Communications, Financial Services and Privacy - Information Management Today

New EU Cyber Law for the Financial Services Industry with Significant Impact on ICT Service Providers

Data Matters

MAY 8, 2023

The new EU Regulation on Digital Operational Resilience for the Financial Sector ( DORA ) recently entered into force. DORA establishes cybersecurity requirements for information and communication technology ( ICT ) systems supporting the business processes of financial entities and represents a paradigm shift for the ICT sector.

Financial Services

Financial Services Communications Cybersecurity Privacy

DORA: 1 year to go! Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds

Thales Cloud Protection & Licensing

JANUARY 16, 2024

Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds madhav Wed, 01/17/2024 - 05:46 The Digital Operational Resilience Act (DORA) will apply to the EU financial sector from 17 January 2025. As set out in its Article 2, DORA applies to the entire financial services sector.

Financial Services

Financial Services Cloud Cybersecurity Encryption

News alert: Harter Secrest & Emery announces designation as NetDiligence-authorized Breach Coac

The Last Watchdog

FEBRUARY 15, 2024

Paul Greene , CIPP/US, CIPP/E, CIPM, FIP, Harter Secrest & Emery’s Privacy and Data Security practice group helps clients respond to data security incidents of all kinds. NetDiligence-authorized Breach Coach ® firms are selected based on their experience, competency, thought leadership, and industry engagement. Greene Led by partner F.

Data breaches

Data breaches Financial Services Big data Retail

GUEST ESSAY: 7 tips for protecting investor data when it comes to alternative asset trading

The Last Watchdog

JULY 11, 2023

Related: Preserving the privacy of the elderly As more traders and investors engage in these investment avenues, it is crucial to adopt robust security measures to safeguard sensitive and regulated information. This includes scanning all materials, such as investor onboarding documents and communication.

IT

IT Encryption Risk Financial Services

What (currently ignored) privacy area might result in early enforcement action when the GDPR is in force?

Data Protector

JANUARY 29, 2017

Does it really mean that in 481 days, European privacy regulators will be heralding the first megafine for non-compliance with one of the GDPR’s more obscure requirements? And also, what standard of evidence is necessary to be generated, just in case privacy regulators exercise their Article 30(4) right to request it. I think not.

GDPR

GDPR Privacy Compliance Personal data

The aftermath of an incident – why keeping records of data breaches and privacy incidents matters

Data Protection Report

JUNE 14, 2022

As privacy incidents and security breaches involving personal information become increasingly frequent, organizations are more and more aware of the importance of implementing a robust privacy program to mitigate the risks and impacts of such incidents. Legal Obligations. Procedural Considerations.

Privacy

Privacy Data breaches Compliance Financial Services

CIPL Responds to UK Digital Regulation Cooperation Forum (DRCF) Workplan 2023 to 2024 Call for Input

Hunton Privacy

FEBRUARY 7, 2023

As the nature of digital assets continues to evolve and develop, it is imperative that data privacy issues are considered and addressed in tandem with the development of financial services policy and regulation to ensure a coherent, comprehensive and practical regulatory approach that can support a trusted, open, innovative and competitive market.

Data Privacy

Data Privacy Blockchain Compliance Privacy

U.S. and Foreign Cybersecurity and Intelligence Agencies Recommend Measures to Counteract Threat of Russian Cyberattacks

Data Matters

JANUARY 28, 2022

The advisory was promptly endorsed by the National Cyber Security Centre, a division of Government Communications Headquarters (“GCHQ”), a UK intelligence agency. The service determines whether an application is malicious or suspicious and, if so, will block it from making changes to any files in a protected folder. The post U.S.

Cybersecurity

Cybersecurity Financial Services Authentication Government

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Thales Cloud Protection & Licensing

JANUARY 11, 2023

Security & Compliance for SAP Data in Financial Services. Financial services companies keep some of their most valuable data in SAP applications, triggering the need for both additional security and taking steps toward meeting compliance requirements. Chad Couser | Director, Marketing Communications Thales.

Compliance

Compliance Cloud Security Financial Services

Navigating the digital wave: Understanding DORA and the role of confidential computing

IBM Big Data Hub

FEBRUARY 5, 2024

The Digital Operational Resilience Act (DORA) marks a significant milestone in the European Union’s (EU) efforts to bolster the operational resilience of the financial sector in the digital age. Ensuring end-to-end Protection To achieve total data privacy assurance, a key component is confidential computing and cryptography.

