Access, Definition and Government - Information Management Today

Collibra wins prestigious 2024 Communicator Award for AI Governance campaign

Collibra

MAY 21, 2024

Our mission focused on positioning Collibra as a thought leader in the industry and highlighting how enterprises everywhere can ‘do more’ with Collibra, and especially Collibra AI Governance. AI governance is essential for the safe and effective deployment of AI technologies, including generative AI applications.

Communications

Communications Government B2B Marketing

UK GDPR Reform: government publishes response to consultation – likely to form basis of forthcoming UK Data Reform Bill

Data Protection Report

JUNE 22, 2022

UK GDPR Reform: government publishes response to consultation – likely to form basis of forthcoming UK Data Reform Bill. The Department for Culture, Media and Sport (DCMS) has finally published the UK government’s long-awaited response to the consultation on the future of the UK data protection regime. Reform of Article 22.

GDPR

GDPR Government Personal data Risk

Government publishes consultation on post-Brexit data reforms

DLA Piper Privacy Matters

SEPTEMBER 10, 2021

The government has today published its eagerly awaited Consultation Paper on Reforms to the UK Data Protection Regime – ‘Data: A New Direction’ (“ Consultation Paper ”), setting out the specific areas for regulatory reform of the UK’s data protection regime. Reducing barriers to responsible innovation.

Government

Government Paper Personal data GDPR

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. Schools, hospitals and government agencies all fall under GDPR authority. Useful definitions The GDPR uses some specific terminology. Each EEA country has its own supervisory authority.

GDPR

GDPR Compliance Personal data Privacy

California Privacy Law Overhaul – Proposition 24 Passes

Data Matters

NOVEMBER 4, 2020

Changes to the Definition of Businesses Subject to the CPRA. The CPRA adjusts its definition of a “business” as defined by the CCPA; broadening the scope in some cases, and narrowing it in others. The CPRA expanded the definition of a business in several respects. However, in some cases, the definition of “business” is narrowed.

Privacy

Privacy B2B Sales Data breaches

The Impact of Data Protection Laws on Your Records Retention Schedule

ARMA International

APRIL 18, 2022

The purpose of this article is to remove the fear and intimidation of domestic and global data protection laws and show how these laws and requirements are consistent with the existing objectives of your records retention schedule and information governance policy. Definition and Purpose of a Records Retention Schedule.

Personal data

Personal data GDPR Privacy Records Management

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

See the Top Governance, Risk and Compliance (GRC) Tools. Relatedly, PIPL outlines some categories of sensitive information that do not receive additional protection under GDPR. But those aren’t the only laws or regulations that affect IT security teams. PIPL Raises the Bar – And the Stakes. Location Matters. In the U.S.,

Data Privacy

Data Privacy Compliance Privacy Security

China Issues the Second Version of the Draft of Data Security Law

Hunton Privacy

MAY 3, 2021

Data Protection Policy Based On Hierarchical Classification and Category. Nonetheless, the Draft DSL does not provide the definition of important data, which may be defined in future implementing rules. Licensable Data Processing Service.

Security

Security Cybersecurity Data collection Government

How to Comply with GDPR, PIPL, and CCPA

eSecurity Planet

DECEMBER 22, 2021

The regulations from GDPR, PIPL, and CCPA are especially prevalent to MSPs and software vendors because they get access to data from so many organizations, but all businesses need to comply with them. Categories for all of your organization’s data: Not every piece of information will be relevant to CCPA and require the same level of security.

GDPR

GDPR Compliance Data Privacy Privacy

The Week in Cyber Security and Data Privacy: 20 – 26 November 2023

IT Governance

NOVEMBER 28, 2023

This week, we’re taking a slightly different approach with the ‘publicly disclosed data breaches and cyber attacks’ category, presenting the most interesting data points in a table format. The ‘enforcement’ and ‘other news’ categories remain unchanged. Only 3 definitely haven’t had data breached.

