Blog - Information Management Today

GUEST ESSAY: How ‘DPIAs” — data privacy impact assessments — can lead SMBs to compliance

The Last Watchdog

JANUARY 9, 2023

As the world becomes more digital and connected, it is no surprise that data privacy and security is a growing concern for small to medium sized businesses — SMBs. Related: GDPR sets new course for data privacy. Let’s look at some of the challenges faced by SMBs in today’s data privacy landscape.

Data Privacy

Data Privacy Compliance Privacy GDPR

Data privacy examples

IBM Big Data Hub

APRIL 24, 2024

An online retailer always gets users’ explicit consent before sharing customer data with its partners. A navigation app anonymizes activity data before analyzing it for travel trends. One cannot overstate the importance of data privacy for businesses today. The app heavily encrypts all user financial data.

Data Privacy

Data Privacy Privacy GDPR Personal data

European rulings on the use of Google Analytics and how it may affect your business

Data Protection Report

FEBRUARY 14, 2022

Recent decisions out of the EU will impact the use of Google Analytics and similar non-European analytics services when targeting EU individuals, with the potential to put many organizations at risk of receiving GDPR fines. At issue was the transfer of personal data from the EU to the US through the use of Google Analytics.

Analytics

Analytics GDPR Personal data IT

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

5 Key European Data Protection Trends for 2022

Data Matters

JANUARY 27, 2022

It seems there will be a packed agenda for EU and UK data protection this coming year. In particular, a case before the European Court of Justice (“ CJEU ”) may ultimately require changes to privacy notices. For a summary of the key proposals and the reaction of the UK ICO, please see our previous blog-post here.

Artificial Intelligence

Artificial Intelligence GDPR Compliance Cybersecurity

International Data Protection Day 2022

DLA Piper Privacy Matters

JANUARY 28, 2022

On behalf of DLA Piper’s Global Data Protection team, we would like to wish you a happy International Data Protection Day 2022. Data Protection Laws of the World. In this eleventh edition of the guide, we now provide an overview of privacy and data protection laws in over 100 different jurisdictions.

GDPR

GDPR Privacy Data breaches Personal data

U.S. and Foreign Cybersecurity and Intelligence Agencies Recommend Measures to Counteract Threat of Russian Cyberattacks

Data Matters

JANUARY 28, 2022

Within a few days, data security experts at Microsoft , Palo Alto Networks (“PANW”), and Mandiant confirmed reports of increasing Russian cyberactivity and offered their own recommendations for hardening measures (many of which overlap with the Advisory). Keep software updated and use industry-recommended antivirus programs.

Cybersecurity

Cybersecurity Financial Services Authentication Government

Sam McNicholls-Novoa on CyberComply

IT Governance

DECEMBER 20, 2023

Making compliance easy with our Cloud-based solution CyberComply is a Cloud-based, end-to-end solution that simplifies compliance with a range of cyber security and data privacy standards and laws, including ISO 27001 , the GDPR (General Data Protection Regulation), and more. Another obvious example is AI.

GDPR

GDPR Compliance Data Privacy Privacy

DORA: 1 year to go! Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds

Thales Cloud Protection & Licensing

JANUARY 16, 2024

Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds madhav Wed, 01/17/2024 - 05:46 The Digital Operational Resilience Act (DORA) will apply to the EU financial sector from 17 January 2025. The complexity, even the possible conflicts, brought by multinational law enforcement.

Financial Services

Financial Services Cloud Cybersecurity Encryption

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. Any company operating in the EU or handling EU residents’ data must adhere to GDPR requirements. A data subject is the human being who owns the data.

GDPR

GDPR Compliance Personal data Privacy

Governance of Data Innovation: Risks and Rewards for Business – Key Takeaways from our Discussion with the UK Information Commissioner’s Office

Data Matters

OCTOBER 22, 2021

The webinar entitled “Governance of Data Innovation: Risks and Rewards for Business” touched on the crucial issues in data protection and cyberlaw including the future of international data transfers, emerging technologies, and Brexit. Please see below our “10 Key Takeaways” from this fascinating and timely discussion.

