Rocket Software

OCTOBER 28, 2021

These pieces of information fall into three categories: something you know (such as a password or PIN), something you have (such as a fob or mobile device), and something on your body (such as a fingerprint or facial scan). To constitute MFA, users should be asked to provide a combination of these categories. .

Authentication 84

Authentication Cybersecurity Passwords Access 84

Data Matters

JUNE 29, 2018

This legislation was enacted on an extraordinarily accelerated timeframe as part of compromise with the sponsor of a comparable privacy ballot initiative, which had qualified to be placed before state voters on Election Day in November 2018. This new legislation may well have an outsize influence on privacy laws nationwide.

GDPR 79

GDPR Privacy Sales Data breaches 79

Data Matters

JULY 14, 2022

As the year approaches its halfway point, Chinese government accelerates the legislation for cross-border data transfers. The final version does not substantially depart from the exposure draft, which has been discussed in our previous blog post. Certification Rules for Cross-Border Data Processing Activities Are Finalized.

Compliance 97

Compliance Risk Data breaches Cybersecurity 97

Privacy and Cybersecurity Law

APRIL 1, 2021

This is one of a number of moves by regulators and legislators to contain the perceived risks caused by the use, especially by big tech, of information on individuals’ online behavior to generate personal profiles for advertising purposes. Receive our latest blog posts by email. Share on Facebook. Share on Twitter.

GDPR 52

GDPR Personal data Risk Access 52

Data Matters

JUNE 29, 2018

This legislation was enacted on an extraordinarily accelerated timeframe as part of compromise with the sponsor of a comparable privacy ballot initiative, which had qualified to be placed before state voters on Election Day in November 2018. This new legislation may well have an outsize influence on privacy laws nationwide.

GDPR 60

GDPR Privacy Sales Data breaches 60

Data Protection Report

OCTOBER 7, 2020

On 1 October 2020, the UK Information Commissioner’s Office (ICO) published draft statutory guidance , providing clarity about how it will regulate and enforce data protection legislation in the UK. Our blog post on Germany’s model for GDPR fines can also be found here. Image 1 – Step 4 Matrix.

GDPR 101

GDPR Personal data IT 101

Privacy and Cybersecurity Law

JULY 26, 2021

Unlike other European data protection authorities, the Garante has not adopted a methodology for quantifying the sanctions to be applied for violations of data protection legislation. Receive our latest blog posts by email. Therefore, the calculation is based on the criteria identified by Article 83 of the GDPR. Share on Facebook.

Personal data 52

Personal data GDPR e-Delivery Communications 52

Managing Your Information

DECEMBER 17, 2021

So an audio visual recording of a neighbour on their property beside their vehicle for example is personal data which has to be controlled and processed in line with the data protection legislation. What responsibility do we have to be compliant in processing our ever evolving categories of personal data?

Personal data 36

Personal data GDPR Data breaches Information governance 36

Data Protection Report

NOVEMBER 25, 2021

Secondly, the Government has released an exposure draft of the Privacy Legislation Amendment (Enhancing Online Privacy and Other Measures) Bill 2021 , otherwise known as the “ Online Privacy Bill ”. Only Fans), online blogging or forum sites (e.g. Public consultation for this discussion paper is open until 10 January 2022.

Privacy 110

Privacy Paper Compliance Government 110

Data Matters

AUGUST 5, 2019

The flurry of state legislative activity in the wake of the enactment of the California Consumer Protection Act (CCPA) continues with the New York legislature recently passing two bills to increase accountability for the processing of personal information. The Stop Hacks and Improve Electronic Data Security Act.

Cybersecurity 68

Cybersecurity Data breaches Privacy Risk 68

Managing Your Information

JULY 27, 2017

Effective data protection training will continue to be essential to ensure compliance with data protection legislation. Following on from our first blog on data protection training , this focuses on helping to ensure you get value for money. If so, the training may simply address the differences between existing and new legislation.

GDPR 28

GDPR IT Compliance Risk 28

Thales Cloud Protection & Licensing

AUGUST 15, 2019

Last August, my colleague Ashvin Kamaraju wrote a blog shortly after this took place. This informing process should include the categories of PI collected, how that PI is used, and the categories of PI the business has shared or sold to third parties (and who these parties are) in the last year. Looking into to the future.

Privacy 92

Privacy GDPR Digital transformation Sales 92

Managing Your Information

JULY 27, 2017

Effective data protection training will continue to be essential to ensure compliance with data protection legislation. Following on from our first blog on data protection training , this focuses on helping to ensure you get value for money. If so, the training may simply address the differences between existing and new legislation.

