Information Management Today

Managing AI risks and legal implications, effective cybersecurity, ensuring privacy and the integrity of organizational records

Data Protection Report

NOVEMBER 28, 2023

In a world where generative AI is driving innovation and technology is outpacing legislation, there’s a lot for companies to consider to maintain operational effectiveness and minimize risk. To help provide some guidance, Norton Rose Fulbright Canada hosted its 2023 technology, privacy and cybersecurity virtual summit.

Cybersecurity

Cybersecurity Risk Artificial Intelligence Privacy

Data privacy examples

IBM Big Data Hub

APRIL 24, 2024

These are just some examples of how organizations support data privacy , the principle that people should have control of their personal data, including who can see it, who can collect it, and how it can be used. One cannot overstate the importance of data privacy for businesses today.

Data Privacy

Data Privacy Privacy GDPR Personal data

NSA buys internet browsing records from data brokers without a warrant

Security Affairs

JANUARY 29, 2024

Metadata on browsing activity, which includes information about the websites visited, timestamps, and duration of visits, can be abused for surveillance in several ways, privacy advocated warn. Evaluate each data source identified in the inventory to assess whether it meets FTC standards for legal personal data sales.

Metadata

Metadata Sales Personal data Privacy

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Navigating the EU-US Data Protection Framework

Thales Cloud Protection & Licensing

JANUARY 10, 2024

Navigating the EU-US Data Protection Framework sparsh Thu, 01/11/2024 - 05:26 On 10 July 2023, the European Commission adopted a new adequacy decision regarding the Data Privacy Framework (“DPF”). This follows the invalidation of the EU-US Privacy Shield, by the Court of Justice of the European Union on 16 July 2020.

Data Privacy

Data Privacy Personal data Privacy Cloud

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

Krebs on Security

JULY 21, 2023

Many things have changed since 2018, such as the names of the companies in the Fortune 100 list. But one aspect of that vaunted list that hasn’t shifted much since is that very few of these companies list any security professionals within their top executive ranks.

Security

Security Risk Insurance Cybersecurity

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. The company regularly monitors the activity of EEA residents, such as by using tracking cookies. The company processes personal data on behalf of controllers in the EEA. The company has employees in the EEA.

GDPR

GDPR Compliance Personal data Privacy

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. GDPR, the EU’s flagship data privacy and “right to be forgotten” regulation, has made the stakes of a data breach higher than ever. GDPR-style data privacy laws came to the U.S. with the California Consumer Privacy Act (CCPA) effective Jan.

Data Privacy

Data Privacy Compliance Privacy Security

Market Leading Cybersecurity and National Security Lawyers David Lashway and John Woods Join Sidley in Washington, D.C.

Data Matters

MAY 4, 2022

Sidley announced today that David Lashway and John Woods have joined as partners in the firm’s Privacy and Cybersecurity practice in Washington, D.C. Adding significant bench strength to our Chambers-ranked Privacy and Cybersecurity practice is a win for Sidley and our clients,” said Yvette Ostolaza, Sidley’s Management Committee Chair.

Cybersecurity

Cybersecurity Marketing Security Privacy

Privacy notices – the ICO follows the lead of the EU data protection authorities in their interpretation of Article 13 UK GDPR

Data Protection Report

JUNE 6, 2023

For the most part the ICO’s position tracks that of the EU data protection authorities (as reflected in the DPC’s 2021 and 2022 Whatsapp, Facebook and Instagram decisions), demonstrating that the ICO also expects a greater level of detail and specificity than is seen in some privacy notices. Where a generic email address (e.g.

Privacy

Privacy GDPR Personal data Compliance

News Alert: i2Coalition launches ‘VPN Trust Initiative’ to promote VPN operators’ best practices

The Last Watchdog

SEPTEMBER 26, 2023

Privacy: VPNs should keep as little data as they deem necessary to provide the service and only produce data to law enforcement when legally required. Disclosure and Transparency: To foster trust, member companies must take steps toward informing users and the public about their actions and procedures.

Privacy

Privacy Risk Encryption Authentication

AI ethics and governance: responsibly managing innovation

Collibra

NOVEMBER 13, 2023

AI companies and data scientists understand the ethical challenges AI presents. From bias in the loan application process to predictive policing, AI poses real risks to privacy and more. However, translating these ethical principles into actionable AI Governance policies is no small feat.