Data Privacy

Data Privacy Privacy Energy and Utilities Data breaches

What Is Encryption? Definition, How it Works, & Examples

eSecurity Planet

DECEMBER 7, 2023

Encryption uses mathematical algorithms to transform and encode data so that only authorized parties can access it. 2 Common Types of Encryption The two main types of encryption categories are symmetric and asymmetric. Symmetric encryption uses a single key to encrypt and decrypt data.

Encryption

Encryption IT Passwords IoT

US: CPRA analysis: The ‘good’ and ‘bad’ news for CCPA-regulated ‘businesses’

DLA Piper Privacy Matters

MAY 11, 2020

Create an operationally significant limited exception to deletion and access rights for many types of unstructured data. Amend the second threshold of the definition of a “business” to remove “devices.” Enforcement and fines. Right to correct inaccurate personal information.

Privacy

Privacy Unstructured data Access Data collection

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The only processing operations exempt from the GDPR are national security and law enforcement activities and purely personal uses of data. Identify and protect special category data When inventorying data, organizations should make a note of any especially sensitive data that requires extra protection.

GDPR

GDPR Compliance Personal data Privacy

CCPA Marches On: California Attorney General Proposes Further Revisions to CCPA Regulations, Industry Pleads for Enforcement Delay Amid COVID-19 Crisis

Data Matters

APRIL 10, 2020

While the world seems to have ground to a halt in so many ways, time still marches on, and along with it, the California Consumer Privacy Act (“CCPA”) enforcement date (July 1, 2020) inches ever closer. through their websites) to a particular consumer or household.

Privacy

Privacy Sales Insurance Compliance

US SEC charges SolarWinds and its CISO for alleged cybersecurity misstatements and controls failures

Data Protection Report

NOVEMBER 14, 2023

2 In addition, the SEC alleged that while SolarWinds claimed it had a strong password policy, in reality it failed to enforce or comply with its own password policy on multiple occasions. 4 This statement was false, according to the SEC, because at this point, SolarWinds knew the risk was definitive, not merely hypothetical.

Cybersecurity

Cybersecurity IT Risk Passwords

“What’s Cooking” in Sacramento: CCPA’s “Employee Exception” Bill is Amended; “Publicly Available Information” Exception is Broadened, and Consumer Access Rights are Clarified

Data Protection Report

JULY 3, 2019

individual contractors from the CCPA definition of “consumers.” Also, driver’s license data that is purchased from local government records databases would not be exempted from CCPA protections if it is used for a purpose that is not compatible with the purpose for which the data is maintained (e.g. AB 25:” employee exception”.

Access

Access Privacy Data Privacy Government

CHINA: Important new risks and practical guidance on China data protection, data security, e-commerce and online platform compliance

DLA Piper Privacy Matters

NOVEMBER 16, 2021

Notably it includes a host of new, onerous regulatory approval and governance requirements for personal data controllers, organisations processing “important data” and operators of online platforms/e-commerce sites, including in the context of corporate transactions. It is clear that this remains an enforcement priority.

Compliance

Compliance Personal data Security Risk

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

We have summarised the key compliance obligations under the PIPL below, with new obligations in bold for ease of reference: Relevant Laws/Regulations The PIPL becomes the primary, national-level law governing processing of personal information, but does not replace the existing data privacy framework.

Data Privacy

Data Privacy Privacy Compliance Analytics

California Consumer Privacy Act Signed, Introduces Key Privacy Requirements for Businesses

Hunton Privacy

JUNE 29, 2018

Definition of Personal Information. This definition of personal information aligns more closely with the EU General Data Protection Regulation’s definition of personal data. This definition of personal information aligns more closely with the EU General Data Protection Regulation’s definition of personal data.

Privacy

Privacy Sales Personal data Communications

Considerations on embedding the new standard contractual clauses in IT contracts

DLA Piper Privacy Matters

AUGUST 3, 2021

However, since Schrems II and the uptake in enforcement regarding data transfers, [1] using the new SCCs requires careful consideration as, for example, the suspension or termination of a data transfer is no longer a mere theoretical situation. Another scenario might be that the supervisory authority orders the suspension of a data transfers.

