Data Matters

DECEMBER 21, 2020

Non-compliance with EU (and UK) export control rules can have serious criminal, financial, and reputational consequences for companies and their employees. Enhanced due diligence and reporting obligations for businesses to show compliance with applicable export controls. The Delegated Regulation entered into force on December 15, 2020.

Compliance 122

Compliance Military Information Security Security 122

Hunton Privacy

NOVEMBER 18, 2008

Massachusetts recently announced that it is extending the deadline for compliance with new state data security regulations. In consideration of the current economic climate, Massachusetts has extended its original compliance deadline of January 1, 2009. The new compliance deadline will be phased in.

Compliance 40

Compliance Security Encryption IT 40

Hunton Privacy

JULY 30, 2009

On July 29, 2009, the Federal Trade Commission ("FTC") announced another three-month delay in the enforcement of the provision of Identity Theft Red Flags and Address Discrepancies Rule (the "Rule") that requires creditors and financial institutions to implement an Identity Theft Prevention Program.

Compliance 40

Compliance Education Risk IT 40

Hunton Privacy

FEBRUARY 13, 2009

On February 12, 2009, the Massachusetts Office of Consumer Affairs and Business Regulation issued a revised version of its information security regulations and extended the compliance deadline from May 1, 2009 to January 1, 2010.

Information Security 40

Information Security Compliance Security IT 40

IT Governance

OCTOBER 29, 2018

Introduced in 2009 to help organisations manage personal information and comply with data protection laws, BS 10012 was until recently a niche standard, but it has garnered fresh attention since the EU GDPR (General Data Protection Regulation) took effect. Here are some other benefits of implementing a BS 10012-compliant PIMS.

Data Privacy 58

Data Privacy GDPR Compliance Personal data 58

HL Chronicle of Data Protection

JANUARY 22, 2020

The PDPO Review Paper represents the first proposal for reform of the PDPO since the consultation in 2009-10 that led to the introduction of Hong Kong’s direct marketing controls in 2013. From a global perspective, data protection regulation has moved forward significantly since that time, so a review of the PDPO is timely.

Personal data 71

Personal data Data Privacy Privacy Paper 71

AIIM

OCTOBER 30, 2017

In industries where compliance is a concern, the organization can create workflows that comply with regulations and are assured that compliance consistency is applied. We live in a dynamic world where processes and compliance regulations can often change. Consistent document delivery. One more thing.

e-Delivery 89

e-Delivery File names Compliance ECM 89

Hunton Privacy

AUGUST 20, 2009

On August 17, 2009, Massachusetts announced revisions to its information security regulations and extended the deadline for compliance with those regulations. Finally, the compliance deadline for these regulations has been extended to March 1, 2010.

Information Security 40

Information Security Compliance Computer and Electronics Security 40

eSecurity Planet

FEBRUARY 8, 2021

Netsparker was launched in 2009 to alleviate frustrations around manual vulnerability verification processes. Across all plans, Netsparker generates clean, powerful reports that can be used to understand technical details and meet compliance requirements. Compliance reports Yes Yes Yes. About Netsparker. Netsparker plans.

Financial Services 56

Financial Services Compliance Sales Education 56

Hunton Privacy

JANUARY 25, 2013

The Omnibus Rule is effective March 26, 2013, and compliance is required with respect to most provisions no later than September 23, 2013. Coming into compliance will require significant effort and attention by covered entities and business associates alike. Expanded Pool of Business Associates and Enhanced Requirements.

Compliance 45

Compliance Communications Privacy Sales 45

Hunton Privacy

JULY 24, 2009

On July 3, 2009, the German Federal Parliament passed comprehensive amendments to the Federal Data Protection Act (the “Federal Act”). These amendments also passed the Federal Council on July 10, 2009, and the revised law will enter into force on September 1, 2009.

Compliance 40

Compliance Marketing Security Encryption 40

ChiefTech

SEPTEMBER 11, 2007

©2005-2009. Tuesday, 11 September 2007 Zimbra point out the compliance issues with outsourced Office 2.0 Tuesday, 11 September 2007 Zimbra point out the compliance issues with outsourced Office 2.0 Its a good point, but I think the compliance gap is a lot easier for Google or another Office 2.0 The solution?

