2019, Financial Services and IT - Information Management Today

$8 million penalty to NYDFS – and another case of over-retention

Data Protection Report

JANUARY 18, 2024

On January 3, 2024, the New York Department of Financial Services announced a consent order with GGT, where GGT agreed to pay NYDFS $8 million and to surrender its BitLicense (for cryptocurrency trading), due to alleged violations of NYDFS’ cybersecurity and its virtual currency regulations.

Cybersecurity

Cybersecurity Financial Services Compliance Encryption

Regulatory Update: NAIC Summer 2019 National Meeting

Data Matters

SEPTEMBER 4, 2019

The National Association of Insurance Commissioners (NAIC) held its Summer 2019 National Meeting (Summer Meeting) in New York City from August 3 to 6, 2019. The amended regulation took effect on August 1, 2019, for annuity products and will become effective on February 1, 2020, for life insurance products.

Insurance

Insurance Paper Risk Analytics

Big California Privacy News: Legislative and Enforcement Updates

Data Matters

SEPTEMBER 6, 2022

For businesses operating in California or whose websites, products or services reach California residents, these changes mean new compliance obligations, some of which could require significant investments of time and resources. If this bill becomes law, it will be effective beginning January 1, 2023.

Privacy

Privacy B2B Sales Compliance

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Data Protection Report

DECEMBER 23, 2019

In 2019, we saw regulators put a renewed focus on how long businesses retain personal information. Likewise, the New York State Department for Financial Services regulations requires relevant entities to have appropriate record retention policies and procedures. Why should this be a high priority project? In the U.S.,

Privacy

Privacy Compliance Personal data Risk

Takeaways From CCPA Public Forums

Data Matters

FEBRUARY 12, 2019

Speakers also asked for clarity about how the CCPA requirements will apply to employee personal information collected in connection with routine human resources processes. For example, a company might track a user’s web browsing to facilitate online advertisements, but not link the data to a specific consumer. 1798.125(a).

Sales

Sales Privacy Data Privacy Compliance

Ransomware Protection in 2021

eSecurity Planet

FEBRUARY 16, 2021

The most common way for criminals to infect an organization is by sending an email with a malicious link or attachment that an employee clicks on unwittingly to initiate an attack. The internet is fraught with peril these days, but nothing strikes more fear into users and IT security pros than the threat of ransomware. How ransomware works.

Ransomware

Ransomware Encryption Insurance Cloud

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

Data Matters

SEPTEMBER 24, 2019

In Barbados, the public consultation on a draft privacy bill has already taken place and an amended bill has been presented to a Joint Select Committee of both Houses of the Barbados Parliament on May 31, 2019. The BDPA was passed by the BDPA on July 24, 2019 and now awaits the Governor-General’s signature. An Overview of the BDPA.

Personal data

Personal data GDPR Data Privacy Privacy

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Data Protection Report

DECEMBER 23, 2019

In 2019, we saw regulators put a renewed focus on how long businesses retain personal information. Likewise, the New York State Department for Financial Services regulations requires relevant entities to have appropriate record retention policies and procedures. Why should this be a high priority project? In the U.S.,

Privacy

Privacy Compliance Personal data Risk

The Hacker Mind Podcast: DEF CON Villages

ForAllSecure

AUGUST 2, 2022

Yes, grasshoppers invaded Las Vegas at the start of hacker summer camp in 2019. And by de I'm an analyst at Javelin strategy and research where I do security risk and fraud for the financial services industry. DEF CON is 30 years old this year, and it’s bigger and better in part because of topic-specific villages.

Computer and Electronics

Computer and Electronics IT Security Mining

California Consumer Privacy Act: The Challenge Ahead — Introduction to Hogan Lovells’ Blog Series

HL Chronicle of Data Protection

SEPTEMBER 12, 2018

He emphasized that the statute is requiring his office to shift from its traditional role as an enforcer and asking them to “take on the new role and obligations of a regulator” without providing either sufficient time or resources. Groundbreaking. Unprecedented. provide additional CCPA analyses and reports.

Privacy

Privacy Compliance GDPR Data breaches

Nation-State-Sponsored Attacks: Not Your Grandfather’s Cyber Attacks

Data Matters

MAY 17, 2022

Even large companies that dedicate significant budgets and human resources to cybersecurity must evolve in their preparations to defend against such attacks. Attacks perpetrated with the backing of foreign governments tend to be well-resourced and highly sophisticated, and are therefore able to levy significant damage against their victims.

Cybersecurity

Cybersecurity Government Authentication Ransomware

Information Management Today

$8 million penalty to NYDFS – and another case of over-retention

Regulatory Update: NAIC Summer 2019 National Meeting

Trending Sources

Big California Privacy News: Legislative and Enforcement Updates

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Takeaways From CCPA Public Forums

Ransomware Protection in 2021

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

The Hacker Mind Podcast: DEF CON Villages

California Consumer Privacy Act: The Challenge Ahead — Introduction to Hogan Lovells’ Blog Series

Nation-State-Sponsored Attacks: Not Your Grandfather’s Cyber Attacks

Stay Connected