IT

IT Personal data Compliance Risk

New SEC Cybersecurity Rules Could Affect Private Companies Too

eSecurity Planet

SEPTEMBER 23, 2022

Those changes enforced independent financial auditing of companies and required every board of directors to retain at least one financial expert to ensure the board of directors understands those independent audits. See the top Governance, Risk & Compliance (GRC) tools. Proposed SEC Security Changes.

Cybersecurity

Cybersecurity Compliance Risk Communications

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

California law also requires businesses that suffer a breach of security to disclose the breach to consumers, and in some instances law enforcement, if sensitive information is compromised. The CCPA’s definition of “consumer” is equally broad. This definition therefore not only encompasses a “consumer” in the traditional sense (i.e.,

Privacy

Privacy Sales Compliance Cybersecurity

European Commission proposes reinforcement of EU Cybersecurity rules

DLA Piper Privacy Matters

JANUARY 11, 2021

As in many other recent legislative proposals, the Commission also envisages stronger enforcement and supervision of the rules. It is also clarified that data centre services other than cloud computing services are as well covered by the Directive and provides for a definition of this concept. Extended scope.

Cybersecurity

Cybersecurity Computer and Electronics Manufacturing Cloud

How to prepare for the California Consumer Privacy Act

Thales Cloud Protection & Licensing

AUGUST 15, 2019

The CCPA uses a very broad definition of what constitutes as Personal Information (PI), defining PI as “information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.” 4) The right of Californians to access their PI.

Privacy

Privacy GDPR Digital transformation Sales

What’s new with Collibra Data Intelligence Cloud

Collibra

MARCH 9, 2022

Collibra Data Intelligence Cloud unifies data catalog, governance, data lineage, data quality and data privacy capabilities in one complete, flexible and easy-to-use platform. As the list of discoverable data types grows, the compute challenge increases, leading to inefficient and unscalable data discovery and data quality enforcement.

Cloud

Cloud Metadata Data Privacy Access

AI governance is rapidly evolving — Here’s how government agencies must prepare

IBM Big Data Hub

APRIL 11, 2024

The global AI governance landscape is complex and rapidly evolving. Key themes and concerns are emerging, however government agencies must get ahead of the game by evaluating their agency-specific priorities and processes. The term governance can be slippery.

Government

Government Education Artificial Intelligence Risk

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

California law also requires businesses that suffer a breach of security to disclose the breach to consumers, and in some instances law enforcement, if sensitive information is compromised. The CCPA’s definition of “consumer” is equally broad. This definition therefore not only encompasses a “consumer” in the traditional sense (i.e.,

Privacy

Privacy Sales Education Compliance

California passes major legislation, expanding consumer privacy rights and legal exposure for US and global companies

Data Protection Report

JUNE 29, 2018

The law is enforceable in California and applies to California users, but given the nature of data processing, most companies will need to consider whether to apply the rules to all users. It also requires a description of consumers’ rights and the categories of personal information the business has sold in the preceding 12 months.

Privacy

Privacy GDPR Personal data Risk

California Passes Major Legislation, Expanding Consumer Privacy Rights and Legal Exposure for US and Global Companies

Data Protection Report

JUNE 29, 2018

The law is enforceable in California and applies to California users, but given the nature of data processing, most companies will need to consider whether to apply the rules to all users. It also requires a description of consumers’ rights and the categories of personal information the business has sold in the preceding 12 months.

Privacy

Privacy GDPR Personal data Risk

UK data protection after Brexit – UK government Statement of Intent contains few surprises

Data Protection Report

AUGUST 16, 2017

On the 7 th August 2017, the UK’s Government Department for Digital, Culture, Media and Sport issued a Statement of Intent (the Statement ) outlining its planned reforms of the UK’s data protection laws which are to be implemented by the Data Protection Bill (the Bill ).

