Skip to main content
close search
site logo
Dive Brief

Zoom security issues place spotlight on other video platforms' privacy troubles

Published May 13, 2020
Samantha Schwartz's headshot
Samantha Schwartz Reporter
Kendall Davis

Dive Brief:

  • Last week Zoom and New York Attorney General Letitia James came to an agreement to implement additional security guardrails, according to an announcement from the AG's office. 
  • After the AG launched an investigation about five weeks ago, Zoom agreed to implement a comprehensive data security program designed and managed by its head of security. Zoom is expected to perform routine risk assessments of code and "enhance its encryption protocols by encrypting users' information, both in transit and as stored online on their cloud servers," according to the announcement. 
  • From the privacy perspective, Zoom is expected to provide all hosts default access control, including those with free accounts. The company has also reduced the user data it shares with Facebook and shut down the LinkedIn Navigator feature.

Dive Insight:

When everyone — schools, businesses, governments — shifted to online work this spring, Zoom took on a lot of new users and heat. But the platform has also become a crucial part of maintaining normalcy and productivity, showcased by steady growth in platform activity. The platform hosted 300 million daily meeting participants last month, up from 200 million in March. 

Because "Zoom-bombing" interrupted virtual workspaces, including elementary schools, "these were upsetting incidents and gained much publicity," Cynthia Larose, member and chair of Mintz's Privacy and Cybersecurity Practice, told CIO Dive. Zoom's rapid growth "magnified problems that were there before the COVID outbreak and that Zoom was already aware of." 

Zoom's "missteps" landed it an undesirable place despite its competitors having similar gaps in security.  

On Tuesday Cisco issued a clarification regarding its Webex privacy policy after an evaluation by Consumer Reports. The company offered a more thorough disclosure of its data collection practices, which make legal enforcement easier. 

Though Zoom stopped sharing user data with other parties, including Facebook, there's a lingering question of if or how the company violated consumer rights protected by the California Consumer Privacy Act. "Any business covered by the CCPA, communications platforms or otherwise, should be well into its compliance program by now," said Larose. 

Like Zoom, Cisco clarified any collection of meeting transcripts are for the users' records, not for company use. Consumer Reports included evaluations of Google Hangout, Meet and Microsoft's Teams and Skype, concluding users should "assume you're being recorded" and adopt third-party privacy solutions. 

As Zoom carries out its agreements with the AG, the company has to submit its annual data security assessment report "for the term of the agreement," according to the announcement. The settlement agreement "provides another roadmap for companies to reference in their own privacy and security assessments," according to Larose.

Recommended Reading

Filed Under: Security, Software

Editors' picks

Company Announcements

View all | Post a press release
Graphiant Predicts Transformative Changes in Enterprise Connectivity and Data Assurance for 20…
From Graphiant
November 20, 2024
PointFive is Apparently the Hottest Cloud Startup, Here is Why
From Jordan Mitchell
November 21, 2024
Newgen and Fadata Join Forces to Optimize Insurance Content Management
From Newgen Software
November 13, 2024
Viz.ai Wins Prestigious Prix Galien USA Award for Best Digital Health Solution
From Viz.ai
November 12, 2024
Editors' picks
Latest in Security
image/svg+xml
Industry Dive is an Informa business
© 2024 Industry Dive. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell