Communications, Exercises and Security - Information Management Today

Network Security Architecture: Best Practices & Tools

eSecurity Planet

APRIL 26, 2024

Network security architecture is a strategy that provides formal processes to design robust and secure networks. Effective implementation improves data throughput, system reliability, and overall security for any organization. Network Elements Networks connect physical and virtual assets and control the data flow between them.

Security

Security Cloud Cybersecurity Risk

Cloud Security Fundamentals: Understanding the Basics

eSecurity Planet

MAY 24, 2024

Cloud security fundamentals are the core requirements that ensure data protection, regulatory compliance, and access management in a cloud environment. Understanding cloud security challenges and knowing the cloud security tools available in the market significantly contribute to enhanced cloud security.

Cloud

Cloud Security Compliance Encryption

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. The only data processing activities exempt from the GDPR are national security or law enforcement activities and purely personal uses of data. Each EEA country has its own supervisory authority.

GDPR

GDPR Compliance Personal data Privacy

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

Hunton Privacy

OCTOBER 14, 2021

During the week of October 4, 2021, California Governor Gavin Newsom signed into law bills amending the California Privacy Rights Act of 2020 (“CPRA”), California’s data breach notification law and California’s data security law. Genetic Data: California Data Breach Notification and Data Security Law Amendment Bill.

Privacy

Privacy Insurance Security Data breaches

New SEC Cybersecurity Rules Could Affect Private Companies Too

eSecurity Planet

SEPTEMBER 23, 2022

Securities and Exchange Commission (SEC) strongly advised public companies to improve their cybersecurity. While the new security proposals have not yet become law, cybersecurity managers can begin to prepare metrics and audits that will not only help comply with those laws, but can also help create positive change now.

Cybersecurity

Cybersecurity Compliance Risk Communications

France: The CNIL publishes a practical guide on Data Protection Officers

DLA Piper Privacy Matters

NOVEMBER 29, 2021

While the DPO is not responsible for maintaining the record of processing activities, in practice, such maintenance is generally part of his or her effective missions. the detail of the CNIL online DPO designation form and information to be communicated to the CNIL in that respect. ii) Status of the DPO.

GDPR

GDPR Compliance Personal data Communications

California Privacy Law Overhaul – Proposition 24 Passes

Data Matters

NOVEMBER 4, 2020

Third, it creates a new category of businesses: those that voluntarily agree to be subject to the CCPA. Alternatively, a business can comply by respecting consumers’ preferences communicated through a cross-platform global privacy control that meets technical specifications set forth in regulations.

Privacy

Privacy B2B Sales Data breaches

Processing of riders’ personal data ? The Italian Data Protection Authority sanctions a food delivery company

Privacy and Cybersecurity Law

JULY 26, 2021

Security measures in place. Communication of the DPO’s contact details to the Garante. The Company infringed Article 37(7) of the GDPR since it failed to properly communicate the contact details of the group-level DPO to the Garante. Furthermore, they should minimize the risk of distorted or discriminatory effects.

Personal data

Personal data GDPR e-Delivery Communications

What is data loss and how does it work?

IT Governance

OCTOBER 6, 2020

It’s a specific type of data breach, falling into the ‘availability’ category of data security (the other two categories being ‘confidentiality’ and ‘integrity’). There are several types of data loss, which can be separated into four categories. Data loss refers to the destruction of sensitive information. Human error.

IT

IT Computer and Electronics Data breaches Risk

GDPR Italian Implementing Decree Has Been Published

HL Chronicle of Data Protection

SEPTEMBER 14, 2018

101 of 10 August 2018 (the “Decree”) for the national implementation of General Data Protection Regulation (EU) 2016/679 (the “GDPR”) has been published in the Official Journal. On 4 September, the Legislative Decree no. Also, the Decree governs the transition from the current to the future regime.

GDPR

GDPR Personal data Privacy Communications

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

Data Protection Report

DECEMBER 17, 2020

Create any obligation to share or right to re-use data or alter the intellectual property rights of third parties or limit the exercise of these rights in any way, except as set out in the DGR. A new category of data broker called data sharing services providers. What are the objectives of the Data Governance Regulation?