Compliance 40

Compliance Archiving Paper IT 40

Hunton Privacy

NOVEMBER 12, 2009

EU Safe Harbor Framework, as well as changes in privacy compliance, information security and data protection. Every year since 2005, the United States, the European Commission and the Article 29 Working Party on Data Protection meet to review the latest developments in the U.S.-EU

Privacy 40

Privacy Compliance Information Security Security 40

Hunton Privacy

OCTOBER 5, 2018

The SEC determined that Voya violated the Identity Theft Red Flags Rule because, while it had adopted an Identity Theft Prevention Program in 2009, it did not review and update this program in response to changes in the technological environment. The SEC also found that Voya failed to provide adequate training to its employees.

Passwords 68

Passwords Compliance Risk Access 68

Data Matters

MARCH 28, 2022

Relatedly, as issues around data in the healthcare industry grow, Congress continues to contemplate modernization of the HIPAA—which originally passed over 25 years ago and has not been substantively updated since 2009 (or when the iPhone was barely 2 years old).

Cybersecurity 88

Cybersecurity Privacy Insurance Risk 88

ChiefTech

JANUARY 24, 2007

©2005-2009. But what about compliance? My hunch is the gap between this kind of hypothesis building and compliance issues is pretty large. However, you need to come over and see my new blog at chieftech.com.au. Disclaimer: Information on this blog is of a general nature and represents my own independent opinion.

Compliance 40

Compliance Computer and Electronics Records Management Paper 40

Data Matters

JULY 15, 2020

However, the process of obtaining authorization is time-consuming and may require significant investment in compliance and risk management functions. responsibility for compliance with data privacy legislation. An authorized bank is also generally permitted to issue electronic money (i.e., termination rights. Data security.

Compliance 68

Compliance Marketing Risk Privacy 68

IT Governance

NOVEMBER 28, 2018

Since it was founded in 2009, Uber has faced four other criminal probes, which have looked into possible bribes, illicit software, questionable pricing schemes and theft of a competitor’s intellectual property. The six key steps you can take to ensure you meet the GDPR’s compliance requirements.

Data breaches 91

Data breaches GDPR Personal data Compliance 91

Thales Cloud Protection & Licensing

AUGUST 22, 2019

It’s an understatement to say things have changed a lot since 2009, especially the cyber landscape. And despite increases in data breaches and regulatory compliance, proper investment in data protection is low for agencies. Without a sea change, 2029 won’t mark a happy anniversary.

Digital transformation 92

Digital transformation Encryption Risk Cybersecurity 92

Hunton Privacy

DECEMBER 13, 2012

In an accountability model, organizations implement and demonstrate adherence to a comprehensive data protection compliance program,” said Marty Abrams, President of the Centre. “In The tool is the product of the Global Accountability Project for which the Centre serves as Secretariat. “In

Privacy 40

Privacy Compliance Government IT 40

Hunton Privacy

MAY 14, 2010

Prior to 2009, HHS divided civil enforcement responsibility for HIPAA between OCR, which enforced the HIPAA Privacy Rule, and the Centers for Medicare and Medicaid Services (“CMS”), which enforced the HIPAA Security Rule.

Security 40

Security CMS Compliance Privacy 40

Data Protection Report

OCTOBER 1, 2019

In January 2009, the OPC issued Guidelines for processing personal data across borders setting out its interpretation that a “transfer” of personal information by an organization for processing is a “use” and not a “disclosure” of that personal information. s compliance with PIPEDA in light of the 2017 breach of personal information.

Privacy 40

Privacy Risk Compliance Personal data 40

Hunton Privacy

MARCH 14, 2012

million to settle potential HIPAA violations related to the October 2009 theft of 57 unencrypted hard drives containing protected health information (“PHI”) from a network data closet at a leased facility leased in Chattanooga, Tennessee. BlueCross Blue Shield of Tennessee (“BCBS Tennessee”) agreed to pay $1.5

Compliance 40

Compliance Access Risk Security 40

DLA Piper Privacy Matters

JULY 21, 2020

Mr Nowak was employed by PwC as a trainee accountant and had his employment terminated in 2009 as he failed to pass particular exams. Background . Mr Nowak has initiated various sets of proceedings, one which centred around his data access request for the relevant exam scripts, that went to the CJEU.

Personal data 99

Personal data Access Compliance Privacy 99

HL Chronicle of Data Protection

APRIL 29, 2019

Under the HITECH Act of February 2009, Congress strengthened HHS’s HIPAA enforcement authority by authorizing increased minimum and maximum potential Civil Monetary Penalties (CMPs) for HIPAA violations. Background on HHS’s Enforcement Authority. 4) the violation was due to willful neglect that is not timely corrected.