Government

Government Artificial Intelligence Risk Privacy

Bring-Your-Own-Device Programs: A Balance Between Privacy and Cybersecurity

Data Protection Report

FEBRUARY 16, 2023

1] While the BYOD approach may offer certain advantages, such as greater flexibility and cost savings, employers should be mindful of the cybersecurity and privacy risks when leaving employees to their own devices. The contents and scope of this policy are discussed in our previous article here.

Privacy

Privacy Cybersecurity Risk Digital transformation

OpenAI reinstates ChatGPT service in Italy after meeting Garante Privacy’s demands

Security Affairs

APRIL 28, 2023

OpenAI announced that access to its chatbot service ChatGPT is allowed again in Italy after the company met the demands of regulators. OpenAI restored access to ChatGPT in Italy after the company met the demands of the Italian Data Protection Authority, Garante Privacy.

Personal data

Personal data Privacy Access Education

News alert: Wisner Baum lawsuit alleges joint spyware scheme by Google, Meta, H&R Block

The Last Watchdog

SEPTEMBER 27, 2023

The suit comes on the heels of a July 2023 congressional report which found “a shocking breach of taxpayer privacy” when tax preparation companies shared millions of customers’ personal and financial information with Meta and Google, which used that information to create targeted ads. Los Angeles, Calif.,

Healthcare

Healthcare Privacy Data Privacy Marketing

Six eDiscovery Trends for 2024

eDiscovery Daily

JANUARY 10, 2024

By Rick Clark and Jacob Hesse 2023 was an eventful year in the world of legal technology, with new technology emerging to address both traditional and new challenges legal teams face when collecting, processing, and reviewing data for litigation, investigations, or public access requests. Laws within nations are evolving as well.

Blockchain

Blockchain Artificial Intelligence Cloud Compliance

12 Data Loss Prevention Best Practices (+ Real Success Stories)

eSecurity Planet

APRIL 12, 2024

This also protects sensitive data and minimizes legal and reputational issues. of enterprises have experienced data loss, with an average of 15 incidents per company per year, underscoring the importance of properly implementing DLP methods. Company resources: Examine your budget allocations and IT infrastructure capabilities.

Encryption

Encryption Risk Data breaches Access

Maintaining GDPR and Data Privacy Compliance in 2024

IT Governance

FEBRUARY 16, 2024

Expert tips from Alan Calder Alan is the Group CEO of GRC International Group PLC, the parent company of IT Governance, and is an acknowledged international security guru. In addition, 14 US states now have their own data privacy laws, and GDPR-like legislation has proliferated across the world.

Data Privacy

Data Privacy GDPR Compliance Privacy

ICANN Launches Service to Help With WHOIS Lookups

Krebs on Security

DECEMBER 6, 2023

ICANN made the policy change in response to the General Data Protection Regulation (GDPR), a law enacted by the European Parliament that requires companies to gain affirmative consent for any personal information they collect on people within the European Union. The RDRS portal.

Phishing

Phishing GDPR Personal data Communications

Rosemary Jay Receives 2022 PICCASO Privacy Award for Achievement

Hunton Privacy

DECEMBER 19, 2022

On December 9, 2022, Hunton Andrews Kurth LLP London senior consultant attorney Rosemary Jay received the 2022 PICCASO Privacy Award for Achievement in recognition of her longstanding contributions to the data privacy industry. We are so proud of Rosemary’s recognition among the top data privacy practitioners.

Privacy

Privacy Data Privacy Data breaches GDPR

Privacy in an open-data world: Why government agencies need to be proactive

Collibra

JUNE 23, 2023

The ever-growing digitalization of our world has raised significant concerns about data privacy and security, particularly for agencies that manage and process sensitive and confidential information. These commercial companies collect, analyze, and sell personal information, often without the knowledge or consent of the individuals involved.

