeTransfer

Who hasn’t used WeTransfer before? Using this platform to send large files such as photos, designs or projects is very common both in our work routines and in our personal lives.

Moreover, WeTransfer offers many options when it comes to exchanging files of all kinds. We must, however, be aware of the security and privacy risks of the files we send, since there are no sufficient guarantees. In addition to the fact that it has previously suffered security breaches.

Have you ever thought about this? Probably not, since most users assume that platforms of this magnitude leave nothing to chance. But think about it, it’s a business model. Therefore, our privacy is especially affected in the event that we use the free version. Let’s see how it works and the main privacy risks we expose ourselves to when using it.


Why our privacy may be affected when using WeTransfer:

  • There is no guarantee that only the person with whom we share the link can access the files:

In the free version, accessing third-party files is not difficult. We could easily access third-party files by following some simple instructions that can be found on the Internet.

  • A security breach occurred where 232,000 deliveries were affected:

In 2019, WeTransfer suffered a cyber attack that put 232,000 deliveries at risk. In other words, there was no guarantee that the content of those deliveries could not be accessed by third parties.

  • In the free version, files are not encrypted:

 This implies that if we include documents or images that contain personal data or confidential information, they will not be secure. Anyone who has access to the link can open it.

  • Files are stored unencrypted in the WeTransfer cloud.


Privacy risks:

  • We put people’s privacy at risk. We fail to comply with data protection regulations:

If we upload documents or files with personal data, confidential data, third-party images, voice files, etc., we will be breaking the law since the WeTransfer platform does not offer sufficient guarantees to protect this information.

  • The files that we upload may be affected by a security breach for which we will be partially responsible:

Knowing that WeTransfer (especially in its free version) does not offer security guarantees such as encryption, a security breach may occur and the files that we have uploaded may be affected.

Now that you have this information, perhaps your view on the use of this platform has changed a bit. Or maybe not. Be that as it may, keep it in mind and if you have any questions, ask us! At Bacaria Legal we specialise in digital law. Contact us.


Privacy risks: ChatGPT

ChatGPT is the most important Artificial Intelligence development in recent years. Last month we discussed its impact on data protection. Today we will delve deeper into the risks it poses to privacy. Let’s go!

Working under the assumption that chatbots rely on our personal data and the more data they collect, the more accurate they are at both detecting patterns and anticipating and generating responses, the risk to privacy increases substantially.

Besides if bearing in mind that the information used to train artificial intelligence products like ChatGPT is taken from the Internet. And personal data that is often acquired without user consent, this is a case that breaches privacy regulations.


Measures that ChatGPT must adopt to comply with privacy regulations

  1. Inform on data processing. What data is used and its purpose.
  2. Inform on how data subjects can oppose the use of their data for training algorithms and implement mechanisms to do so.
  3. Conduct information campaigns in the media.
  4. Set up mechanisms to prevent users under the age of 13 from accessing the service.

Provisions of the privacy regulation that are not met

Firstly, the duty of information is breached since complete and transparent information is generally not provided to users and interested parties regarding the processing their data undergoes in these systems.

Additionally, they do not comply with the principles that regulate personal data processing, including the principle of accuracy. Given that a large amount of data introduced into the systems is inaccurate, the result is large-scale misinformation. In this vein, one of the most serious concerns regarding the use of systems like ChatGPT is the tendency to embellish the information and increase the bias in the answers given to the user.

Another of the notable violations is the lack of legitimate basis for the mass processing of personal data in order to train the algorithms that govern chatbot operation.

It is also important to highlight that the principle of confidentiality is contravened and that there is a lack of security measures. This greatly increases the risk of breaches and cyberattacks.

Therefore, we can conclude that although AI holds to potential to transform sectors, solve problems, simplify answers or be a great source of information, it also poses great ethical and social risks.

It is important to note that chatbot systems can reproduce, reinforce and amplify patterns of discrimination and/or inequality. As a result, the irresponsible data handling by these systems leads to unreliable results, which can harm the well-being of citizens and security in legal proceedings.

Will a robust regulatory framework be created worldwide that regulates artificial intelligence systems like ChatGPT? Here at Bacaria we will closely monitor the situation and keep you up to date.