Data Protection Report

JANUARY 18, 2024

NYDFS conducted its first audit of GGT for the period of May 17, 2018 through March 31 2019. Companies should focus on establishing and implementing a reasonable information governance policy and record retention schedule with special emphasis on documents that contain personal information.

Cybersecurity 109

Cybersecurity Financial Services Compliance Encryption 109

The Schedule

AUGUST 22, 2018

Outgoing RMS chair Eira Tansey addresses the joint meeting of the Acquisition & Appraisal and Records Management Sections at SAA’s 2018 annual meeting. ” The first speaker was Lauren Gaines from Thrivent Financial, which is a fraternal benefit society and Fortune 500 financial services organization.

Archiving 58

Archiving FOIA Records Management Compliance 58

Data Matters

AUGUST 24, 2018

The National Association of Insurance Commissioners (NAIC) held its Summer 2018 National Meeting in Boston, Massachusetts, from August 4 to 7, 2018. The Task Force aims to complete the white paper by the fall of 2018. This post summarizes the highlights from this meeting.

Insurance 60

Insurance Big data e-Delivery Risk 60

Krebs on Security

JUNE 18, 2021

.” Mark Rasch , also former federal prosecutor in Washington, said the SEC is signaling with this action that it intends to take on more cases in which companies flub security governance in some big way. “It’s a win for the SEC, and for First America, but it’s hardly justice,” Rasch said.

Insurance 269

Insurance Risk Financial Services Mining 269

Data Matters

JUNE 24, 2021

The SEC is considering enhancing its disclosure rules concerning cybersecurity risk governance and has indicated a target release date of October 2021. 2 See Cybersecurity Risk Governance, 3235-AM89, Securities and Exchange Commission (Spring 2021). This resolution highlights the SEC’s continued focus on cybersecurity. 20, 2017).

Cybersecurity 68

Cybersecurity Financial Services Risk Compliance 68

CGI

MAY 15, 2018

The time for government blockchain proofs of concept is now. Tue, 05/15/2018 - 06:29. For the past two years, CGI has seen an exponential uptick in commercial sector interest in blockchain beyond just the financial services industry. Many government agencies also have been wading deeper into the blockchain waters.

Blockchain 40

Blockchain Government Digital transformation Consumer Services 40

Security Affairs

SEPTEMBER 1, 2020

According to the experts, the threat actors are merely trying to monetize their efforts selling information that have no intelligence value for the Iranian Government. In late July 2020, Crowdstrike spotted a threat actor associated with PIONEER KITTEN that was attempting to sell access to compromised networks on an underground forum.

Access 96

Access Financial Services Retail Insurance 96

Collibra

FEBRUARY 11, 2020

Regulators are focusing on the data relationships financial services organizations have with third parties, including how well personal information is being managed. There are several areas that the international financial services regulatory community is engaged in that touch on third party personal data relationships.

Financial Services 59

Financial Services Digital transformation Personal data Compliance 59

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk 117

Risk Financial Services Insurance Cybersecurity 117

Data Protection Report

MAY 25, 2022

The decision has been labelled as a watershed decision in Australia – a ‘first of its kind’ case that puts financial services firms, and more broadly, corporate Australia, on notice that failures to adequately understand and manage cybersecurity and cyber resilience risks will no longer be tolerated by Australia’s regulatory agencies.

Cybersecurity 73

Cybersecurity Risk Financial Services Retail 73

Info Source

MAY 8, 2019

Event highlights included a solutions expo with a series of interactive demos of real-world solutions for government, healthcare and financial services. Throughout the event, Alaris recognized its highest performing partners from the region including: Top Distributor, 2018. Top Reseller, 2018. NewWave Technologies.

Digital transformation 40

Digital transformation Sales Financial Services Marketing 40

eSecurity Planet

AUGUST 9, 2022

And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. See the Top Governance, Risk and Compliance (GRC) Tools. Regulatory compliance and data privacy issues have long been an IT security nightmare.

Data Privacy 142

Data Privacy Compliance Privacy Security 142

Data Matters

OCTOBER 8, 2020

According to OFAC, ransomware attacks have been increasing over the last two years and are a special risk during the COVID-19 pandemic, with cybercriminals targeting not only large corporations but also small to medium enterprises, hospitals, schools, and local government agencies. November 2018: two Iranian creators of SamSam ransomware.