Government

Government Risk Artificial Intelligence Data breaches

ICO Publishes Draft New Guidance on PETs

Data Matters

OCTOBER 6, 2022

On 7 September 2022, the Information Commissioner’s Office (“ ICO ”) published draft guidance (“ Guidance ”) on privacy-enhancing technologies (“ PETs ”). It is hoped that the Guidance will help organizations have the confidence to utilize PETs to develop innovative applications without compromising on privacy concerns, or trust.

GDPR

GDPR Privacy Encryption Compliance

Ways to Develop a Cybersecurity Training Program for Employees

Security Affairs

APRIL 15, 2022

Cybersecurity experts would have you believe that your organization’s employees have a crucial role in bolstering or damaging your company’s security initiatives. According to another study by CybSafe, human errors have been responsible for over 90% of data breaches in 2020. Cover Cybersecurity Topics.

Cybersecurity

Cybersecurity Data Privacy Data breaches Privacy

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Yet many organizations still struggle to meet compliance requirements, and EU data protection authorities do not hesitate to hand out penalties. billion fine in 2023.

GDPR

GDPR Compliance Personal data Privacy

China Releases Draft Regulations on Network Data Security Management

Hunton Privacy

JANUARY 26, 2022

On November 14, 2021, the Cyberspace Administration of China (“CAC”) released for public comment its draft Regulations on Network Data Security Management (the “Draft Regulations”). In addition, the Draft Regulations add new requirements related to data processing activities. Data Handler and Entrusted Party.

Security

Security Data breaches Personal data Cybersecurity

Get Prepared for Data Privacy Compliance Under China PIPL

Data Matters

SEPTEMBER 23, 2021

On August 20, 2021, China’s National People’s Congress passed the Personal Information Protection Law (PIPL), which will become effective starting November 1, 2021. As an overarching law in China with respect to data privacy, PIPL shares many similarities with the EU General Data Protection Regulation (GDPR).

Data Privacy

Data Privacy Compliance Privacy Personal data

The European Commission’s GDPR review in short

Privacy and Cybersecurity Law

JULY 22, 2020

According to the EC, the GDPR’s data protection rules have proven that they are fit for the digital age, as they help to foster trust-worthy innovation, empower individuals to have more control over their personal data and guarantee the free flow of personal data within the EU.

GDPR

GDPR Privacy Personal data Compliance

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing

Thales Cloud Protection & Licensing

DECEMBER 22, 2020

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing. New EU restrictions could force companies to change data transfer practices and adopt more advanced data encryption methods. Data privacy is not a check-the-box compliance or security item. Tue, 12/22/2020 - 10:08.

Data Privacy

Data Privacy Privacy Security Encryption

Sidley Partner William Long Recognized by Best Lawyers 2019

Data Matters

JUNE 20, 2018

Sidley Partner William RM Long has been recognized by Best Lawyers 2019 for Privacy & Data Protection Law in London. William is global co-leader of Sidley’s Privacy and Cybersecurity practice and also leads the EU data protection practice at Sidley.

Privacy

Privacy Cybersecurity

Sidley Receives Four Awards at the 2020 Who’s Who Legal Awards

Data Matters

NOVEMBER 17, 2020

The annual ceremony identifies the firms that stand apart from others in practice areas of law. Sidley’s accolades include “Firm of the Year” awards in: Data – Security. Its customs and trade remedy lawyers served in Customs and Border Protection and the Commerce Department. and EU trade authorities. Trade & Customs.

Data breaches

Data breaches Privacy Cybersecurity Risk

Key Takeaways From Sidley’s Privacy and Cybersecurity Monitor-Side Chat Featuring Bruno Gencarelli, Head of International Data Flows and Protection at the European Commission

Data Matters

JUNE 30, 2020

On June 25, 2020, Sidley partner, Alan Raul, founder and co-head of Sidley’s privacy and cybersecurity practice, hosted Bruno Gencarelli, head of International Data Flows and Protection at the European Commission, for a Monitor-Side Chat. International Transfer Mechanisms Update.

Privacy

Privacy GDPR Cybersecurity Personal data

China Data Law Update: Certification Rules and Draft Standard Contract Are Issued

Data Matters

JULY 14, 2022

As the year approaches its halfway point, Chinese government accelerates the legislation for cross-border data transfers. Certification Rules for Cross-Border Data Processing Activities Are Finalized. The final version does not substantially depart from the exposure draft, which has been discussed in our previous blog post.

