IT Governance

AUGUST 26, 2021

A new approach to work requires careful consideration – and one of your biggest concerns should be your compliance posture. This might be fine if your only concern is productivity, but if you also have regulatory compliance challenges, you may feel compelled to install such software. Preventing data breaches.

Compliance 119

Compliance Data breaches Privacy Risk 119

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services 68

Financial Services Cybersecurity Insurance Risk 68

HL Chronicle of Data Protection

APRIL 17, 2020

Continuing its focus on COVID-19’s impact on its regulated entities, on April 13, the New York Department of Financial Services (NYDFS) released new cybersecurity guidance in response to the COVID-19 pandemic.

Financial Services 75

Financial Services Risk Cybersecurity Phishing 75

Security Affairs

DECEMBER 26, 2023

Securities and Exchange Commission regulations are expected to fuel heightened interest among malicious actors in orchestrating network intrusions and data breaches within these entities.

Energy and Utilities 118

Energy and Utilities Artificial Intelligence Ransomware Data breaches 118

Thales Cloud Protection & Licensing

NOVEMBER 20, 2023

Data breaches in the retail sector illustrate the vulnerabilities inherent to this industry, emphasizing the need for robust cybersecurity measures. This finding not only underscores the vulnerability of the retail sector but also accentuates the financial repercussions of such breaches. The benefits are twofold.

Retail 83

Retail Cybersecurity Financial Services Encryption 83

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp. NYDFS also found that Carnival had failed to implement basic protocols to prevent data breaches.

Cybersecurity 115

Cybersecurity Insurance Phishing Financial Services 115

Security Affairs

AUGUST 30, 2018

Air Canada data breach – The incident was confirmed by the company and may have affected 20,000 customers (1%) of its 1.7 The data breach of the day is the one suffered by Air Canada that may have affected 20,000 customers (1%) of its 1.7 ” reads the data breach notification. 22-24, 2018.

Data breaches 52

Data breaches IT Passwords Financial Services 52

Data Matters

JUNE 29, 2022

She focuses her practice on cybersecurity issues, including crisis management, data breach response, internal investigations, regulatory compliance, and complex litigation. She advises clients in several industries, including financial services, hospitality, manufacturing, telecommunications, and energy.

Cybersecurity 88

Cybersecurity Data breaches Privacy Compliance 88

The Last Watchdog

JULY 11, 2023

Industry-standard algorithms for encryption can ensure all data, in transit and at rest, is safe. Encryption renders data unreadable to unauthorized individuals, significantly reducing the risk of data breaches. Prioritize continuous threat detection.

IT 189

IT Encryption Risk Financial Services 189

IBM Big Data Hub

DECEMBER 14, 2023

The stakes are especially high for organizations in highly regulated industries because they can be exploited through their digital supply chain, giving hackers access to consumers’ valuable and sensitive data. Consequently, these data breaches can rattle customer trust and the confidence of regulators. 

Cloud 90

Cloud Security Data breaches Cybersecurity 90

Data Protection Report

JUNE 14, 2022

PIPEDA, Law 25, AB PIPA and British Columbia’s Personal Information Protection Act , all grant their respective privacy commissioner investigative powers regarding compliance with their respective privacy statutes. Furthermore, organizations should remember the investigative powers granted to regulators. Procedural Considerations.

Privacy 52

Privacy Data breaches Compliance Financial Services 52

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. It includes multi-disciplinary risk and compliance management solutions and tools, including: IT & security risk management. Compliance management.

Compliance 57

Compliance Risk Government Retail 57

DLA Piper Privacy Matters

FEBRUARY 28, 2022

Primary areas of focus for the DPC in 2021 included the safeguarding of children’s data protection rights, progressing ongoing large-scale inquires and prioritising responding to complaints which have raised issues of substance, with a data subject centric approach to resolution. Financial Services Sector Focus.

Financial Services 97

Financial Services Data breaches Personal data Compliance 97

erwin

APRIL 11, 2019

In fact, organizations should expect increasing pressure on lawmakers to introduce new data protection regulations. A number of high-profile data breaches and scandals have increased public awareness of the issue. For example, many retailers have robust, data-driven e-commerce operations that are international.

GDPR 100

GDPR e-Discovery Compliance Metadata 100

Data Protection Report

AUGUST 2, 2022

Organizations should also be aware of sector-specific statutory obligations which may apply to them, for example in health or financial services industries. In this post we discuss the operational advantages of a good privacy breach record-keeping program. Risk management and mitigation. M&A and Securities law.

Compliance 137

Compliance Privacy Risk Financial Services 137

Data Protection Report

NOVEMBER 2, 2023

On November 1, 2023, the New York Department of Financial Services (NYDFS) finalized the second amendment to its cybersecurity regulations, which are available here. There are several other compliance dates that include different transition periods (500.22(d) Most changes will take effect in 180 days (500.22(c)), d) and 500.22(e)),

Cybersecurity 105

Cybersecurity Compliance Financial Services Government 105

Security Affairs

JUNE 20, 2023

Various data sovereignty challenges arise for many businesses, such as cross-border data transfers, compliance with differing data protection laws, and protecting sensitive information from unauthorized access. DDR in Cybersecurity Data sovereignty has a profound impact on cybersecurity.

Compliance 82

Compliance Cybersecurity Risk Encryption 82

IT Governance

NOVEMBER 23, 2023

The public data set on the ICO (Information Commissioner’s Office) website shows that data security isn’t necessarily better for financial organisations. In fact, in 2020–2022, the financial sector was the second-most attacked sector, topped only by the retail and manufacturing sector. million (about £4.70

Risk 104

Risk Data breaches Authentication Financial Services 104

OpenText Information Management

DECEMBER 4, 2019

Last year, the number of personal records exposed by cyber attacks on the financial services industry was an incredible 446,575,334 – more than triple from the year before. The financial and reputational damage from these data breaches can be immense.