Privacy

Privacy Government Data Privacy Data breaches

How to stay on the right side of the latest SEC cybersecurity disclosure rules for a data breach

IBM Big Data Hub

OCTOBER 30, 2023

Under the rule surrounding Form 8-K reporting, public companies are now required to report data breaches within four days of an incident. Responses to the required questions that avoid intensely technical detail will allow for conversations on cybersecurity risks to be more accessible to all parties involved with the company.

Data breaches

Data breaches Cybersecurity Risk Privacy

Over-Retention of Personal Data

Data Protection Report

SEPTEMBER 23, 2021

The declining cost of electronic data storage may have caused some company executives to conclude that retaining personal data forever is “cheap.” that the failure to comply with the retention periods concerned a very large number of persons, in particular the company’s customers. Perhaps the CNIL’s €1.75

Personal data

Personal data Insurance GDPR Record destruction

How COVID-19 Has Reinforced the Need for Comprehensive BYOD Policies

eDiscovery Daily

NOVEMBER 4, 2021

Many worried that limited in-person interaction would negatively impact work relations and company culture. This shift boosted the popularity of BYOD policies in the workplace. From both the employer and employee perspectives, BYOD policies come with a list of pros and cons. Questions to Consider. BYOD Recommendations.

e-Discovery

e-Discovery Privacy Data Privacy Personal data

CIPL Publishes Key Takeaways from Age Assurance and Age Verification Tools Roundtable

Hunton Privacy

MARCH 20, 2023

On February 16, 2023, the Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth LLP held a virtual roundtable to discuss the role of age assurance and age verification tools as part of its Children’s Data Privacy Project. Existing regulatory guidelines and continuous regulatory engagement are useful tools.

Risk

Risk Data Privacy Privacy Compliance

Staying Ahead of the Curve: 6 Top Legal Tech Trends to Watch in 2023

ARMA International

AUGUST 7, 2023

The legal industry has earned its cautious reputation to “watch and wait” before adopting technology. As technology continues to evolve and become more accessible, law firms need to stay on top of the latest legal tech advancements. In 2023, we see six significant trends that considerably impact the legal industry.

Artificial Intelligence

Artificial Intelligence Cloud Data Privacy Privacy

An Update on International and Cross-Border Discovery

AIIM

OCTOBER 27, 2020

There have been some interesting developments in the world of E-Discovery tied to many of the same privacy protection laws and regulations changing the game in records and information management. When a US-based litigant seeks ESI stored in other countries, however, it raises thorny legal and practical issues.

e-Discovery

e-Discovery Personal data Privacy GDPR

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

Any company operating in the EU or handling EU residents’ data must adhere to GDPR requirements. The law outlines a set of data privacy rights for users and a series of principles for the processing of personal data. The company regularly monitors the activity of EEA residents, such as by using tracking cookies.

GDPR

GDPR Compliance Personal data Privacy

10 must-have data intelligence capabilities for your data cloud migration

Collibra

JANUARY 30, 2024

Everyone knows: The cloud is the norm for companies that seek more scale, more savings, and better performance from their technology stack, especially as leveraging AI becomes more widespread. This includes the ability to define, implement and monitor data-related policies, helping you avoid legal and regulatory risks.

Cloud

Cloud Compliance Government Access

New SEC Cybersecurity Rules Could Affect Private Companies Too

eSecurity Planet

SEPTEMBER 23, 2022

Securities and Exchange Commission (SEC) strongly advised public companies to improve their cybersecurity. This requirement copies the strategies of previous legislation that dramatically improved financial reporting for both public and private companies. Also read: Security Compliance & Data Privacy Regulations.

Cybersecurity

Cybersecurity Compliance Risk Communications

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Data Protection Report

DECEMBER 23, 2019

This blogpost summarises our recent webinar: “ An urgent message from Berlin: The importance of record retention in privacy and cybersecurity ”. The authority claimed a violation of data minimisation and privacy by design principles under the EU General Data Protection Regulation (GDPR). . Why should this be a high priority project?

Privacy

Privacy Compliance Personal data Risk

Suits Against Google Signal Increased ‘Dark Patterns’ Scrutiny

Data Matters

JUNE 21, 2022

Pending lawsuits against Google LLC illustrate how regulators and plaintiffs lawyers are increasingly wielding a dark patterns theory in challenging companies’ practices involving consumers. The concept originated in academia about a decade ago, and goes to the heart of the liberty interest protected by privacy law and regulation.