Ransomware 68

Ransomware Compliance Risk Government 68

AIIM

JANUARY 26, 2018

The clock is ticking – the regulation goes into effect on May 25th, 2018, and the potential penalties for non-compliance are significant (organizations found to be in breach of GDPR may be fined up to 4% of annual revenues or 20 million Euro, whichever is the greater). 3 -- Governance and oversight.

GDPR 92

GDPR Compliance Archiving Privacy 92

Security Affairs

SEPTEMBER 10, 2018

defense contractors and financial services firms worldwide. In March 2018, security experts at Kaspersky Lab have observed an attack powered by the Chinese APT group, the experts speculate the campaign was started in the fall of 2017. The APT group has been active since at least 2010, the crew targeted U.S.

Communications 73

Communications Financial Services Phishing Encryption 73

ARMA International

APRIL 18, 2022

The purpose of this article is to remove the fear and intimidation of domestic and global data protection laws and show how these laws and requirements are consistent with the existing objectives of your records retention schedule and information governance policy. Definition and Purpose of a Records Retention Schedule. 2016/679, Art.

Personal data 100

Personal data GDPR Privacy Records Management 100

Info Source

JULY 16, 2019

billion in 2019, an almost 80% increase over 2018, and $15.06 The retail industry and banking are the biggest spenders on AI in the region, with use cases such as fraud analysis and customer-facing process automation enabling self-service and improving customer experience. billion in 2022. and Tech Mahindra.

Customer Experience 40

Customer Experience Financial Services Marketing Retail 40

Info Source

JULY 18, 2023

By Petra Beck, Senior Analyst Capture Software, Infosource Key Takeaways The expanded eIDAS (electronic Identification, Authentication and Trust Services) 2.0 It will become mandatory for government agencies and businesses in select verticals within the next 2 years. regulation is entering implementation stage in the EU.

Authentication 52

Authentication e-Delivery B2C Marketing 52

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. 2018-L-11008, 2018 WL 4941760 (Ill. For example, Mondelez International Inc.

Insurance 70

Insurance Cybersecurity Risk Education 70

Thales Cloud Protection & Licensing

JULY 24, 2018

to discuss the findings of the 2018 Thales Data Threat Report, Federal Edition. Question: Can you provide an overview of the 2018 Thales Data Threat Report, Federal Edition, and elaborate why it’s needed today more than ever? More so than commercial enterprises, government agencies are making a massive shift to the cloud.

Encryption 48

Encryption Cloud Data breaches Government 48

DLA Piper Privacy Matters

MARCH 1, 2019

The MoU sets out the principles of collaboration and the legal framework governing the sharing of relevant information and intelligence. The FCA is the conduct regulator for 58,000 financial services firms and financial markets in the UK and the prudential regulator for over 18,000 of those firms. promote competition.

Financial Services 51

Financial Services Marketing GDPR Data breaches 51

HL Chronicle of Data Protection

DECEMBER 7, 2018

The California Consumer Privacy Act of 2018 (“CCPA”) exempts information that is collected, processed, sold, or disclosed pursuant to the federal Gramm-Leach-Bliley Act (“GLBA”), and its implementing regulations (the “Privacy Rule”), or the California Financial Information Privacy Act (“CFIPA”). Background.

Privacy 40

Privacy Financial Services Compliance Data breaches 40

Thales Cloud Protection & Licensing

DECEMBER 11, 2018

We had some results this year from the 100+ US retail IT security professionals that were surveyed for the 2018 Thales Data Threat Report that differed from every other segment we polled (healthcare, federal government, financial services).

Retail 66

Retail Data breaches Encryption Mining 66

eSecurity Planet

FEBRUARY 16, 2021

Only 38% of state and local government employees are trained for ransomware prevention, and only 29% of small businesses have experience with ransomware ( IBM ). Healthcare and financial services are the most attacked industries. The Ryuk ransomware family spawned in 2018 from a sophisticated Russia-based cybercrime group.

Ransomware 97

Ransomware Encryption Insurance Cloud 97

Data Matters

FEBRUARY 25, 2021

Further, the FCA has confirmed its position set out in the Temporary COVID Guidance that it expects the senior management or governing body of an EMI or PI to document, review, and approve — at least annually — the design and results of the firm’s stress testing. not to include uncommitted intragroup liquidity facilities.

Authentication 68

Authentication Paper Risk Insurance 68

Data Matters

FEBRUARY 12, 2019

When California Governor Jerry Brown signed the California Consumer Privacy Act (CCPA) into law on June 28, 2018, there was broad agreement that revisions and clarifications were necessary. Adjusting the monetary threshold governing what businesses are covered by the Act. Rules for Opt-Out of Sale. Rules for Notices and Information.