Compliance

Compliance Risk Data breaches Cybersecurity

Former U.S. Associate Deputy Attorney General Sujit Raman Joins Sidley in Washington, D.C.

Data Matters

OCTOBER 13, 2020

Mr. Raman will be a member of the Privacy and Cybersecurity practice group, and will contribute to the firm’s globally regarded litigation, national security, and trade practices. government’s response to the EU Court of Justice’s invalidation and restrictions of data transfer mechanisms to the U.S.

Privacy

Privacy Cybersecurity Data Privacy Encryption

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

2020 could well be a year of data export turmoil – so brace yourself! The Advocate General (AG) delivered his non-binding opinion on the SCCs just before Christmas (see our blog post ). He also raised serious doubts over the validity of the Privacy Shield. Data localisation issues are also set to resurface during 2020.

Privacy

Privacy GDPR Data breaches Risk

Brexit impact on privacy

Privacy and Cybersecurity Law

FEBRUARY 6, 2020

On Friday, January 31, 2020, the United Kingdom (UK) left the European Union (EU) after 47 years as part of the union. As part of this transition period, the UK’s Information Commissioner Office has clarified that the EU’s General Data Protection Regulations (GDPR) will remain in effect until the end of 2020.

Privacy

Privacy GDPR Personal data Compliance

Privacy and Cybersecurity Top 10 for 2018

Data Matters

JANUARY 2, 2018

This past year was marked by ever more significant data breaches, growing cybersecurity regulatory requirements at the state and federal levels and continued challenges in harmonizing international privacy and cybersecurity regulations. Data breach litigation risks.

Cybersecurity

Cybersecurity Privacy Data breaches GDPR

MY TAKE: COVID-19’s silver lining could turn out to be more rapid, wide adoption of cyber hygiene

The Last Watchdog

MAY 11, 2020

Long before COVID-19, some notable behind-the-scenes forces were in motion to elevate cybersecurity to a much higher level. These developments would have, over the next decade or so, steadily and materially reduced society’s general exposure to cybercrime and online privacy abuses. There is an urgency in the air to do the right thing.

Computer and Electronics

Computer and Electronics Encryption Cybersecurity Privacy

China Implements Regulation Increasing Protections for Children’s Personal Data

Data Matters

OCTOBER 15, 2019

On 22 August 2019, the Cyberspace Administration of China (CAC) announced the implementation of the Online Protection of Children’s Personal Data Regulation (????????????), (“the Regulation”) which came into force on 1 October 2019. It contains similarities to the Children’s Online Privacy Protection Act (COPPA) in the U.S.

Personal data

Personal data Privacy Compliance Cybersecurity

EDPB’s New Guidelines – Clinical Trials in the EU and COVID-19

HL Chronicle of Data Protection

MAY 1, 2020

Below are our highlights of the Guidelines: Fundamental takeaway – Data protection and, specifically, the GDPR do not hinder the fight against COVID-19. Primary or secondary use of the data – The type of uses of the personal data is relevant for the purposes of identifying the appropriate legal basis, as detailed below.

GDPR

GDPR Personal data Privacy Data collection

Data security: Why a proactive stance is best

IBM Big Data Hub

JULY 7, 2023

Threats to your data are virtually everywhere these days, and too often, data compromises seem almost inevitable. But with a proactive approach to data security, organizations can fight back against the seemingly endless waves of threats. Data breaches can be disastrous for organizations.

Security

Security Data breaches Data Privacy Compliance

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

2020 could well be a year of data export turmoil – so brace yourself! The Advocate General (AG) delivered his non-binding opinion on the SCCs just before Christmas (see our blog post ). He also raised serious doubts over the validity of the Privacy Shield. Data localisation issues are also set to resurface during 2020.

Privacy

Privacy GDPR Data breaches Risk

Key Takeaways from Sidley’s Privacy and Cybersecurity Monitor-Side Chat Featuring Adam Klein, Chairman of the PCLOB

Data Matters

AUGUST 6, 2020

On July 2, 2020, Sidley partner Alan Raul, founder and co-head of Sidley’s Privacy and Cybersecurity practice, hosted Adam Klein, Chairman of the Privacy and Civil Liberties Oversight Board (“PCLOB” or “the Board”), for a Monitor-Side Chat. Balancing Counter-Terrorism and Privacy. Balancing Counter-Terrorism and Privacy.