Privacy

Privacy Risk Data collection Personal data

A Serial Tech Investment Scammer Takes Up Coding?

Krebs on Security

APRIL 3, 2023

Davies’ newest invention appears to be “ CodesToYou ,” which purports to be a “full cycle software development company” based in the U.K. But those brokers would eventually get stiffed because Bernard’s company would never consummate a deal. The scam artist John Bernard a.k.a.

Communications

Communications Marketing Security Insurance

U.S. Government White Paper to Help Companies Address the EU’s National Security Concerns in Schrems II

Data Matters

SEPTEMBER 30, 2020

companies might justify their continued transfer to the U.S. Privacy Shield as a basis for transferring EU personal data to the United States because of the Court’s view that U.S. national security law did not provide equivalent privacy protections to those available in the EU. On September 28, the U.S. As a result, U.S.

Paper

Paper Government Security Privacy

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

Securities and Exchange Commission settled its investigation into the matter after the Fortune 500 company agreed to pay a paltry penalty of less than $500,000. The actual customers of the title insurance companies are principally the banks which back these mortgage transactions. This week, the U.S. First American Financial Corp.

Insurance

Insurance Risk Financial Services Mining

FTC Issues Civil Penalty Notice to 700 Companies Regarding Endorsements and Reviews

Data Matters

OCTOBER 19, 2021

Federal Trade Commission (FTC) on October 13 published a Notice of Penalty Offenses advising more than 700 companies that they could incur significant civil penalties if they use endorsements in ways that run counter to the FTC’s guidance. The FTC sent the notice to an “array of large companies.”

Authentication

Authentication Privacy IT

How to Comply with GDPR, PIPL, and CCPA

eSecurity Planet

DECEMBER 22, 2021

But in order for businesses to maintain compliance with major privacy laws , they have to have security measures in place before an attack. China’s new data privacy law just went into effect in November 2021. Also Read: China’s Data Privacy Law Poses Challenge for International Companies. Detailed privacy notices.

GDPR

GDPR Compliance Data Privacy Privacy

Federal Trade Commission Hosts Panels Related to Consumer Privacy and Data Security at PrivacyCon

Data Matters

SEPTEMBER 28, 2021

This summer, the Federal Trade Commission (“FTC”) hosted its sixth annual PrivacyCon , an event focused on the latest research and trends related to consumer privacy and data security. A separate presentation discussed research on racial bias and recommended companies take specific steps to combat algorithmic bias. Algorithms.

Privacy

Privacy Security IoT Data breaches

Happy Compliance Officer Day!

Thales Cloud Protection & Licensing

SEPTEMBER 25, 2023

A compliance officer is a professional responsible for ensuring that a company or organization adheres to all relevant laws, regulations, policies, and industry standards that apply to its operations. Policy Development: Creating and implementing internal policies and procedures that align with applicable laws and regulations.

Compliance

Compliance GDPR Risk Education

Why data privacy requires a cross-functional approach

Collibra

MAY 12, 2020

In our last blog, we discussed the importance of data governance when building an effective data privacy and compliance program. Now we’re moving a little bit deeper into how your data team can collaborate with others to implement a privacy strategy. Legal: Sets forth the compliance requirements that the organization follows .

Data Privacy

Data Privacy Privacy Sales Marketing

McAuliffe Says Federal Privacy Law Is Essential to Economic Recovery

Hunton Privacy

SEPTEMBER 25, 2020

In an op-ed recently published by The Richmond Times-Dispatch , former Governor of Virginia and Global Strategy Advisor of the Centre for Information Policy Leadership at Hunton Andrews Kurth Terry McAuliffe discusses why a U.S. federal privacy law is essential to economic recovery in the wake of the COVID-19 pandemic.

Privacy

Privacy Data Privacy Personal data

Top 8 Cyber Insurance Companies for 2022

eSecurity Planet

APRIL 22, 2022

Cyberattacks are not only a technological problem for companies, but they also represent a very real financial threat. If your company has not already experienced a significant cybersecurity event, it is probably only a matter of time before it does. Also read: The Top Cybersecurity Companies. million and climbing.