GDPR 31

GDPR IT Compliance Risk 31

Data Matters

JUNE 11, 2018

Although the prospect of federal legislation on data privacy remains uncertain, states appear to be stepping up the range of their activity on privacy and security. The post State Activity on Privacy: Vermont Is First to Regulate Data Brokers appeared first on Data Matters Privacy Blog. Other states may consider the Vermont approach.

Privacy 60

Privacy Sales Data breaches Personal data 60

Privacy and Cybersecurity Law

JUNE 23, 2021

It is worth noting that, the notification made in accordance with the Regulation also fulfills the notification requirement under the Legislative Decree of 18 May 2018, no. 65 – implementing the NIS Directive – and Legislative Decree 1 August 2003, no. Receive our latest blog posts by email. 4] Pursuant to Article 1, para.

Cybersecurity 52

Cybersecurity Communications Data breaches Security 52

Data Matters

JANUARY 31, 2022

The CMA has statutory investigative powers including powers to compel any person to attend a specified place to give evidence to the CMA; to produce specified documents or categories of documents that are in that person’s custody or control; and to supply specified forecasts, estimates, returns, or other information in a specified form and manner.

Marketing 78

Marketing Privacy IT 78

IT Governance

SEPTEMBER 1, 2022

You can find the full list of incidents below, broken into their respective categories. The post List of Data Breaches and Cyber Attacks in August 2022 – 97 Million Records Breached appeared first on IT Governance UK Blog. Cyber attacks. Ransomware. Data breaches. Financial information. Malicious insiders and miscellaneous incidents.

Data breaches 116

Data breaches Ransomware Energy and Utilities Phishing 116

Data Matters

AUGUST 28, 2020

Unlike the Emerging Technologies ANPRM, in which BIS proposed a list of 14 “representative technology categories” for public comment, the Foundational Technologies ANPRM does not outline any categories of potential foundational technologies essential to U.S. fundamental research” under EAR § 734.8). (2) national security.

Military 68

Military Manufacturing Compliance Marketing 68

Managing Your Information

JULY 22, 2019

Nevertheless, what this has undoubtedly done is raise the profile of data protection legislation and the newly acquired abilities of the regulator (the ICO) to issue substantially increased fines compared to those available under previous legislation. This is only the start of the process and there is a long way to go.

GDPR 28

GDPR Personal data Compliance Information governance 28

Data Protection Report

JULY 3, 2019

This is the Data Protection Report’s eleventh blog post in a series of CCPA blog posts. If you have any questions or would like additional information regarding CCPA or other US legislative proposals, please contact a member of our Data Protection, Privacy and Cybersecurity team. Stay tuned for additional posts on the CCPA.

Access 40

Access Privacy Data Privacy Government 40

Managing Your Information

JULY 22, 2019

Nevertheless, what this has undoubtedly done is raise the profile of data protection legislation and the newly acquired abilities of the regulator (the ICO) to issue substantially increased fines compared to those available under previous legislation. This is only the start of the process and there is a long way to go.

GDPR 28

GDPR Personal data Compliance Information governance 28

eDiscovery Daily

JUNE 11, 2019

We are seeing it across the board, not just specifically to one category but the concept of trying to proactively identify behavior before it becomes a bigger issue and addressing it with additional training or self-reporting,” said Sheila Mackay, managing director of eDiscovery services at eDiscovery provider firm H5.

e-Discovery 50

e-Discovery GDPR Education Compliance 50

HL Chronicle of Data Protection

MAY 29, 2019

More details in this blog post. More details in this blog post. The same rule applies to the enforcement of each piece of legislation. More details in this blog post. More details in this blog post. The ICO’s main guidance on GDPR is found in its Guide to the GDPR. Enforcement Actions.

GDPR 40

GDPR Personal data Privacy Information architecture 40

Data Matters

AUGUST 9, 2019

The Draft Code suggests organisations may also want to consider including in the data sharing agreement as an appendix or annex: (i) a summary of the key legislative provisions; (ii) if consent is the legal basis, a model consent form; and (iii) a diagram to show how to decide whether to share the data.

GDPR 79

GDPR Personal data Compliance Privacy 79

KnowBe4

SEPTEMBER 10, 2019

in the form of national privacy legislation or, at the very least, similar laws passed in other states. The CCPA also specifically excludes these categories of personal data: Medical information and other protected health information. Additionally, many industry experts expect that California’s move here to resonate across the U.S.