Encryption

Encryption Data Privacy Compliance Cloud

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Data Protection Report

DECEMBER 23, 2019

This blogpost summarises our recent webinar: “ An urgent message from Berlin: The importance of record retention in privacy and cybersecurity ”. The authority claimed a violation of data minimisation and privacy by design principles under the EU General Data Protection Regulation (GDPR). . Why should this be a high priority project?

Privacy

Privacy Compliance Personal data Risk

Privacy and Cybersecurity Top 10 for 2018

Data Matters

JANUARY 2, 2018

This past year was marked by ever more significant data breaches, growing cybersecurity regulatory requirements at the state and federal levels and continued challenges in harmonizing international privacy and cybersecurity regulations. As we begin this New Year, here is list of the top 10 privacy and cybersecurity issues for 2018: EU GDPR.

Cybersecurity

Cybersecurity Privacy Data breaches GDPR

News Alert: W3C advances technology to streamline payment authentication

The Last Watchdog

JUNE 15, 2023

EMV® 3-D Secure and other protocols can be used to communicate the authentication results to banks or other parties for this validation. W3C works on ensuring that all foundational Web technologies meet the needs of civil society, in areas such as accessibility, internationalization, security, and privacy.

Authentication

Authentication Communications Financial Services Retail

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

IT Governance

FEBRUARY 21, 2024

Subscribe now The post The Week in Cyber Security and Data Privacy: 12 – 18 February 2024 appeared first on IT Governance UK Blog.

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

4 Special Requirements Social Media and Collaboration Create for GDPR Compliance

AIIM

JANUARY 26, 2018

A new set of European rules and standards related to privacy and data protection (the General Data Protection Regulation , or GDPR ) has set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. 2 -- Employee Rights on Social Media.

GDPR

GDPR Compliance Archiving Privacy

How Jamworks protects confidentiality while integrating AI advantages

IBM Big Data Hub

JANUARY 12, 2024

The advantages of AI are numerous and impactful, from predictive analytics that refine strategies, to natural language processing that fuels customer interactions and assists users in their daily tasks, to assistive tools that enhance accessibility, communication and independence for people with disabilities.

Cloud

Cloud Data Privacy Encryption Privacy

FCA Letter to E-Money Institutions: Why All UK Payment Service Providers Should Review Their Marketing Practices Now

Data Matters

MAY 27, 2021

require communications made to e-money customers and payment service or e-money promotions to be accurate and not emphasize any potential benefits of a payment service or e-money product (e.g., All UK payment service providers. The FCA has noted that its rules under BCOBS 2.3 lack of FSCS protection).

Marketing

Marketing Communications Compliance Financial Services

Google Yanks 106 ‘Malicious’ Chrome Extensions

Threatpost

JUNE 18, 2020

Trojan Chrome browser extensions spied on users and maintained a foothold on the networks of financial services, oil and gas, media and entertainment, healthcare and pharmaceuticals and government organizations.

Healthcare

Healthcare Financial Services Government Communications

FCC Seeks to Refresh the TCPA Record

HL Chronicle of Data Protection

MAY 21, 2018

FCC , the Federal Communications Commission is going back to the drawing board in a new Public Notice that seeks comment on foundational TCPA issues. Our TCPA Working Group brings together more than 25 attorneys in our litigation, communications, commercial, and privacy practice areas. Now that the dust has settled from the D.C.

Communications

Communications Financial Services Privacy Government

My (somewhat unreliable) data protection predictions for 2017

Data Protector

DECEMBER 31, 2016

European courts and European privacy regulators will continue to present challenges to European law enforcement authorities, making it even more cumbersome for stored communications data to be used to fight various types of crime. Who knows whom I’ll be advising! It is, after all, quite a long way from Wilmslow.

GDPR

GDPR Communications Financial Services Education

Marriott Breach: More than 500 Million Guest Affected

Adam Levin

NOVEMBER 30, 2018

Regis, Westin, Sheraton, W Hotels or anywhere else that operates on Marriot’s Starwood guest reservation database, it’s time to redouble your cybersecurity and privacy efforts, because this compromise is one of biggest we’ve seen—dwarfed only by the Yahoo breach that affected 2 billion users. If you’ve made reservations at the St.