Insurance

Insurance Ransomware Cybersecurity Marketing

TikTok sued over its use of children’s personal data

IT Governance

APRIL 22, 2021

Children’s data is subject to special protections under the GDPR, including the requirement that privacy policies must be written in a way that’s understandable to the service’s target audience. Children love TikTok but the company fails to keep them protected. What is TikTok being accused of?

Personal data

Personal data IT GDPR Privacy

Data Beyond Borders: The Schrems II Aftermath

Thales Cloud Protection & Licensing

MARCH 1, 2021

Privacy Shield Framework, on which more than 5,000 U.S. companies rely to conduct trans-Atlantic trade in compliance with EU data protection rules. The objective of the podcast was to examine how the current rules and regulations for securing information and maintaining privacy will impact our future.

GDPR

GDPR Compliance Privacy Cloud

Sealed U.S. Court Records Exposed in SolarWinds Breach

Krebs on Security

JANUARY 7, 2021

The ongoing breach affecting thousands of organizations that relied on backdoored products by network software firm SolarWinds may have jeopardized the privacy of countless sealed court documents on file with the U.S. TeamCity is used by developers at 300,000 organizations, including SolarWinds and 79 of the Fortune 100 companies.

Computer and Electronics

Computer and Electronics Access Communications Paper

Managing AI risks and legal implications, effective cybersecurity, ensuring privacy and the integrity of organizational records

Data privacy examples

Webinars

Trending Sources

NSA buys internet browsing records from data brokers without a warrant

Webinars

Navigating the EU-US Data Protection Framework

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

How to implement the General Data Protection Regulation (GDPR)

Security Compliance & Data Privacy Regulations

Market Leading Cybersecurity and National Security Lawyers David Lashway and John Woods Join Sidley in Washington, D.C.

Privacy notices – the ICO follows the lead of the EU data protection authorities in their interpretation of Article 13 UK GDPR

News Alert: i2Coalition launches ‘VPN Trust Initiative’ to promote VPN operators’ best practices

AI ethics and governance: responsibly managing innovation

Bring-Your-Own-Device Programs: A Balance Between Privacy and Cybersecurity

OpenAI reinstates ChatGPT service in Italy after meeting Garante Privacy’s demands

News alert: Wisner Baum lawsuit alleges joint spyware scheme by Google, Meta, H&R Block

Six eDiscovery Trends for 2024

12 Data Loss Prevention Best Practices (+ Real Success Stories)

Maintaining GDPR and Data Privacy Compliance in 2024

ICANN Launches Service to Help With WHOIS Lookups

Rosemary Jay Receives 2022 PICCASO Privacy Award for Achievement

Privacy in an open-data world: Why government agencies need to be proactive

How to stay on the right side of the latest SEC cybersecurity disclosure rules for a data breach

Over-Retention of Personal Data

How COVID-19 Has Reinforced the Need for Comprehensive BYOD Policies

CIPL Publishes Key Takeaways from Age Assurance and Age Verification Tools Roundtable

Staying Ahead of the Curve: 6 Top Legal Tech Trends to Watch in 2023

An Update on International and Cross-Border Discovery

GDPR compliance checklist

10 must-have data intelligence capabilities for your data cloud migration

New SEC Cybersecurity Rules Could Affect Private Companies Too

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Suits Against Google Signal Increased ‘Dark Patterns’ Scrutiny

A Serial Tech Investment Scammer Takes Up Coding?

U.S. Government White Paper to Help Companies Address the EU’s National Security Concerns in Schrems II

First American Financial Pays Farcical $500K Fine

FTC Issues Civil Penalty Notice to 700 Companies Regarding Endorsements and Reviews

How to Comply with GDPR, PIPL, and CCPA

Federal Trade Commission Hosts Panels Related to Consumer Privacy and Data Security at PrivacyCon

Happy Compliance Officer Day!

Why data privacy requires a cross-functional approach

McAuliffe Says Federal Privacy Law Is Essential to Economic Recovery

Top 8 Cyber Insurance Companies for 2022

TikTok sued over its use of children’s personal data

Data Beyond Borders: The Schrems II Aftermath

Sealed U.S. Court Records Exposed in SolarWinds Breach

Stay Connected