Communications, Events, Exercises and Government

New SEC Cybersecurity Rules Could Affect Private Companies Too

eSecurity Planet

SEPTEMBER 23, 2022

Technical managers that can clearly communicate internally to their own executives and board members may discover additional opportunities opening up after the SEC rules become finalized. See the top Governance, Risk & Compliance (GRC) tools. for past events and the template of information required for those follow-up reports.

Cybersecurity

Cybersecurity Compliance Risk Communications

France: The CNIL publishes a practical guide on Data Protection Officers

DLA Piper Privacy Matters

NOVEMBER 29, 2021

The DPO may assist the organization representative in the event of a dawn raid to respond to the CNIL’s questions on the basis of his/her expertise. the detail of the CNIL online DPO designation form and information to be communicated to the CNIL in that respect. Be the point of contact on GDPR issues. i) Appointment of the DPO.

GDPR

GDPR Compliance Personal data Communications

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs

Hunton Privacy

AUGUST 15, 2022

The Proposed Amendments introduce a new category of “Class A Companies,” which consists of large financial institutions that would be subject to heightened requirements. There will be a brief pre-proposal comment period, followed by the official publication of the Proposed Amendments, which will trigger a new 60-day comment period.

Financial Services

Financial Services Cybersecurity Risk Passwords

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

What is data loss and how does it work?

IT Governance

OCTOBER 6, 2020

It’s a specific type of data breach, falling into the ‘availability’ category of data security (the other two categories being ‘confidentiality’ and ‘integrity’). There are several types of data loss, which can be separated into four categories. appeared first on IT Governance UK Blog. What causes data loss? Human error.

IT

IT Computer and Electronics Data breaches Risk

Network Security Architecture: Best Practices & Tools

eSecurity Planet

APRIL 26, 2024

Port knocking : Closes ports for communication (including detection) until provided with a code using multiple specific packets or a special single-packet authorization (SPA). Proxies: Replace direct communication with a software or hardware intermediary that hides the discovery of assets (servers, endpoints, segments, etc.)

Security

Security Cloud Cybersecurity Risk

How to write a business continuity plan: the easy way

IT Governance

MAY 20, 2019

A BCP outlines the processes and procedures that an organisation must follow to continue operating in the event of a disruption. Business continuity focuses primarily on ensuring that you maintain functionality – even if at reduced capacity – in the event of an incident while attending to the disruption. Man-made disasters.

Communications

Communications Risk IT Data breaches

NYDFS proposes significant cybersecurity regulation amendments

Data Protection Report

AUGUST 11, 2022

The proposed changes mark a turn by NYDFS toward more specific, granular and prescriptive requirements notably with respect to governance, risk assessments and asset inventories (detailed below). Governance. Cybersecurity Event Notification Would Expand. The Proposed Regulation Changes. Notifications to DFS. 500.17).

Cybersecurity

Cybersecurity Risk Passwords Compliance

When And How Cos. Should Address Cyber Legal Compliance

Data Matters

OCTOBER 30, 2017

They can, however, engage in probing internal due diligence of their companies’ cyber governance and compliance posture before it is too late — that is, before a cyber event occurs. Company boards, CEOs and general counsels cannot, of course, categorically prevent either breaches or rumors. 1] The U.S.

Compliance

Compliance Cybersecurity Risk Government

California Privacy Law Overhaul – Proposition 24 Passes

Data Matters

NOVEMBER 4, 2020

Third, it creates a new category of businesses: those that voluntarily agree to be subject to the CCPA. Alternatively, a business can comply by respecting consumers’ preferences communicated through a cross-platform global privacy control that meets technical specifications set forth in regulations.

Privacy

Privacy B2B Sales Data breaches

CNIL Publishes Six Step Methodology and Tools to Prepare for GDPR

Hunton Privacy

MARCH 17, 2017

The CNIL’s methodology first stresses the need for organizations to appoint a leader to pilot governance of data protection within their structure. internal procedures in the event of a data breach. The six steps are summarized below. Step 1: Appointing a Data Protection Officer (“DPO”) or “Pilot”.

GDPR

GDPR Personal data Compliance Privacy

Cloud Security Fundamentals: Understanding the Basics

eSecurity Planet

MAY 24, 2024

10 Fundamentals of Cloud Security 5 Common Cloud Security Challenges 5 Common Cloud Security Solutions Bottom Line: Develop a Strong Cloud Security Fundamental Strategy ICP Plugin - body top3 - Category: Country: US --> How Secure Is the Cloud? Establish communication channels: Create communication channels and protocols for reporting issues.

