The Christmas roundup begins!

It’s time once more for the festive book and library related gift listing. I know, I know, it’s only November, but if you want some of these presents to arrive in good time, you’ll need to start shopping now.

So, lets begin with bookends. Lumps that stop books from sliding off shelves by their sheer weight, or fancy tricks by the makers. Sometimes, they’re pretty, sometimes they’re fugly. Form your own opinions of the ones here (although I’ve mainly aimed for cool/funky/unusual, I allowed a few odd ones to sneak in)….

This bookend set is EPIC. And there are dozens more in the shop
Vintage 1950s green leather bookends
One of a range of hand stamped bookends
1950s mountain climber bookends
Bookends for you to decorate yourself
Bookend brains…and lots more in the shop
Erm….
Key bookends
Brass bookshelf bookends
Menacing kitty
Gear bookends
Love bookends
Doctor Who bookends
Motorcycle gear bookends

Shoe lasts bookends
Yellow elephants bookends
Antler bookends

Book clamp
Wood ball bookends
Wooden octopus
Music note bookends
Mathematical bookends

Airedale Terrier bookends
Lightbulb bookends

Outdated tech and concrete bookends

Hook and eye bookends
Wooden alphabet bookend
Recycled circuit board bookends

Taylor Review of Expenses and Funding in Civil Litigation

I know, I know, you’re all on tenterhooks, awaiting the release of this blockbuster read….but you’re going to have to wait a little bit longer.

Despite the timescale being 18 months, and the Review being launched in May, meaning that… *does quick calculation on fingers and toes*…the Review should be being released this month, it seems that due to the large volume of responses they’ve received, there’s a whole lot more work needed than was expected.

So, dampen down your excitement until early 2013, kiddies!

In a break from regular programming…

I bring you…pumpkin carving!

Yes, when you live in a historic, atmospheric old city like Edinburgh, Halloween’s a great excuse to break out the creepy carving skills…

First, a sketch, then a bit of freehand drawing…and cutting..

Then some scraping…

And some scooping…

And finally…a haunted house!

Not content with that though, after a bit more sketching, I moved on to another pumpkin: off came the top and out came the innards…

…and then came….a howling werewolf!

Dumpling in a Hanky: available for all your pumpkin carving needs 😉

Information security, and how not to do it

On the 21st of this month, I received an email from a company*, advertising their upcoming online seminar, and various other online courses they ran, including ones on the Data Protection Act, and information security.
Since I wasn’t interested in their courses, and didn’t remember signing up to receive any marketing materials from this company,  I clicked on the unsubscribe link. However, when the unsubscribe page opened, the name and email fields were already completed…and none of the information was mine.
In fact, the email address was for a Junior School in Portsmouth (edited version below).

This is not great, in terms of information security…you know, that thing they’re running online courses on?
So, I replied to them within an hour, pointing out that the information in those fields was not mine, and they might want to do something about that.
To date, I’ve not received an acknowledgement of my email, or any form of response.
I was also not alone in receiving this email, and finding someone elses information in the form when following the unsubscribe link.

However, in the days since, the form the link leads to has changed….well, to be specific, the information viewable in the form has changed. Yes, it’s gone from being the contact details of the school in Portsmouth, to the address of a private school yesterday, and today, one for a university. The first two times, the emails were admin addresses, but the university address is the work email of an individual, with their proper name in it (instead of, as above “No” and “Thanks” being the name).

Now, mistakes happen, and making a link to a form that shows the details of the last person who’s used it was probably an accident. But this is not how you deal with it.

What would I have done if this had been my mistake?

  • When I got the email pointing it out, I would have responded to the person contacting me, apologising for the issue, and thanking them for bringing it to my attention
  • I would have deactivated the link immediately
  • I would have got whatever glitch it is that’s preserving the last page user information fixed
  • Once that was done, I would have emailed everyone that had received the previous email, apologising for the issue, and telling them that the unsubscribe link was now secure and anonymous
This company has done none of that. Allowing anyone to view names and email addresses of strangers is not as serious as sharing work or home addresses, or more sensitive personal information, but this is a company which is running a business specifically selling training on data protection, and information security. Hands up who’d feel confident about using their training, if this is how they put it into practice?
*I have not named the company here, but contact me directly if you would like to know who it is.