Blog, Exercises, Retail and Risk - Information Management Today

SEC Announces 2022 Examination Priorities: Private Funds, ESG, Retail, Cyber, Digital Assets Top the List

Data Matters

APRIL 6, 2022

1 Consistent with its recent rulemaking activity, in its accompanying release, the SEC highlighted private funds; Environmental, Social and Governance (ESG) investing; retail; cyber; and digital assets as key examination priorities. Private Fund, ESG Investing, Retail Investors, Cybersecurity, Fintech, and Digital Assets.

Retail

Retail Compliance Sales Risk

Data Equals Truth, and Truth Matters

erwin

MAY 6, 2020

Organizations dealing with major business disruptions in the near and mid-term: (hospitality, retail, transportation). Organizations looking to the post-pandemic future for risk-adverse business models, new opportunities, and/or new approaches to changing markets: (virtually every organization that needs to survive and then thrive).

Marketing

Marketing Government Retail Risk

Does your use of CCTV comply with the GDPR?

IT Governance

OCTOBER 3, 2019

You must tell people when you’re collecting their personal information to give them the opportunity to exercise their data subject rights. Many retailers sell signs like this, leaving the purpose blank so that you can fill it in with the appropriate message. appeared first on IT Governance Blog.

GDPR

GDPR Privacy Retail Personal data

Application modernization overview

IBM Big Data Hub

NOVEMBER 24, 2023

Further, for re-write initiatives, one needs to map functional capabilities to legacy application context so as to perform effective domain-driven design/decomposition exercises. Overall, Generative AI helps de-risk modernization programs via ensuring adequate visibility to legacy applications as well as dependencies.

Cloud

Cloud Customer Experience Mining Marketing

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

Think: an online retailer that stores customers’ email addresses to send order updates. Create a recordkeeping system Organizations with more than 250 employees, and companies of any size that regularly process data or handle high-risk data, must keep written electronic records of their processing activities.

GDPR

GDPR Compliance Personal data Privacy

New York Department of Financial Services Issues Guidance Regarding Life Insurers’ Use of External Consumer Data in Underwriting

Data Matters

FEBRUARY 20, 2019

The Circular Letter specifically notes that even if statistical data supports an underwriting or rating guideline, there must still be a valid rationale or explanation supporting the differential treatment of otherwise similar risks. Consumer Disclosures.

Insurance

Insurance Financial Services Compliance Retail

Processing of riders’ personal data ? The Italian Data Protection Authority sanctions a food delivery company

Privacy and Cybersecurity Law

JULY 26, 2021

Furthermore, they should minimize the risk of distorted or discriminatory effects. Receive our latest blog posts by email. Such measures should periodically verify the fairness and accuracy of the results of the algorithmic systems, and check whether the data used is pertinent and adequate in order to achieve the purposes pursued.

Personal data

Personal data GDPR e-Delivery Communications

2022 Cyber Security Review of the Year

IT Governance

DECEMBER 20, 2022

It’s been a year full of predictable and unpredictable incidents alike, and in this blog, we’ve compiled the most memorable stories of 2022. Although Vladimir Putin and his sympathisers assured the world that they were simply conducting military exercises, the inevitable occurred on 24 February, when troops mobilised and war was declared.

Security

Security Data breaches Ransomware Military

CCTV and the GDPR – an overview for small businesses

IT Governance

JULY 25, 2018

If your business uses CCTV – whether for security or employee monitoring purposes – and you’re unsure about your obligations under the new law and how they differ from those of the DPA (Data Protection Act) 1998, this blog outlines some of the areas you need to consider. To comply with the data controller’s legal obligations.

GDPR

GDPR Personal data Privacy Access

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

The Last Watchdog

MARCH 21, 2022

Evolving privacy regulations like the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) mean ongoing headaches for cybersecurity, compliance and risk management teams. Conduct risk analysis. Some regulations require a proactive approach to identifying and mitigating data risk.

Encryption

Encryption Cloud Privacy GDPR

Regulatory Update: NAIC Summer 2020 National Meeting

Data Matters

SEPTEMBER 3, 2020

The Annuity Suitability Working Group (ASWG) led the NAIC’s multi-year efforts to develop revisions to the Suitability in Annuity Transactions Model Regulation (SAT) to incorporate a requirement for producers to act in the “best interest” of a retail customer when making a recommendation of an annuity. Proposed revisions to SSAP No.

Insurance

Insurance Paper Artificial Intelligence Big data

A Practical Guide to Cyber Incident Response

IT Governance

MAY 24, 2024

It’s how I convince them that they really need that cyber incident response plan , to do tabletop exercises , to train their staff , and so on. What are the risks to them? Risk assessment and management are critical starting points, as you need to know what you’re working with before you do anything else. Where are those assets?

Risk

Risk Security Ransomware Phishing

SEC and FINRA Issue 2020 Examination Priorities for Broker-Dealers and Investment Advisers

Data Matters

FEBRUARY 20, 2020

Protection of Retail Investors . For both broker-dealers and investment advisers, OCIE will continue to emphasize the protection of retail investors, particularly seniors and those saving for retirement. Retail-Targeted Investments. 1 In general, the 2020 Examination Priorities continue recurring themes from recent prior years.

