Article, Course and Financial Services - Information Management Today

Article

Course

Financial Services

What (currently ignored) privacy area might result in early enforcement action when the GDPR is in force?

Data Protector

JANUARY 29, 2017

And also, what standard of evidence is necessary to be generated, just in case privacy regulators exercise their Article 30(4) right to request it. The potential fine for not informing individuals, as their personal data is being collected, about retention periods is of course significant. I think not.

GDPR

GDPR Privacy Compliance Personal data

Ireland: DPC Produces “Significant Outputs” for 2022 Concluding 17 Large Scale Inquiries

DLA Piper Privacy Matters

MARCH 30, 2023

In addition, as of 31 December 2022, the DPC has 15 cross-border decisions under Articles 60 and 65 at various stages from draft decision to investigation stage. Another key focus of the DPC was to continue engagement with data controllers on Article 37 GDPR compliance (designation and notification of a DPO).

Personal data

Personal data GDPR Compliance Financial Services

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Trending Sources

How to Prevent Data Breaches: Data Breach Prevention Tips

eSecurity Planet

AUGUST 22, 2023

Of course, any damage isn’t ideal, but at what point would the business be in trouble? A CRM at a large financial services company might have an RTO of 15 minutes, while a storage archive for cold data may have an RTO of 12-24 hours. This varies between organizations.

Data breaches

Data breaches Big data Cybersecurity Security

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Data Protection and the Draft EU-UK Withdrawal Agreement: Ten Initial Conclusions

HL Chronicle of Data Protection

NOVEMBER 15, 2018

In the first, Article 71(1) states that EU data protection law will continue to apply to individuals that reside outside of the UK where their personal data was already being processed within the UK before the transition period ended. Lack of future flexibility granted to the UK.

GDPR

GDPR Personal data Government Financial Services

The UK ICO’s Regulatory Sandbox Points to a Future of Pro-Active Engagement

HL Chronicle of Data Protection

JULY 9, 2019

It offers the opportunity to receive access to free and professional expertise and support from the ICO on complying with the GDPR and UK Data Protection Act 2018 during the course of developing products and services. In the UK financial services industry, the Financial Conduct Authority (FCA) introduced a regulatory sandbox in 2015.

GDPR

GDPR Personal data Privacy Financial Services

CyberheistNews Vol 13 #13 [Eye Opener] How to Outsmart Sneaky AI-Based Phishing Attacks

KnowBe4

MARCH 28, 2023

According to a recent article in JD Supra, cyber insurers are either eliminating the coverage entirely or are "have quietly added policy language that, in essence, makes it incredibly challenging, and in some instances impossible, to secure any actual recovery for the claim." "Instead, the message goes directly to the hacker.

Phishing

Phishing Security awareness Insurance Cybersecurity

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

HL Chronicle of Data Protection

MAY 13, 2019

For example, the New York Department of Financial Services (‘NYDFS’) in March 2017 issued its Cybersecurity Regulation (23 NYCRR 500) (‘the NYDFS Cybersecurity Regulation’), a groundbreaking and far-reaching regulatory regime focused on financial institutions licensed in New York, including insurance companies.

Insurance

Insurance Cybersecurity Data breaches Financial Services

The Week in Cyber Security and Data Privacy: 8 – 14 January 2024

IT Governance

JANUARY 16, 2024

The first batch – a set of four regulatory technical requirements covering Articles 15, 16(3), 18(3), 28(9) and 28(10) – is due to be submitted by 17 January. That’s it for this week’s round-up. We hope you found it useful. We’ll be back next week with the biggest and most interesting news stories, all rounded up in one place.

Data Privacy

Data Privacy Privacy Manufacturing Retail

The Hacker Mind Podcast: Going Passwordless

ForAllSecure

JANUARY 19, 2022

Of course, there were some guesses and backward steps there too, as well. There's a caveat to this of course because they essentially elongate the use of passwords still. But the flipside, of course, is it allows this ecosystem to have usernames and passwords to still exist essentially and proliferate. That's a great use case.

Passwords

Passwords Authentication Access Data breaches

European Commission publishes long-awaited draft Regulation on Artificial Intelligence

DLA Piper Privacy Matters

APRIL 26, 2021

The list of high risk AI systems (which may be expanded by the European Commission in due course), covers a wide range of applications including AI systems deployed in relation to credit scoring; essential public infrastructure; social welfare and justice; medical and other regulated devices; transportation systems.

Artificial Intelligence

Artificial Intelligence Risk Marketing GDPR

Nation-State-Sponsored Attacks: Not Your Grandfather’s Cyber Attacks

Data Matters

MAY 17, 2022

In this article, we detail a few observations about nation-state-sponsored attacks, including: State-sponsored attacks tend to be highly sophisticated—ranging from a sophisticated botnet used to launch DDoS attacks to supply chain compromises. Press Release No. 18-1452 , Dep’t of Just., Implement centralized log collection and monitoring.

Cybersecurity

Cybersecurity Government Authentication Ransomware

The Hacker Mind Podcast: DEF CON Villages

ForAllSecure

AUGUST 2, 2022

And by de I'm an analyst at Javelin strategy and research where I do security risk and fraud for the financial services industry. It started because we we would go to conferences and where we read articles and you know magazines or newspapers or whatever. I went on to speak at DEF CON 18 When it was held in the Riviera.

Computer and Electronics

Computer and Electronics IT Security Mining

What (currently ignored) privacy area might result in early enforcement action when the GDPR is in force?

Ireland: DPC Produces “Significant Outputs” for 2022 Concluding 17 Large Scale Inquiries

Webinars

Trending Sources

How to Prevent Data Breaches: Data Breach Prevention Tips

Webinars

Data Protection and the Draft EU-UK Withdrawal Agreement: Ten Initial Conclusions

The UK ICO’s Regulatory Sandbox Points to a Future of Pro-Active Engagement

CyberheistNews Vol 13 #13 [Eye Opener] How to Outsmart Sneaky AI-Based Phishing Attacks

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

The Week in Cyber Security and Data Privacy: 8 – 14 January 2024

The Hacker Mind Podcast: Going Passwordless

European Commission publishes long-awaited draft Regulation on Artificial Intelligence

Nation-State-Sponsored Attacks: Not Your Grandfather’s Cyber Attacks

The Hacker Mind Podcast: DEF CON Villages

Stay Connected