Government

Government Personal data Marketing Artificial Intelligence

California Consumer Privacy Act Signed, Introduces Key Privacy Requirements for Businesses

Hunton Privacy

JUNE 29, 2018

This definition of personal information aligns more closely with the EU General Data Protection Regulation’s definition of personal data. Detect security incidents; protect against malicious, deceptive, fraudulent or illegal activity; or prosecute those responsible for that activity.

Privacy

Privacy Sales Personal data Communications

GDPR: lawful bases for processing, with examples

IT Governance

MARCH 13, 2020

Under the EU GDPR (General Data Protection Regulation) , you need to identify a lawful basis before processing personal data. Except for special categories of personal data (sensitive data) , which you cannot process except under certain circumstances, there are six lawful bases for processing. First published June 2018.

GDPR

GDPR Personal data Compliance Marketing

EUROPE: New privacy rules for connected vehicles in Europe?

DLA Piper Privacy Matters

MAY 5, 2020

The latest evolution of digital technologies, such as robotics, Internet of Things, Artificial Intelligence, high-performance computers and powerful communication networks leads self-driving cars out of an imaginary world and into our daily lives. While these technologies are progressing rapidly, the EU intends to ensure common rules.

Privacy

Privacy Personal data GDPR Insurance

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

Data Matters

OCTOBER 23, 2019

Businesses, consumer advocates, and privacy watchers have thus been eagerly waiting for over a year for the Attorney General to propose the regulations the CCPA requires him to promulgate. As laid out below, the nature and breadth of the Attorney General’s proposed regulations explain why they took so long to produce.

Sales

Sales Privacy Passwords Compliance

German DPA Guidance on Employee Data Protection and COVID-19 Issues

Hunton Privacy

APRIL 1, 2020

Legal basis: The relevant legal basis for such data processing by employers in the private sector is the EU General Data Protection Regulation’s (“GDPR’s”) legitimate interests legal basis (Article 6 (1)(f)).

Personal data

Personal data Authentication Communications Risk

How to Develop an Incident Response Plan

eSecurity Planet

DECEMBER 9, 2021

We make IT, security, or any business decision by weighing the risks and the rewards. Or as is often the case with security, what costs can we skip and still escape big penalties later? For example, we might nominate: The IT security manager to handle a ransomware incident; Our external accountant to investigate financial fraud; or.

Insurance

Insurance Ransomware Data breaches Cloud

CCPA Marches On: California Attorney General Proposes Further Revisions to CCPA Regulations, Industry Pleads for Enforcement Delay Amid COVID-19 Crisis

Data Matters

APRIL 10, 2020

On March 11, 2020, the California Attorney General (“AG”) released the third turn of proposed California Consumer Privacy Act (“CCPA”) regulations. Language from an earlier draft that prompted widespread use of granular charts to repeatedly reiterate information per category of personal information has not made a reappearance.

Privacy

Privacy Sales Insurance Compliance

When And How Cos. Should Address Cyber Legal Compliance

Data Matters

OCTOBER 30, 2017

Company boards, CEOs and general counsels cannot, of course, categorically prevent either breaches or rumors. Responsibility for corporate cybersecurity extends from the chief information security officer’s office, to the C-suite, to the corporate boardroom. Cyber Security Beyond Cybersecurity: CLGAs. 1] The U.S.

Compliance

Compliance Cybersecurity Risk Government

5 learnings from the “Meeting the CCPA Challenge” webinar

Collibra

MARCH 12, 2020

Consumers can ask businesses what categories of their PI is being collected. Businesses cannot discriminate against a consumer for exercising their rights. Businesses must provide clear notice about categories of PI it collects. Consumers must submit a VCR to exercise their rights and business must respond within 45 days.