Retail

Retail Compliance Marketing Risk

SEC and FINRA Issue 2020 Examination Priorities (Including Cybersecurity) for Broker-Dealers and Investment Advisers

Data Matters

JANUARY 24, 2020

Protection of Retail Investors . For both broker-dealers and investment advisers, OCIE will continue to emphasize the protection of retail investors, particularly seniors and those saving for retirement. Retail-Targeted Investments. Information Security .

Cybersecurity

Cybersecurity Retail Compliance Marketing

What you need to know about the CCPA rules on AI and automated decision-making technology

IBM Big Data Hub

MAY 3, 2024

For example, a digital retailer can have a web form for users to complete. Access request responses should also include information on how the consumer can exercise their CCPA rights, such as filing complaints or requesting the deletion of their data. Information on how to appeal the decision, if applicable.

Artificial Intelligence

Artificial Intelligence Compliance Privacy Risk

The Customer Journey Digital Transformation Workbook

Bill Schmarzo - Dell EMC

APRIL 4, 2018

To support this training, we created a methodology that guided the students through a digital transformation exercise. Customer Journey, which is the source of wealth (see the blog “ Don’t Follow the Money; Follow the Customer !” For our classroom exercise, we came up with the following “Taking a Vacation” stages: Plan Vacation.

Digital transformation

Digital transformation Big data Marketing Artificial Intelligence

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

IT Governance

FEBRUARY 6, 2024

Enforcement Uber fined €10 million for GDPR breaches The Dutch data protection authority, Autoriteit Persoonsgegevens, has fined Uber €10 million for failing to be transparent about its data retention practices and making it difficult for drivers to exercise their data privacy rights. Key dates 31 March 2024 – PCI DSS v4.0 of the Standard.

Data Privacy

Data Privacy Privacy Insurance Security

The Customer Journey Digital Transformation Workbook

Bill Schmarzo - Dell EMC

APRIL 4, 2018

To support this training, we created a methodology that guided the students through a digital transformation exercise. Customer Journey, which is the source of wealth (see the blog “ Don’t Follow the Money; Follow the Customer !” For our classroom exercise, we came up with the following “Taking a Vacation” stages: Plan Vacation.

Digital transformation

Digital transformation Big data Marketing Artificial Intelligence

Terms and Conditions: Recent Supreme Court Decisions Highlight There is More to Consider than Just the Privacy Policy

Data Matters

MAY 13, 2019

It is, therefore, a timely exercise to stop and take stock of your terms and conditions in light of recent developments in the law, consumer expectations, and your legal risk profile. Terms and conditions are an important tool for limiting a company’s exposure to the various legal risks inherent in conducting business online.

Privacy

Privacy Risk Sales Access

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

Data Matters

OCTOBER 23, 2019

Moreover, if the business operates a website, but primarily interacts with consumers in retail locations, it will be required to add a third option that allows consumers to submit a form that can be submitted in person at those locations. Recordkeeping Requirements.

Sales

Sales Privacy Passwords Compliance

A new era for customer data – could security be ‘the new green’ for businesses?

Thales Cloud Protection & Licensing

OCTOBER 10, 2018

So, similarly to environmental issues, data security is shifting from a box-ticking exercise to something that demonstrably drives sales. On a business-to-consumer level, we’ve already observed retailers utilising GDPR as an opportunity for innovation and further customer engagement.

GDPR

GDPR Security Marketing Data breaches

Key takeaways for the private sector from The Bridges v South Wales police facial recognition case

Data Protection Report

AUGUST 27, 2020

This blog post therefore sets out what the private sector should take away from this decision. The High Court was wrong to hold that SWP had complied with the PSED on the basis that the Equality Impact Assessment carried out was “ obviously inadequate ” and failed to recognise the risk of indirect discrimination. Brief background.

Risk

Risk Retail IT GDPR

Information Management Today

SEC Announces 2022 Examination Priorities: Private Funds, ESG, Retail, Cyber, Digital Assets Top the List

Data Equals Truth, and Truth Matters

Trending Sources

Does your use of CCTV comply with the GDPR?

Application modernization overview

How to implement the General Data Protection Regulation (GDPR)

New York Department of Financial Services Issues Guidance Regarding Life Insurers’ Use of External Consumer Data in Underwriting

Processing of riders’ personal data ? The Italian Data Protection Authority sanctions a food delivery company

2022 Cyber Security Review of the Year

CCTV and the GDPR – an overview for small businesses

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

Regulatory Update: NAIC Summer 2020 National Meeting

A Practical Guide to Cyber Incident Response

SEC and FINRA Issue 2020 Examination Priorities for Broker-Dealers and Investment Advisers

SEC and FINRA Issue 2020 Examination Priorities (Including Cybersecurity) for Broker-Dealers and Investment Advisers

What you need to know about the CCPA rules on AI and automated decision-making technology

The Customer Journey Digital Transformation Workbook

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

The Customer Journey Digital Transformation Workbook

Terms and Conditions: Recent Supreme Court Decisions Highlight There is More to Consider than Just the Privacy Policy

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

A new era for customer data – could security be ‘the new green’ for businesses?

Key takeaways for the private sector from The Bridges v South Wales police facial recognition case

Stay Connected