Financial Services

Financial Services Encryption Passwords Communications

Ireland: Large-scale inquiries progress as DPC budget and staff numbers ramp up

DLA Piper Privacy Matters

FEBRUARY 28, 2022

The DPC has continued to target issues around setting of tracking and advertising cookies without consent, use of cookie banners and privacy notices on websites and the use of pre-ticked boxes or toggles to gather consents for use of cookies. Financial Services Sector Focus. 5 Year Regulatory Strategy.

Financial Services

Financial Services Data breaches Personal data Compliance

2024 Tech and Cybersecurity Forecast: Navigating New Frontiers in Business

Thales Cloud Protection & Licensing

DECEMBER 20, 2023

This enhances data privacy and security and allows for greater control and efficiency in AI application deployment within the enterprise. The enhanced capabilities of 5G-Advanced will enable seamless integration and communication between a vast array of devices and systems, creating a more interconnected and efficient business environment.

Cybersecurity

Cybersecurity Blockchain Artificial Intelligence Encryption

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Data Protection Report

DECEMBER 23, 2019

This blogpost summarises our recent webinar: “ An urgent message from Berlin: The importance of record retention in privacy and cybersecurity ”. The authority claimed a violation of data minimisation and privacy by design principles under the EU General Data Protection Regulation (GDPR). . Why should this be a high priority project?

Privacy

Privacy Compliance Personal data Risk

Summary – “Industry in One: Financial Services”

ARMA International

NOVEMBER 7, 2019

The scope of a records and information management (RIM) program in financial services can seem overwhelming. Compared to other industries, the complexities of managing records and information in financial services are arguably some of the toughest to solve, primarily because of the intense regulatory scrutiny.

Financial Services

Financial Services Communications Compliance Risk

SEC Announces Settled Charges Against First American for Cybersecurity Disclosure Controls Failures – Lessons Learned

Data Matters

JUNE 24, 2021

provide for open communications between technical experts and disclosure advisers. On July 21, 2020, the New York State Department of Financial Services (NYDFS) issued a statement of charges and notice of hearing against First American for six violations of the department’s Cybersecurity Requirements for Financial Services Companies.

Cybersecurity

Cybersecurity Financial Services Risk Compliance

Protection of Privilege in the Aftermath of a Data Breach

Data Matters

JANUARY 25, 2018

When privilege protocols are followed, attorney-client and, if applicable, work-product protections will generally cover the investigation as well as reports, communications and other materials relating to the investigation. The post Protection of Privilege in the Aftermath of a Data Breach appeared first on Data Matters Privacy Blog.

Data breaches

Data breaches Communications Financial Services Privacy

Senate Passes Cybersecurity Information Sharing Act

Hunton Privacy

OCTOBER 28, 2015

CISA is intended to facilitate and encourage the sharing of Internet traffic information between and among companies and the federal government to prevent cyber attacks, by giving companies legal immunity from antitrust and privacy lawsuits. Chamber of Commerce and various financial industry groups. Bentsen Jr.

Cybersecurity

Cybersecurity Privacy Financial Services Government

Financial Stability Board to Develop International Cybersecurity Lexicon

Hunton Privacy

MARCH 23, 2018

The FSB is developing the cyber lexicon to address cybersecurity and cyber resilience in the financial sector and hopes that it will boost cross-border cooperation on cybersecurity. According to the note, “[t]he FSB has formed a working group, chaired by the U.S.

Cybersecurity

Cybersecurity Financial Services Insurance Communications

NEW TECH: Cequence Security launches platform to shield apps, APIs from malicious botnets

The Last Watchdog

NOVEMBER 13, 2018

The attackers have a vast, pliable attack surface to bombard: essentially all of the externally-facing web apps, mobile apps and API services that organizations are increasingly embracing, in order to stay in step with digital transformation. They are now chief privacy officer and chief technology officer, respectively.

Security

Security Digital transformation B2C B2B

Conversational AI use cases for enterprises

IBM Big Data Hub

FEBRUARY 23, 2024

Today, people don’t just prefer instant communication; they expect it. The integration of these technologies extends beyond reactive communication. In these sectors, the technology enhances user engagement, streamlines service delivery, and optimizes operational efficiency.