Data Privacy

Data Privacy Privacy Government Compliance

And then there were five: CCPA amendments pass legislature

Data Protection Report

SEPTEMBER 17, 2019

Subsection (c)(5) is clarified to read that a business’ obligation is to disclose in an online privacy policy “that a consumer has the right to request” the specific pieces of personal information that the business has collected about consumers in general, not about a specific consumer. – § 1798.115.

B2B

B2B Privacy Communications Encryption

CNIL Publishes Six Step Methodology and Tools to Prepare for GDPR

Hunton Privacy

MARCH 17, 2017

On March 15, 2017, the French data protection authority (the “CNIL”) published a six step methodology and tools for businesses to prepare for the EU General Data Protection Regulation (“GDPR”) that will become applicable on May 25, 2018. verifying the data security measures implemented. The six steps are summarized below.

GDPR

GDPR Personal data Compliance Privacy

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Data Matters

MARCH 4, 2021

The VCDPA, which will not enter into effect until January 1, 2023, borrows heavily from the California Consumer Privacy Act (CCPA) and the European Union (EU) General Data Protection Regulation (GDPR). the categories of personal data that the controller shares with third parties, if any. Controllers must. 6501 et seq.). 574(C)-(E).

Personal data

Personal data GDPR Sales Privacy

If You’re a Cloud Provider or Consumer, Consider These Guidelines on How to Conduct Yourself in Europe: eDiscovery Best Practices

eDiscovery Daily

NOVEMBER 26, 2017

While we were preparing to eat turkey and stuff ourselves with various goodies last week, the Cloud Security Alliance (CSA) provided an important guideline for compliance with the European Union General Data Protection Regulation (GDPR). Transfer of personal data to third countries.

Cloud

Cloud GDPR Personal data Compliance

Data collection cheat sheet: how Parler, Twitter, Facebook, MeWe’s data policies compare

Security Affairs

JANUARY 13, 2021

To make matters even worse for the platform, a security researcher was able to collect more than 70 terabytes, which equals 70,000 gigabytes, of Parler users’ messages, videos, audio, and all other activity. Having a section dedicated to security would get a “Good” (unless the section is useless by containing no information at all).

Data collection

Data collection Privacy Analytics Access

FRANCE: New data protection law declared constitutional and ready for promulgation

DLA Piper Privacy Matters

JUNE 14, 2018

The French Constitutional Council has issued its ruling on June 12 regarding the new data protection law implementing the EU General Data Protection Regulation (GDPR). By Denise Lebeau-Marianna and Caroline Chancé. It’s a PASS!

GDPR

GDPR Personal data Insurance Government

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

As the most comprehensive privacy law to be enacted in the United States thus far, the California Consumer Privacy Act (CCPA) has inevitably invited comparisons to the European Union’s General Data Protection Regulation (GDPR).

GDPR

GDPR Privacy Personal data Sales

GDPR: lawful bases for processing, with examples

IT Governance

JUNE 15, 2018

Like the Data Protection Act 1998 (DPA 1998) that it superseded, the General Data Protection Regulation (GDPR) sets out six lawful bases for processing personal data. For tasks carried out in the public interest or exercise of authority vested in the data controller. Do you always need individuals’ consent to process their data?

GDPR

GDPR Personal data Compliance Privacy

FRANCE: ONE MORE STEP TO ENSURE CONSISTENCY OF THE NEW FRENCH DATA PROTECTION LAW

DLA Piper Privacy Matters

JANUARY 21, 2019

On 12 December 2018, the French Government issued an ordinance [1] finalizing, at the legislative level [2] , the alignment of the French Data Protection Law (“FDPL”) with the General Data Protection Regulation [3] (“GDPR”) and the Directive 2016/680 [4]. Following-up the adoption of the GDPR, the French Law No.

GDPR

GDPR Personal data Communications Government

California Privacy Protection Agency Officially Commences CPRA Rulemaking Process

Hunton Privacy

JULY 8, 2022

Additionally, a business may only collect PI categories that are disclosed via notice at the time of collection. This is a significant addition, as the CCPA currently only requires businesses to disclose certain information about the categories of third parties to whom PI is disclosed, but not the actual identity of such third parties.