Sales 74

Sales Privacy Data Privacy Compliance 74

HL Chronicle of Data Protection

NOVEMBER 15, 2018

The draft text of the EU-UK withdrawal agreement was published by the UK Government and the European Union yesterday, providing some of the first concrete indicators of the possible direction of travel in the area of data protection. Analysis of the text has barely started, but some of our initial conclusions are outlined below.

GDPR 40

GDPR Personal data Government Financial Services 40

Information Matters

DECEMBER 7, 2018

UK consumers threaten data breach backlash – Computer Weekly, 5 December 2018. “Seven out of 10 UK consumers and two-thirds, on average, around the world would stop doing business with a brand that suffers a breach of users’ financial or personal data. ” [link]. ” [link]. ” [link]. ” [link]. .

IoT 40

IoT Blockchain Personal data Analytics 40

CGI

DECEMBER 18, 2018

Sibos 2018 – a whirlwind tour of my week down under. Tue, 12/18/2018 - 04:55. CGI has been selected to build the Network, which will have an open architecture and standardised connectivity based on a governance model similar to Swift in order to maximise adoption across the supply chain ecosystem.

Financial Services 40

Financial Services Encryption Marketing GDPR 40

HL Chronicle of Data Protection

MARCH 14, 2019

The proposed Rule would allow the CISO to be an employee of a service provider or affiliate, although in that case the FI would be required to designate a senior member of its personnel to direct and oversee the CISO. Board reporting. Periodic risk assessments. The FTC retained authority over certain motor vehicle dealers only.

Privacy 40

Privacy Risk Cybersecurity Information Security 40

eDiscovery Daily

OCTOBER 21, 2019

Join us to hear examples of failures by a major medical center, a major financial institution, a large federal government agency, and a noted presidential advisor. From law firm, to corporation, to service provider, to government, and beyond. This panel will explore the tough questions… How on earth did we get here?

e-Discovery 45

e-Discovery e-Delivery GDPR Education 45

eSecurity Planet

JANUARY 27, 2022

billion by 2026, driven not only by remote working and growing cyber threats but also by a massive cybersecurity skills shortage , the demands of government regulations , and the simple cost benefits of outsourcing. Use Cases: Companies and governments in U.K., Use Cases: Mid-sized, enterprise, and government organizations.

Security 103

Security Cloud Compliance Analytics 103

Security Affairs

NOVEMBER 17, 2019

Chinese white hat hackers have a long story of success, they won several international hacking contests in the past, but in 2018 the Chinese government prohibited Chinese experts in participating this kind of competition abroad. According to the organizers , in 2018 hackers earned $1,024,000 for a total of 30 vulnerabilities.

Financial Services 82

Financial Services Government Security Cybersecurity 82

IBM Big Data Hub

OCTOBER 16, 2023

Data sovereignty addresses legal, privacy, security and governance concerns associated with the storage, processing and transfer of data. Establish data governance frameworks, policies, procedures and tools by organizations to bring in required control and audit. Data sovereignty in the EU is an evolving field.

Cloud 73

Cloud Compliance Data Privacy Privacy 73

Data Matters

SEPTEMBER 4, 2019

The New York State Department of Financial Services recently amended its annuity suitability regulation to apply a “best interest” standard in connection with both life insurance and annuity transactions with consumers. NAIC Considers Next Steps to Implement Revised Credit for Reinsurance Model Law and Regulation.

Insurance 68

Insurance Paper Risk Analytics 68

The Last Watchdog

MAY 1, 2019

This is stunning: phishing attacks soared in 2018, rising 250% between January and December, according to Microsoft’s Security Intelligence Report. Customers in financial services, energy, government, healthcare and manufacturing sectors are using its testing and training modules. It is headquartered in Zurich, with a U.S

Phishing 136

Phishing Financial Services Manufacturing Education 136

Info Source

SEPTEMBER 11, 2018

September 10, 2018 – In recognition of the importance of reliability when modernizing paper-based processes, Canon U.S.A., 1 Cloud based services are subject to third-party cloud service providers’ terms and conditions, and possible subscription fees. as of 2018. MELVILLE, N.Y., 3 Actual prices set by dealer and may vary.

Paper 49

Paper Cloud Financial Services Compliance 49