Analytics

Analytics Artificial Intelligence Marketing Education

Grove Pension Solutions fined £40,000 for PECR violation

IT Governance

APRIL 2, 2019

T he pensions firm ’s campaign, which took place between October 2016 and October 2017, violated the PECR (Privacy and Electronic Communications Regulation s ). . The PECR states that organisations must obtain explicit consent whenever they send unsolicited electronic communications for marketing purposes.

Marketing

Marketing Personal data GDPR Compliance

Q&A: Here’s how Google’s labeling HTTP websites “Not Secure” will strengthen the Internet

The Last Watchdog

AUGUST 15, 2018

This makes it trivial for eavesdroppers to snatch plain-text communications, such as when users fill out forms on web pages or use shopping carts or conduct online banking. This makes any personal information and details of financial transactions typed on HTTP web pages easy pickings. But HTTP connections are carried out in plain text.

Security

Security Encryption Authentication Financial Services

The UK ICO’s Regulatory Sandbox Points to a Future of Pro-Active Engagement

HL Chronicle of Data Protection

JULY 9, 2019

Once a participant’s involvement concludes, they can request that the ICO provide a statement of regulatory comfort which aims to provide assurances regarding the product or service’s compliance with data protection laws. From a privacy perspective, the Sandbox encourages an alternative approach to regulatory engagement.

GDPR

GDPR Personal data Privacy Financial Services

Indonesia Publishes Proposed Data Protection Rule

Hunton Privacy

JULY 17, 2015

On July 14, 2015, pursuant to an implementation requirement of Government Regulation 82 of 2012, the Indonesian government published the Draft Regulation of the Minister of Communication and Information (RPM) of the Protection of Personal Data in Electronic Systems (“Proposed Regulation”). 82 of 2012.

Personal data

Personal data Archiving Financial Services Communications

How insurers drive success in the digital transformation race with modern data management

Reltio

JUNE 9, 2022

You cannot build trust with your customers when you cannot track their communication preferences and honor their data privacy consent. Bringing together customer, policy, broker, claims, and other information from numerous disparate data systems into a unified and complete view in a timely manner is not a trivial task.

Digital transformation

Digital transformation Insurance MDM Customer Experience

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

Data Matters

SEPTEMBER 24, 2019

Today, more than 120 countries have privacy and data protection laws or regulations in place. This comprehensive data privacy law wave has already reached parts of Latin America and the Caribbean. Data privacy officer. The BDPA was passed by the BDPA on July 24, 2019 and now awaits the Governor-General’s signature.

Personal data

Personal data GDPR Data Privacy Privacy

Understanding China’s Data Regulatory Regime: What Are Important Data? And Can They Be Transferred Outside Of China?

Data Matters

APRIL 11, 2022

Companies can take such opportunities to communicate with the regulators and help shape future policy. appeared first on Data Matters Privacy Blog. Chinese regulators often publish drafts of important regulations to solicit comments from the public (e.g., The post Understanding China’s Data Regulatory Regime: What Are Important Data?

Military

Military Artificial Intelligence Security Financial Services

Digitizing the credit management journey

CGI

AUGUST 16, 2019

In the case of delinquent accounts or defaults, predictive analytics can help determine the customer’s probability to repay, facilitate communication and personalize resolution terms. Leading financial institutions are wisely leaving the world of isolated, one-off credit transactions behind.

Digital transformation

Digital transformation Artificial Intelligence Analytics Marketing

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs

Hunton Privacy

AUGUST 15, 2022

On July 29, 2022, the New York Department of Financial Services (“NYDFS”) posted proposed amendments (“Proposed Amendments”) to its Cybersecurity Requirements for Financial Services Companies (“Cybersecurity Regulations”).

Financial Services

Financial Services Cybersecurity Risk Passwords

Takeaways From CCPA Public Forums

Data Matters

FEBRUARY 12, 2019

When California Governor Jerry Brown signed the California Consumer Privacy Act (CCPA) into law on June 28, 2018, there was broad agreement that revisions and clarifications were necessary. Definition of Unique Identifiers. Updating as needed the definition of unique identifiers. Exceptions. Code §1798.140(t)(1).) What are the next steps?