Privacy

Privacy Sales Compliance Access

US: The CCPA ‘Moving Target’ One Month Before Privacy Enforcement Begins

DLA Piper Privacy Matters

JUNE 18, 2020

First, the final regulations issued by the California Office of the Attorney General were just released to the public on June 2, with a request for expedited 30-business-day review by the California State Office of Administrative Law (OAL).

Privacy

Privacy Compliance Sales Risk

Malaysian Data Protection Law Takes Effect

Hunton Privacy

NOVEMBER 19, 2013

On November 14, 2013, the Minister of the Malaysian Communications and Multimedia Commission (the “Minister”) announced that Malaysia’s Personal Data Protection Act 2010 (the “Act”) would be going into effect as of November 15, marking the end of years of postponements. The law imposes a number of generally applicable principles.

Personal data

Personal data Marketing Communications Insurance

How Much Does Penetration Testing Cost? 11 Pricing Factors

eSecurity Planet

JUNE 20, 2023

In general, the cost of a penetration test will be directly proportional to the number of hours that must be spent on preparing, executing, and documenting the penetration test. Some sources claim that White Box testing is the least expensive test because penetration testing teams do not have to defeat network security defenses.

Compliance

Compliance Cloud Security Phishing

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

As the most comprehensive privacy law to be enacted in the United States thus far, the California Consumer Privacy Act (CCPA) has inevitably invited comparisons to the European Union’s General Data Protection Regulation (GDPR).

GDPR

GDPR Privacy Personal data Sales

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

As the most comprehensive privacy law to be enacted in the United States thus far, the California Consumer Privacy Act (CCPA) has inevitably invited comparisons to the European Union’s General Data Protection Regulation (GDPR).

GDPR

GDPR Privacy Personal data Sales

ITALY: New GDPR Guidelines from the Italian data protection authority

DLA Piper Privacy Matters

APRIL 9, 2018

health related data that are now incorporated in the broader “ special ” category of data) and to the processing based on automated decision making, including profiling. The accountability principle is one of the major changes introduced by the General Data Protection Regulation. Need to adopt an accountability program.

GDPR

GDPR Personal data Privacy Data breaches

The Hacker Mind Podcast: Tales From A Ransomware Negotiator

ForAllSecure

MAY 30, 2023

Mark Lance, the VP of DFIR and Threat intelligence for GuidePoint Security, provides The Hacker Mind with stories of ransomware cases he’s handled. ” Over the next few weeks, chats from encrypted Telegram, and other communications were leaked. Say you’re an organization that’s been hit with ransomware.

Ransomware

Ransomware Encryption Authentication Communications

Vint Cerf: Maybe We Need an Internet Driver’s License

John Battelle's Searchblog

FEBRUARY 9, 2024

So it is a super exciting time for almost anyone who’s interested in computing and communications, to say nothing and the fact that we have more access to the Internet than ever, thanks to Starlink and other low Earth orbiting satellites, in addition to the mobiles that we carry. I think that’s what you’re referring to.

Artificial Intelligence

Artificial Intelligence Computer and Electronics IT Risk

The Burden of Privacy In Discovery

Data Matters

SEPTEMBER 29, 2021

Protection of personal privacy has, consequently, become an important goal both in technological development — e.g., the increasing prevalence of “privacy by design” in communications programs such as “ephemeral” messaging systems — and in governmental regulation. The principle of proportionality in civil discovery is hardly new.4

Privacy

Privacy e-Discovery Computer and Electronics e-Delivery

European Union Launches Revolutionary Proposals to Regulate “Big Tech”

Data Matters

DECEMBER 16, 2020

h) provide business users and end users portability of data generated through the use of the relevant platform. i) provide business users access to data generated in the context of the use of a core platform service. k) apply fair and nondiscriminatory general conditions of access for business users on software application stores.