Government

Government GDPR Personal data Insurance

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

AB 375 goes beyond the ballot initiative by adding requirements for businesses that collect personal information (as defined in the bill) from consumers to delete such information on request as well as to provide access to specific pieces of personal information collected. The definition of personal information under AB 375 is expansive.

GDPR

GDPR Privacy Sales Data breaches

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

The statute’s most direct reference to geography comes in the definition of “business” (the class of entities which are subject to most CCPA requirements), which requires that an entity subject to the law “does business” in California. 3. Definition of Personal Data/Information. 1. Geographic Scope.

GDPR

GDPR Privacy Personal data Sales

And then there were five: CCPA amendments pass legislature

Data Protection Report

SEPTEMBER 17, 2019

Changes range from clarifications to definitions and new exemptions to technical corrections. Section (a)(2) is amended to permit the consumer to request that the business notifies a consumer of the categories of personal information sold for “each category of third party”, rather than “each third party.” Medical staff member.

B2B

B2B Privacy Communications Encryption

New York Enacts Stricter Data Cybersecurity Laws

Data Matters

AUGUST 5, 2019

The law broadens the definition of “private information” which sets forth the information elements that, if breached, could trigger a notification obligation. The Stop Hacks and Improve Electronic Data Security Act.

Cybersecurity

Cybersecurity Data breaches Privacy Risk

California Privacy Compliance Obligations May Soon Change Under CPRA Ballot Initiative

HL Chronicle of Data Protection

MAY 26, 2020

Transparency and Data Governance. Expands the information that a business must include in the pre-collection notice, to include: The categories of sensitive personal information collected and whether they are sold or shared; and. Enforcement. Pre-collection Notice (modification). Storage Limitation (new). Individual Rights.

Privacy

Privacy Compliance Sales Data Privacy

CCPA Amended: Enforcement Delayed, Few Substantive Changes Made

Hunton Privacy

SEPTEMBER 1, 2018

On August 31, 2018, the California State Legislature passed SB-1121 , a bill that delays enforcement of the California Consumer Privacy Act of 2018 (“CCPA”) and makes other modest amendments to the law. The bill now goes to the Governor for signing. The provisions of the CCPA will become operative on January 1, 2020. CCPA § 1798.185(a)).

Privacy

Privacy Data collection Sales Data breaches

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

In the UK, the Information Commissioner’s Office (ICO) has been very outspoken on the ad tech industry’s use of special category personal data and onwards data sharing without explicit consent. Data retention is a rising trend in GDPR enforcement. GDPR wasn’t the beginning and it’s definitely not the end. Conquer the world!

Privacy

Privacy GDPR Data breaches Risk

California Enacts Broad Privacy Protections Modeled on GDPR

Data Matters

JUNE 29, 2018

AB 375 goes beyond the ballot initiative by adding requirements for businesses that collect personal information (as defined in the bill) from consumers to delete such information on request as well as to provide access to specific pieces of personal information collected. The definition of personal information under AB 375 is expansive.

GDPR

GDPR Privacy Sales Data breaches

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

The statute’s most direct reference to geography comes in the definition of “business” (the class of entities which are subject to most CCPA requirements), which requires that an entity subject to the law “does business” in California. 3. Definition of Personal Data/Information. 1. Geographic Scope.

GDPR

GDPR Privacy Personal data Sales

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

The statute’s most direct reference to geography comes in the definition of “business” (the class of entities which are subject to most CCPA requirements), which requires that an entity subject to the law “does business” in California. 3. Definition of Personal Data/Information. 1. Geographic Scope.

GDPR

GDPR Privacy Personal data Sales

California Enacts Sweeping New Comprehensive Privacy Legislation

HL Chronicle of Data Protection

JUNE 28, 2018

For instance, the definition of “personal information” in the Act is incredibly broad. The Act enshrines a consumer’s right to know what personal information a business collects about them specifically and the categories of third parties to whom his or her information is sold or otherwise disclosed.