Sales

Sales Privacy Data Privacy Compliance

UK and U.S. Regulators Introduce New Breach Guidance, Notification Forms

Hunton Privacy

FEBRUARY 3, 2012

The California Office of Privacy Protection also posted an updated version of its “Recommended Practices on Notice of Security Breach,” which provides guidance and best practices for businesses with respect to “managing personal information in ways that promote and protect individual privacy interests.”.

Privacy

Privacy Financial Services Communications Information Security

Healthcare Organizations Need to Adapt Their Data Protection Policies to the New Threat Environment

Thales Cloud Protection & Licensing

NOVEMBER 16, 2020

According to the report, almost all (97%) of financial services organizations store data in the cloud. As more sensitive data is stored in cloud environments, data security and privacy risks increase. More importantly, half of that cloud data is sensitive. of total budget. Smart data protection to address all risks.

Digital transformation

Digital transformation Encryption Cloud Data breaches

UK: The ICO and the FCA Agree on Strengthened Co-operation and Collaboration

DLA Piper Privacy Matters

MARCH 1, 2019

The FCA is the conduct regulator for 58,000 financial services firms and financial markets in the UK and the prudential regulator for over 18,000 of those firms. The FCA has three strategic objectives to ensure that the relevant markets function well, these are to: protect consumers; protect financial markets; and.

Financial Services

Financial Services Marketing GDPR Data breaches

New EU Cyber Law for the Financial Services Industry with Significant Impact on ICT Service Providers

DORA: 1 year to go! Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds

Trending Sources

News alert: Harter Secrest & Emery announces designation as NetDiligence-authorized Breach Coac

GUEST ESSAY: 7 tips for protecting investor data when it comes to alternative asset trading

What (currently ignored) privacy area might result in early enforcement action when the GDPR is in force?

The aftermath of an incident – why keeping records of data breaches and privacy incidents matters

CIPL Responds to UK Digital Regulation Cooperation Forum (DRCF) Workplan 2023 to 2024 Call for Input

U.S. and Foreign Cybersecurity and Intelligence Agencies Recommend Measures to Counteract Threat of Russian Cyberattacks

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Navigating the digital wave: Understanding DORA and the role of confidential computing

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Privacy and Cybersecurity Top 10 for 2018

News Alert: W3C advances technology to streamline payment authentication

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

4 Special Requirements Social Media and Collaboration Create for GDPR Compliance

How Jamworks protects confidentiality while integrating AI advantages

FCA Letter to E-Money Institutions: Why All UK Payment Service Providers Should Review Their Marketing Practices Now

Google Yanks 106 ‘Malicious’ Chrome Extensions

FCC Seeks to Refresh the TCPA Record

My (somewhat unreliable) data protection predictions for 2017

Marriott Breach: More than 500 Million Guest Affected

Ireland: Large-scale inquiries progress as DPC budget and staff numbers ramp up

2024 Tech and Cybersecurity Forecast: Navigating New Frontiers in Business

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Summary – “Industry in One: Financial Services”

SEC Announces Settled Charges Against First American for Cybersecurity Disclosure Controls Failures – Lessons Learned

Protection of Privilege in the Aftermath of a Data Breach

Senate Passes Cybersecurity Information Sharing Act

Financial Stability Board to Develop International Cybersecurity Lexicon

NEW TECH: Cequence Security launches platform to shield apps, APIs from malicious botnets

Conversational AI use cases for enterprises

Grove Pension Solutions fined £40,000 for PECR violation

Q&A: Here’s how Google’s labeling HTTP websites “Not Secure” will strengthen the Internet

The UK ICO’s Regulatory Sandbox Points to a Future of Pro-Active Engagement

Indonesia Publishes Proposed Data Protection Rule

How insurers drive success in the digital transformation race with modern data management

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

Understanding China’s Data Regulatory Regime: What Are Important Data? And Can They Be Transferred Outside Of China?

Digitizing the credit management journey

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs

Takeaways From CCPA Public Forums

UK and U.S. Regulators Introduce New Breach Guidance, Notification Forms

Healthcare Organizations Need to Adapt Their Data Protection Policies to the New Threat Environment

UK: The ICO and the FCA Agree on Strengthened Co-operation and Collaboration

Stay Connected