Marketing

Marketing Access Cloud Risk

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

The wait is finally over—this Friday the European Union General Data Protection Regulation (GDPR) will come into force. Even if a comprehensive data mapping exercise has not yet completed, every organization should conduct a baseline test to ensure that marketing opt out requests will be honored.

GDPR

GDPR Personal data Compliance Data breaches

Nevada, New York and other states follow California’s CCPA

Data Protection Report

JUNE 6, 2019

Instead, enforcement authority is granted to the Attorney General, which can institute a legal proceeding and have the court issue a temporary or permanent injunction, or impose a civil penalty not to exceed $5,000 for each violation. Narrows disclosure requirement to categories of third parties sold to.

Sales

Sales Privacy Insurance Manufacturing

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

In our manifesto at the general election we committed to provide people with the ability to require major social media platforms to delete information held about them, especially when that information related to their childhood. How then will we secure adequacy without adhering to the charter? Data is used to build products themselves.

GDPR

GDPR Personal data Government IT

The Hacker Mind Podcast: Hunting The Next Heartbleed

ForAllSecure

NOVEMBER 24, 2020

In this episode I talk about how Heartbleed (CVE 2014-0160) was found and also interview Rauli Kaksonen, someone who was at Codenomicon at the time of its discovery and is now a senior security specialist at the University of Oulu in Finland, about how new security tools are still needed to find the next big zero day. Apple Podcasts.

Encryption

Encryption Artificial Intelligence Marketing Security

Network Security Architecture: Best Practices & Tools

Cloud Security Fundamentals: Understanding the Basics

Webinars

Trending Sources

GDPR compliance checklist

Webinars

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

New SEC Cybersecurity Rules Could Affect Private Companies Too

France: The CNIL publishes a practical guide on Data Protection Officers

California Privacy Law Overhaul – Proposition 24 Passes

Processing of riders’ personal data ? The Italian Data Protection Authority sanctions a food delivery company

What is data loss and how does it work?

GDPR Italian Implementing Decree Has Been Published

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

California Consumer Privacy Act Signed, Introduces Key Privacy Requirements for Businesses

GDPR: lawful bases for processing, with examples

EUROPE: New privacy rules for connected vehicles in Europe?

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

German DPA Guidance on Employee Data Protection and COVID-19 Issues

How to Develop an Incident Response Plan

CCPA Marches On: California Attorney General Proposes Further Revisions to CCPA Regulations, Industry Pleads for Enforcement Delay Amid COVID-19 Crisis

When And How Cos. Should Address Cyber Legal Compliance

5 learnings from the “Meeting the CCPA Challenge” webinar

And then there were five: CCPA amendments pass legislature

CNIL Publishes Six Step Methodology and Tools to Prepare for GDPR

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

If You’re a Cloud Provider or Consumer, Consider These Guidelines on How to Conduct Yourself in Europe: eDiscovery Best Practices

Data collection cheat sheet: how Parler, Twitter, Facebook, MeWe’s data policies compare

FRANCE: New data protection law declared constitutional and ready for promulgation

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

GDPR: lawful bases for processing, with examples

FRANCE: ONE MORE STEP TO ENSURE CONSISTENCY OF THE NEW FRENCH DATA PROTECTION LAW

California Privacy Protection Agency Officially Commences CPRA Rulemaking Process

US: The CCPA ‘Moving Target’ One Month Before Privacy Enforcement Begins

Malaysian Data Protection Law Takes Effect

How Much Does Penetration Testing Cost? 11 Pricing Factors

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

ITALY: New GDPR Guidelines from the Italian data protection authority

The Hacker Mind Podcast: Tales From A Ransomware Negotiator

Vint Cerf: Maybe We Need an Internet Driver’s License

The Burden of Privacy In Discovery

European Union Launches Revolutionary Proposals to Regulate “Big Tech”

GDPR is upon us: are you ready for what comes next?

Nevada, New York and other states follow California’s CCPA

The debate on the Data Protection Bill in the House of Lords

The Hacker Mind Podcast: Hunting The Next Heartbleed

Stay Connected