Cloud

Cloud Security Compliance Encryption

EDPB publishes guidance on calculating GDPR fines

Data Protection Report

JUNE 9, 2022

In any event if it determines this is one sanctionable conduct the total amount of the fine may not exceed the legal maximum for the gravest infringement. 1) Category of infringement under Article 83(4) – (6) GDPR. Categories of personal data affected (e.g. diagram provided in the Guidelines. 2) Seriousness of infringement.

GDPR

GDPR Compliance Personal data IT

FRANCE : THE CNIL ADOPTS REVISED GUIDELINES AND FINAL RECOMMENDATIONS ON COOKIES AND OTHER TRACKERS

DLA Piper Privacy Matters

OCTOBER 6, 2020

While cookies and trackers used for advertising purposes and social networks features remain subject to consent, the Revised Guidelines provide additional examples of categories of cookies and trackers that are exempt from consent, under Article 82 of the French Data Protection Act.

GDPR

GDPR Communications Access Data collection

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

Data Matters

OCTOBER 23, 2019

The business shall also evaluate the consumer’s request as a request for categories of information, with its more forgiving verification standard. the business or commercial purpose for which it sold or disclosed the category of personal information.

Sales

Sales Privacy Passwords Compliance

FRANCE: ONE MORE STEP TO ENSURE CONSISTENCY OF THE NEW FRENCH DATA PROTECTION LAW

DLA Piper Privacy Matters

JANUARY 21, 2019

On 12 December 2018, the French Government issued an ordinance [1] finalizing, at the legislative level [2] , the alignment of the French Data Protection Law (“FDPL”) with the General Data Protection Regulation [3] (“GDPR”) and the Directive 2016/680 [4]. Following-up the adoption of the GDPR, the French Law No.

GDPR

GDPR Personal data Communications Government

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Data Matters

MARCH 4, 2021

These are (i) government entities; (ii) entities subject to the Gramm-Leach-Bliley Act; (iii) entities subject to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and Health Information Technology for Economic and Clinical Health Act; (iv) nonprofits; and (v) institutions of higher education. Entity exemptions.

Personal data

Personal data GDPR Sales Privacy

Vint Cerf: Maybe We Need an Internet Driver’s License

John Battelle's Searchblog

FEBRUARY 9, 2024

Cerf has chaired, formed, and participated in countless working groups, governing bodies, and scientific, technological, and academic organizations. I want to ask you to reflect on what you think the Internet’s greatest impact has been on democracy and how we govern ourselves? How can AI strengthen democracy?

Artificial Intelligence

Artificial Intelligence Computer and Electronics IT Risk

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

The new right to be forgotten will allow children to enjoy their childhood without having every personal event, achievement, failure, antic or prank that they posted online to be digitally recorded for ever more. Perhaps the Government could respond on that point. change it substantially.

GDPR

GDPR Personal data Government IT

The Burden of Privacy In Discovery

Data Matters

SEPTEMBER 29, 2021

Protection of personal privacy has, consequently, become an important goal both in technological development — e.g., the increasing prevalence of “privacy by design” in communications programs such as “ephemeral” messaging systems — and in governmental regulation. 21 If it is not both relevant and proportional, it is not discoverable.

Privacy

Privacy e-Discovery Computer and Electronics e-Delivery

Regulatory Update: NAIC Summer 2020 National Meeting

Data Matters

SEPTEMBER 3, 2020

Despite not being able to meet in-person, the NAIC utilized the Summer Meeting as an opportunity to host conversations among insurance regulators, industry members and consumers regarding recent events, including the impact of COVID-19 on the insurance industry as well as racial inequality and the promotion of diversity in the insurance industry.

Insurance

Insurance Paper Artificial Intelligence Big data

Information Management Today

New SEC Cybersecurity Rules Could Affect Private Companies Too

France: The CNIL publishes a practical guide on Data Protection Officers

Webinars

Trending Sources

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs

Webinars

What is data loss and how does it work?

Network Security Architecture: Best Practices & Tools

How to write a business continuity plan: the easy way

NYDFS proposes significant cybersecurity regulation amendments

When And How Cos. Should Address Cyber Legal Compliance

California Privacy Law Overhaul – Proposition 24 Passes

CNIL Publishes Six Step Methodology and Tools to Prepare for GDPR

Cloud Security Fundamentals: Understanding the Basics

EDPB publishes guidance on calculating GDPR fines

FRANCE : THE CNIL ADOPTS REVISED GUIDELINES AND FINAL RECOMMENDATIONS ON COOKIES AND OTHER TRACKERS

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

FRANCE: ONE MORE STEP TO ENSURE CONSISTENCY OF THE NEW FRENCH DATA PROTECTION LAW

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Vint Cerf: Maybe We Need an Internet Driver’s License

The debate on the Data Protection Bill in the House of Lords

The Burden of Privacy In Discovery

Regulatory Update: NAIC Summer 2020 National Meeting

Stay Connected