Privacy

Privacy Cybersecurity Government Risk

COVID-19: Key EU And U.S. Cybersecurity Issues and Risk-Remediation Steps

Data Matters

MARCH 24, 2020

The COVID-19 crisis has created significant cybersecurity risks for organizations across the world, particularly arising from remote working, scams and phishing attacks, and weakened information governance controls. These devices may also be without up-to-date anti-malware software be vectors of malware that infect their employer’s systems.

Risk

Risk Cybersecurity Phishing Communications

Future Lawyers Week Recap: The Rise in Legal Ops, Taking on eDiscovery and Data Privacy Challenges and More

eDiscovery Daily

SEPTEMBER 25, 2023

By Catherine Ostheimer Legal innovators gathered in New York City last week for a one-day legal tech conference with customized knowledge session tracks for law firms and in-house legal teams. Dera Nevin, former data policy and strategy officer at The Blackstone Group, said that planning is a critical first step to global data management.

Data Privacy

Data Privacy Privacy Libraries Risk

Comments Submitted on California Consumer Privacy Act of 2020—Initiative 19-0021

Data Matters

NOVEMBER 12, 2019

Mactaggart, As privacy practitioners, we share your passion and dedication to the development of information privacy and data protection law in the United States. Your commitment to these issues is clear, and we commend the seriousness of your work in addressing privacy rights in accordance with your vision.

Privacy

Privacy Data breaches Compliance Personal data

Data Privacy Compliance Isn’t Just for Europe or California Anymore: Data Privacy Trends

eDiscovery Daily

APRIL 10, 2019

We have covered Europe’s General Data Protection Regulation (GDPR) over several posts the past couple of years and even conducted a webcast on the topic last year. And, we have covered the California Consumer Privacy Act (CCPA) several times as well, including as recently as last week. Do they mimic GDPR policies?

Data Privacy

Data Privacy Privacy Compliance GDPR

GDPR – The Year in Review

HL Chronicle of Data Protection

MAY 29, 2019

Following the one-year anniversary of the coming into effect of the GDPR, Hogan Lovells’ Privacy and Cybersecurity practice has prepared summaries of key GDPR-related developments of the past 12 months. More details in this blog post. More details in this blog post. Regulatory Guidance.

GDPR

GDPR Personal data Privacy Information architecture

M&A Due Diligence: The Devil in Their Data

Data Matters

NOVEMBER 16, 2017

At a time when a major cybersecurity incident can cost a company millions, it’s crucial that acquiring companies give cybersecurity the same level of scrutiny as they do more traditional risks and opportunities in the M&A due diligence process. Data Factor Drivers. Why the disconnect?

Data breaches

Data breaches Cybersecurity Risk Compliance

Weekly podcast: Carphone Warehouse, USB drives, VTech and Patch Tuesday

IT Governance

JANUARY 11, 2018

Carphone Warehouse has been fined £400,000 by the Information Commissioner’s Office for breaching the Data Protection Act. There were also inadequate measures in place to identify and purge historic data.”. The ICO noted that there was no evidence of any individual data having been used by third parties.”.

Manufacturing

Manufacturing GDPR Personal data Government

Me on the Equifax Breach

Schneier on Security

NOVEMBER 8, 2017

Fellow, Berkman Center for Internet and Society at Harvard Law School. Hearing on "Securing Consumers' Credit Data in the Age of Digital Commerce". Subcommittee on Digital Commerce and Consumer Protection. For over 30 years I have studied the technologies of security and privacy. It's a data broker. Before the.

Personal data

Personal data Computer and Electronics Privacy Data breaches

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

The wait is finally over—this Friday the European Union General Data Protection Regulation (GDPR) will come into force. However, the challenges of GDPR certainly don’t end on the date this law goes into implementation. What do we expect in terms of enforcement priorities?

GDPR

GDPR Personal data Compliance Data breaches

90% of critical infrastructure providers have fallen victim to a cyber attack since 2017

IT Governance

APRIL 11, 2019

Cybersecurity in Operational Technology: 7 Insights You Need to Know found that 90% of respondents from the UK, US, Germany, Australia, Mexico and Japan had been breached since 2017, with many organisations revealing they’d fallen victim to multiple attacks. NIS Regulations.

