Cambridge Analytica Did Not Influence The Brexit Referendum

Uploaded on 2020-10-12 in TECHNOLOGY-Key Areas-Social Media, GOVERNMENT-National, FREE TO VIEW, BUSINESS-Services-Law

Just after the UK's national referendum on EU membership in June 2016, allegations arose claiming that Cambridge Analytica had influenced the UK’s voting by unlawful use of data.

Following a three years investigation the  UK Information Commission (ICO) has now said that Cambridge Analytica was not involved in the EU Referendum 2016 vote "beyond some initial enquiries made... in the early stages" around on minor political party.

Cambridge Analytica was accused of amassing the data of millions of Facebook users without their consent and using it in political campaigns, including the 2016 US Presidential campaign and 2016 Brexit referendum.  

Elizabeth Denham, the Information Commissioner, said that her team had found no evidence Cambridge Analytica had been involved with any Russian intervention in the UK’s voting process.  

She goes on the to conclude that the company’s data protection practices were lax “with little thought for effective security measures” and its activities raised broader concerns about the influence of technology in politics.

Cambridge Analytica had repeatedly claimed in its marketing material to have “5,000+ data points per individual on 230 million adult Americans”, suggesting it had incredible power to micro-target individuals with suggestive political messaging using a giant psychographic database.

The ICO seized materials from the now defunct firm's headquarters during a high-profile search in 2018. The investigation led to the firm's collapse and its boss, Alexander Nix, being banned from being a director for seven years by the Insolvency Service. The regulator said it had seen evidence that Cambridge Analytica and its parent company SCL Elections had been drawing up plans to relocate its data offshore to avoid regulatory scrutiny, but was unable to do so before it ceased trading.

On the wider issue of the integrity of the 2016 referendum, the regulator said it had not identified any "significant breaches" of the privacy and electronic marketing regulations or data protection legislation by either Remain or Leave groups "which met the threshold for formal regulatory action".

Ms Denham said while the question of alleged Russian interference in the 2016 vote was outside the remit of the inquiry, the regulator had not found "any additional evidence" of Russian involvement in its analysis of material contained in computer servers seized from Cambridge Analytica and SCL Elections.  

The ICO said its probe had led to an improvement in how political parties handle personal data. It said an audit of parties' compliance with the rules had been completed and would be published shortly and its guidance for parties on political campaigning would also be updated.

However, the investigation concluded that “based on what we found it appears that this may have been an exaggeration” and much of the company’s activities followed “well recognised processes using commonly available technology”. 

Cambridge Analytica’s downfall led to a global debate on the use of data targeting in politics and a reckoning for major technology companies who were pilloried by governments around the world, prompting the introduction of restrictions on political advertising on major social media platforms.

ICO:       BBC:       Guardian:       Politico:

You Might Also Read: 

Foreign Influence In The American Election Of 2020 Is Declining:

 

« British Court Considers Extraditing Julian Assange
The Same Russians Who Hacked Clinton Are Targeting Biden »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

DataCore Software

DataCore Software

DataCore Software is a leader in Software-Defined Storage. Solutions offered include back up and disaster recovery.

Device Authority

Device Authority

Device Authority specialises in security automation for the Internet of Things (IoT).

CyberSource

CyberSource

CyberSource provides online payment and fraud management services for medium and large-sized merchants.

Venable

Venable

Venable is an American Lawyer 100 law firm with nine offices across the USA, Practice areas include Cybersecurity.

Ionic Security

Ionic Security

Ionic provide a high-assurance data protection and control platform built on strong encryption, fine-grain control and contextual analytics.

Norwegian Business & Industry Security Council (NSR)

Norwegian Business & Industry Security Council (NSR)

NSR is a member organization serving the Norwegian business sector in an advisory capacity on matters relating to crime and security including cyber.

CyberPrism

CyberPrism

CyberPrism provides SaaS solutions using proprietary technology, underpinned by industry-leading technical practitioners to protect OT within Government, Maritime and Industrial markets.

CyRise

CyRise

CyRise is a venture accelerator focused squarely on early stage cyber security startups.

Rublon

Rublon

Rublon protects endpoints, networks and applications by providing trusted access via two-factor authentication (2FA).

Polish Centre for Accreditation (PCA)

Polish Centre for Accreditation (PCA)

PCA is the national accreditation body for Poland. The directory of members provides details of organisations offering certification services for ISO 27001.

Tecnalia Research & Innovation

Tecnalia Research & Innovation

Tecnalia is the largest center of applied research and technological development in Spain, a benchmark in Europe and a member of the Basque Research and Technology Alliance.

Startup Capital Ventures

Startup Capital Ventures

Startup Capital Ventures is an early stage venture capital firm with a focus on FinTech, Cloud/SaaS, Security, Healthcare IT, and IoT.

BotGuard

BotGuard

BotGuard provides a service to protect your website from malicious bots, crawlers, scrapers, and hacker attacks.

Stratosphere Networks

Stratosphere Networks

Stratosphere Networks offer managed cybersecurity services rooted in Managed Detection and Response and Security Operations Center services that our team can tailor to meet your needs.

Vulcan Cyber

Vulcan Cyber

At Vulcan, we’re modernizing the way enterprises reduce their cyber risk. From detection to resolution, we automate and orchestrate the vulnerability remediation process dynamically and at scale.

Dion Training Solutions

Dion Training Solutions

Dion Training Solutions offer comprehensive training in areas such as project management, cybersecurity, agile methodologies, and IT service management.