Compliance 40

Compliance IT Insurance Privacy 40

Hunton Privacy

JULY 1, 2013

For example, the Electronic Communications Act implements the e-Privacy Directive 2002/58/EC , as amended by Directive 2009/136/EC, and the Regulation on the Procedure for Storage and Special Measures Relating to the Technical Protection of Special Categories of Personal Data sets forth detailed information security measures.

Personal data 40

Personal data IT Compliance Communications 40

Hunton Privacy

OCTOBER 28, 2009

On Friday, October 23, 2009, the German Railways Operator Deutsche Bahn AG announced that they would pay a fine of over €1.1 million that was imposed on October 16, 2009 by the Berlin data protection authority. This fine is the highest ever imposed by a German data protection authority.

Communications 40

Communications Compliance IT Security 40

IT Governance

AUGUST 3, 2018

Yale explained: “Between April 2008 and January 2009, intruders gained access to a database stored on a Yale server. Whatever your information security needs – whether regulatory compliance, stakeholder reassurance or just greater business efficiency – IT Governance can help your organisation to protect, comply and thrive.

Data breaches 53

Data breaches GDPR Passwords Government 53

ChiefTech

JANUARY 12, 2008

©2005-2009. This looks like it answers one of my previous concerns about using hosted consumer services for business email and collaboration, that they dont provide for compliance and records management. This is the old ChiefTech blog. Nice of you to drop in and visit. Please seek advice for specific circumstances.

Risk 40

Risk Records Management Consumer Services Compliance 40

Hunton Privacy

JULY 2, 2009

On July 2, 2009, five marketing industry associations jointly published a set of voluntary behavioral marketing guidelines entitled “Self-Regulatory Principles for Online Behavioral Advertising.” The FTC published a second report on its own proposed self-regulatory principles on February 12, 2009. In the U.S.,

Marketing 40

Marketing Education Compliance Data collection 40

Hunton Privacy

SEPTEMBER 23, 2009

The Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”), which was signed into law in February 2009 as part of the economic stimulus package, substantially impacts requirements imposed by the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”).

Insurance 40

Insurance Compliance Privacy Security 40

Hunton Privacy

APRIL 8, 2011

As a result of the settlement, GunnAllen’s former president and national sales manager must each pay $20,000, and the former chief compliance officer has been ordered to pay $15,000. View the SEC’s press release and orders.

Privacy 40

Privacy Sales Compliance Information Security 40

Information is Currency

MARCH 31, 2017

When data is only used for things like risk management, fraud prevention and compliance-related activities, its awesome potential is never realized and money is left on the proverbial table. “I’ve been scraping the Dark Web since 2009. The Right Way to Make Your Data Deliver. 1, followed by Carnegie Mellon University, 2.4:1,

ECM 40

ECM Digital transformation Sales Metadata 40

HL Chronicle of Data Protection

MARCH 14, 2018

The petition , filed by Sears Holdings Management Corporation, sought to amend the terms of Sears’ 2009 consent order (the “Order”), which settled allegations that Sears did not adequately disclose the extent to which desktop software it distributed collected information from consumers.

Privacy 40

Privacy Retail Data collection Data Privacy 40

Hunton Privacy

JUNE 4, 2009

On April 27, 2009, the Article 29 Working Party issued a new working document (WP 155 rev.04) 04) on frequently asked questions relating to binding corporate rules (“BCRs”). The Working Document is available here.

Personal data 40

Personal data Compliance Information Security Security 40

Hunton Privacy

AUGUST 28, 2009

The FTC Final Rule applies to all breaches discovered on or after September 24, 2009, and to “foreign and domestic vendors of personal health records, PHR related entities, and third party service providers” that “maintain information of U.S. Full compliance is required by February 22, 2010.

Insurance 40

Insurance Compliance Encryption Information Security 40

Hunton Privacy

SEPTEMBER 23, 2014

According to the FTC’s complaint against Yelp, from 2009 to 2013, Yelp app users had to provide information such as their name, email address, ZIP code and possibly date of birth and gender in connection with the app registration process. On September 17, 2014, the Federal Trade Commission announced that the online review site Yelp, Inc.,

Compliance 40

Compliance Privacy Access Security 40