Privacy

Privacy GDPR Marketing Data breaches

Nevada, New York and other states follow California’s CCPA

Data Protection Report

JUNE 6, 2019

Although the concept of providing consumers certain privacy rights is similar, the law has some significant differences from the CCPA, including the definition of “sale”. Unlike CCPA, the new law has no provisions relating to access or deletion or a private right of action relating to breaches.

Sales

Sales Privacy Insurance Manufacturing

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

In the UK, the Information Commissioner’s Office (ICO) has been very outspoken on the ad tech industry’s use of special category personal data and onwards data sharing without explicit consent. Data retention is a rising trend in GDPR enforcement. GDPR wasn’t the beginning and it’s definitely not the end. Conquer the world!

Privacy

Privacy GDPR Data breaches Risk

One-Month Countdown to Pass CCPA Amendments Begins

Data Protection Report

AUGUST 12, 2019

2) Will employers be exempted from other CCPA requirements, such as access, deletion and opt out?; (3) Next, AB 874 would redefine “personal information” to exclude information from government records. Article 3: CCPA definition of personal information. Our other CCPA articles: Article 1: Summary of CCPA’s major provisions.

Manufacturing

Manufacturing Sales Privacy Data Privacy

Collibra wins prestigious 2024 Communicator Award for AI Governance campaign

UK GDPR Reform: government publishes response to consultation – likely to form basis of forthcoming UK Data Reform Bill

Trending Sources

Government publishes consultation on post-Brexit data reforms

GDPR compliance checklist

California Privacy Law Overhaul – Proposition 24 Passes

The Impact of Data Protection Laws on Your Records Retention Schedule

Security Compliance & Data Privacy Regulations

China Issues the Second Version of the Draft of Data Security Law

How to Comply with GDPR, PIPL, and CCPA

The Week in Cyber Security and Data Privacy: 20 – 26 November 2023

What Is Encryption? Definition, How it Works, & Examples

US: CPRA analysis: The ‘good’ and ‘bad’ news for CCPA-regulated ‘businesses’

How to implement the General Data Protection Regulation (GDPR)

CCPA Marches On: California Attorney General Proposes Further Revisions to CCPA Regulations, Industry Pleads for Enforcement Delay Amid COVID-19 Crisis

US SEC charges SolarWinds and its CISO for alleged cybersecurity misstatements and controls failures

“What’s Cooking” in Sacramento: CCPA’s “Employee Exception” Bill is Amended; “Publicly Available Information” Exception is Broadened, and Consumer Access Rights are Clarified

CHINA: Important new risks and practical guidance on China data protection, data security, e-commerce and online platform compliance

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

California Consumer Privacy Act Signed, Introduces Key Privacy Requirements for Businesses

Considerations on embedding the new standard contractual clauses in IT contracts

New SEC Cybersecurity Rules Could Affect Private Companies Too

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

European Commission proposes reinforcement of EU Cybersecurity rules

How to prepare for the California Consumer Privacy Act

What’s new with Collibra Data Intelligence Cloud

AI governance is rapidly evolving — Here’s how government agencies must prepare

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

California passes major legislation, expanding consumer privacy rights and legal exposure for US and global companies

California Passes Major Legislation, Expanding Consumer Privacy Rights and Legal Exposure for US and Global Companies

UK data protection after Brexit – UK government Statement of Intent contains few surprises

California Enacts Broad Privacy Laws Modeled on GDPR

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

And then there were five: CCPA amendments pass legislature

New York Enacts Stricter Data Cybersecurity Laws

California Privacy Compliance Obligations May Soon Change Under CPRA Ballot Initiative

CCPA Amended: Enforcement Delayed, Few Substantive Changes Made

The Privacy Officers’ New Year’s Resolutions

California Enacts Broad Privacy Protections Modeled on GDPR

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

California Enacts Sweeping New Comprehensive Privacy Legislation

Nevada, New York and other states follow California’s CCPA

The Privacy Officers’ New Year’s Resolutions

One-Month Countdown to Pass CCPA Amendments Begins

Stay Connected