Energy and Utilities

Energy and Utilities GDPR Compliance Risk

Relativity Fest is Here! And So Are We!: eDiscovery Trends

eDiscovery Daily

SEPTEMBER 30, 2018

As a development partner in the Relativity ecosystem , CloudNine will once again be the conference and will be there to provide demonstrations of our Outpost for Relativity capability that automatically ingests and loads data into Relativity based on your specified criteria. This session has been submitted for CLE accreditation.

e-Discovery

e-Discovery Education Computer and Electronics Privacy

Post-GDPR Developments on Data Protection and Privacy Regulations Around the World

Thales Cloud Protection & Licensing

NOVEMBER 14, 2019

These technological advancements not only changed the landscape of our global online, social, economic and financial endeavors but also brought numerous changes in privacy and data protection laws. Importance of data protection and privacy laws. Common data protection and privacy principles.

GDPR

GDPR Privacy Compliance Personal data

Preparing for the EU AI Act: Getting governance right

IBM Big Data Hub

FEBRUARY 8, 2024

The European Artificial Intelligence Act, while not yet law, is driving new levels of human oversight and regulatory compliance for artificial intelligence (AI) within the European Union. Similar to GDPR for privacy, the EU AI Act has potential to set the tone for upcoming AI regulations worldwide.

Government

Government Artificial Intelligence Risk Compliance

GUEST ESSAY: How ‘DPIAs” — data privacy impact assessments — can lead SMBs to compliance

Data privacy examples

Webinars

Trending Sources

European rulings on the use of Google Analytics and how it may affect your business

Webinars

5 Key European Data Protection Trends for 2022

International Data Protection Day 2022

U.S. and Foreign Cybersecurity and Intelligence Agencies Recommend Measures to Counteract Threat of Russian Cyberattacks

Sam McNicholls-Novoa on CyberComply

DORA: 1 year to go! Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds

GDPR compliance checklist

Governance of Data Innovation: Risks and Rewards for Business – Key Takeaways from our Discussion with the UK Information Commissioner’s Office

ICO Publishes Draft New Guidance on PETs

Ways to Develop a Cybersecurity Training Program for Employees

How to implement the General Data Protection Regulation (GDPR)

China Releases Draft Regulations on Network Data Security Management

Get Prepared for Data Privacy Compliance Under China PIPL

The European Commission’s GDPR review in short

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing

Sidley Partner William Long Recognized by Best Lawyers 2019

Sidley Receives Four Awards at the 2020 Who’s Who Legal Awards

Key Takeaways From Sidley’s Privacy and Cybersecurity Monitor-Side Chat Featuring Bruno Gencarelli, Head of International Data Flows and Protection at the European Commission

China Data Law Update: Certification Rules and Draft Standard Contract Are Issued

Former U.S. Associate Deputy Attorney General Sujit Raman Joins Sidley in Washington, D.C.

The Privacy Officers’ New Year’s Resolutions

Brexit impact on privacy

Privacy and Cybersecurity Top 10 for 2018

MY TAKE: COVID-19’s silver lining could turn out to be more rapid, wide adoption of cyber hygiene

China Implements Regulation Increasing Protections for Children’s Personal Data

EDPB’s New Guidelines – Clinical Trials in the EU and COVID-19

Data security: Why a proactive stance is best

The Privacy Officers’ New Year’s Resolutions

Key Takeaways from Sidley’s Privacy and Cybersecurity Monitor-Side Chat Featuring Adam Klein, Chairman of the PCLOB

COVID-19: Key EU And U.S. Cybersecurity Issues and Risk-Remediation Steps

Future Lawyers Week Recap: The Rise in Legal Ops, Taking on eDiscovery and Data Privacy Challenges and More

Comments Submitted on California Consumer Privacy Act of 2020—Initiative 19-0021

Data Privacy Compliance Isn’t Just for Europe or California Anymore: Data Privacy Trends

GDPR – The Year in Review

M&A Due Diligence: The Devil in Their Data

Weekly podcast: Carphone Warehouse, USB drives, VTech and Patch Tuesday

Me on the Equifax Breach

GDPR is upon us: are you ready for what comes next?

90% of critical infrastructure providers have fallen victim to a cyber attack since 2017

Relativity Fest is Here! And So Are We!: eDiscovery Trends

Post-GDPR Developments on Data Protection and Privacy Regulations Around the World

Preparing for the EU AI Act: Getting governance right

Stay Connected