GDPR 73

GDPR Privacy Personal data Passwords 73

Data Matters

OCTOBER 22, 2019

This abbreviated legislative process produced a bill with numerous gaps and anomalies, however. As contemplated by the CCPA, under the regulations, businesses must list the categories of personal information they have collected in the previous 12 months and for each category, the business or commercial purpose for which it was collected.

Privacy 60

Privacy Sales Paper Compliance 60

Data Matters

SEPTEMBER 20, 2021

Among other matters, the revised bond factors establish a more granular rating analysis by expanding the number of bond designation categories from the previous six categories to 20 categories. The post Regulatory Update: NAIC Summer 2021 National Meeting appeared first on Data Matters Privacy Blog.

Insurance 88

Insurance e-Delivery Paper Sales 88

Data Protection Report

AUGUST 12, 2019

Stay tuned for updates on this blog. It also includes a one-year expiration date, committing the California legislature to discuss more comprehensive employee privacy legislation in 2020. . UPDATE : All amendments listed below except for AB 1281 were pulled from the hearing agenda last-minute.

Manufacturing 40

Manufacturing Sales Privacy Data Privacy 40

eDiscovery Daily

NOVEMBER 26, 2017

The Privacy Level Agreement (PLA) Working Group realized it was critical for cloud providers to have guidance that would enable them to achieve compliance with EU personal data protection legislation,” said Francoise Gilbert, CSA Lead Outside Counsel and PLA Working Group co-chair. So, what do you think?

Cloud 40

Cloud GDPR Personal data Compliance 40

Data Matters

JULY 15, 2020

Depending on the business model of the firm and the services it plans to offer, it may wish to use a combination of the options discussed above for different products or categories of customers. responsibility for compliance with data privacy legislation. Adopt a mixed strategy. which entity bears responsibility for loss or fraud.

Compliance 68

Compliance Marketing Risk Privacy 68

Data Protection Report

SEPTEMBER 28, 2021

In August, the Government announced that it intended to “seize the opportunity” afforded by the UK’s exit from the European Union to makes some changes (see our blog The UK Government unveils its post-Brexit plans to shake up data protection laws | Data Protection Report ). The deadline for responding to the consultation is 19 November 2021.

Government 120

Government FOIA GDPR Compliance 120

Data Matters

OCTOBER 24, 2019

This abbreviated legislative process produced a bill with numerous gaps and anomalies, however. Critically, while some of the regulation’s provisions are required, many of the specific procedures are crafted with safe harbor language, advising on what a business “may” do to verify certain categories of consumers.

Privacy 60

Privacy Sales Authentication Passwords 60

Data Matters

JUNE 1, 2022

Now that political agreement has been reached on the text of the DMA, all that remains is formal approval by the two co-legislators (European Parliament and Council). The post The Digital Markets Act Is Almost Here: 10 Things to Know About the EU’s New Rules for Big Tech appeared first on Data Matters Privacy Blog.

Marketing 88

Marketing Computer and Electronics Communications GDPR 88

Data Matters

NOVEMBER 5, 2018

To fulfill this role, the guidance lays out three broad categories for federal action: First, AV 3.0 seek legislative technical assistance from DOT, as state “requirements could create unintended barriers for the testing, deployment, and operations of advanced vehicle safety technologies”. Consistent with this goal, AV 3.0

Cybersecurity 87

Cybersecurity Government Communications Privacy 87

Data Protection Report

JULY 9, 2018

states have recently introduced and passed legislation to expand data breach notification rules and to mirror some of the protections provided by Europe’s newly enacted General Data Protection Regulation (“GDPR”). See our previous blog posts on GDPR here and here. 764 ) – Vermont passes legislation to regulate data brokers.

GDPR 40

GDPR Data breaches Personal data Insurance 40

Data Matters

FEBRUARY 12, 2019

The CCPA was written and enacted with extraordinary speed, as legislators felt the need to move quickly in order to preempt a data privacy ballot initiative that had received enough signatures to be placed on California’s November ballot. Code § 1798.185(a): Categories of Personal Information.

Sales 74

Sales Privacy Data Privacy Compliance 74

KnowBe4

SEPTEMBER 16, 2019

Businesses also must provide information about what categories of information they’re collecting, the purposes for which the information will be used, and, if your business is selling that information to third parties, you must give consumers the right to opt-out. CCPA Privacy Training: The Time Is Now.

Privacy 51

Privacy Personal data Compliance Data collection 51