Financial Services 52

Financial Services Data breaches Security Personal data 52

HL Chronicle of Data Protection

FEBRUARY 25, 2020

Companies should take note of two imminent developments in New York in the area of cybersecurity regulation: enforcement of the New York Department of Financial Services (NYDFS) Cybersecurity Regulation (Regulation) and the effective date of the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act or Act).

Cybersecurity 104

Cybersecurity Financial Services Data breaches Insurance 104

erwin

DECEMBER 20, 2018

GDPR went into effect for businesses trading with the European Union, including hefty fines for noncompliance with its data collection, storage and usage standards. But it’s important for organizations to understand that the benefits of data governance extend beyond just GDPR or compliance with any other internal or external regulations.

Government 40

Government Financial Services GDPR Data breaches 40

Thales Cloud Protection & Licensing

NOVEMBER 22, 2021

The full digitization of contracts, subscriptions and consumption of services. This drive towards digital transformation allowed financial services to be one of the sectors that better weathered the Covid 19 pandemic. Financial institutions find themselves in a difficult situation. The challenge.

Digital transformation 71

Digital transformation Financial Services Customer Experience Risk 71

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk 147

Risk Financial Services Insurance Cybersecurity 147

Data Protection Report

APRIL 22, 2021

On April 14, 2021, the New York Department of Financial Services (NYDFS) announced a $3 million settlement with insurance company National Securities Corp. Finally, the regulation includes an annual certification of compliance, to be filed with NYDFS. NYDFS Cybersecurity Regulation.

Cybersecurity 94

Cybersecurity Financial Services Phishing Compliance 94

Armstrong Archives

DECEMBER 18, 2023

These might include legal documents, financial records, or client information. Prevent Data breaches: Cyber attacks are becoming more commonplace and not adequately protecting sensitive information can result in data breaches. This can seriously harm your company’s reputation and lead to financial losses.

Archiving 52

Archiving Paper Records Management Compliance 52

Thales Cloud Protection & Licensing

FEBRUARY 12, 2024

Otherwise, there is a very high risk of organizational wide downtime or data breaches. But don’t just take our word for it, read the customer case study about a large, financial services organization who implemented the PQC Starter Kit from Thales and its partners to address the risks associated with the changeover.

Artificial Intelligence 71

Artificial Intelligence Cloud Risk Digital transformation 71

The Last Watchdog

MARCH 31, 2020

Over the years processes, training and tooling to account for data privacy and data integrity have been woven in, driven by data breach lawsuits and the rise of data handling regulations. Automating security-by-design There is one thing DevOps can’t get around: compliance with data handling rules and regulations.

Security 194

Security Privacy Financial Services Risk 194

IBM Big Data Hub

JANUARY 12, 2024

Cloud-hosted AI services demand the transfer of sensitive information to external servers, which can raise questions about data ownership, jurisdiction and control. The global nature of cloud providers introduces a complex web of compliance challenges as data protection laws differ across regions.

Cloud 102

Cloud Data Privacy Encryption Privacy 102

Thales Cloud Protection & Licensing

NOVEMBER 16, 2020

and GDPR in the EU dictating strong security controls for safeguarding medical data and sensitive personal patient data. While legislators were more lenient at enforcing the regulatory compliance requirements, for the sake of containing the pandemic, the security requirements were not lifted.

Digital transformation 62

Digital transformation Encryption Cloud Data breaches 62

Data Protection Report

FEBRUARY 8, 2022

The NY AG’s settlement with EyeMed is noteworthy for several reasons: (1) The AG appears to use EyeMed’s partial (or incremental) data security measures as evidence that EyeMed understood the value of them, but found its failure to implement them across the organization as evidence of unreasonable security. SHIELD Act.

Passwords 98

Passwords Financial Services Authentication Insurance 98

Data Matters

APRIL 20, 2021

This development indicates that sponsors and fiduciaries may soon be subject to focused scrutiny over their cybersecurity practices in DOL investigations and adds to the multiple existing sources of cybersecurity legal risk in the wake of data breaches or insufficient cybersecurity controls.

Cybersecurity 68

Cybersecurity Insurance Risk Compliance 68

IT Governance

FEBRUARY 21, 2024

402,437,094 known records breached in 240 publicly disclosed incidents Welcome to this week’s global round-up of the biggest and most interesting news stories. At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks.

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

Data Protection Report

JANUARY 7, 2019

The two-year transitional period under the New York State Department of Financial Services (“DFS””) Cybersecurity Regulation , 23 NYCRR 500 (the “Regulation”), will expire on March 1, 2019, with the final remaining requirement becoming effective. Additional guidance.

Cybersecurity 40

Cybersecurity Compliance Financial Services Risk 40

ARMA International

NOVEMBER 7, 2019

The scope of a records and information management (RIM) program in financial services can seem overwhelming. Compared to other industries, the complexities of managing records and information in financial services are arguably some of the toughest to solve, primarily because of the intense regulatory scrutiny.

Financial Services 52

Financial Services Communications Compliance Risk 52

Data Matters

AUGUST 5, 2019

On July 25, 2019, Governor Cuomo signed the two bills into law, one which amended the state’s data breach notification law, and another that created additional obligations for data breaches at credit reporting agencies. 6) adjusts the security program in light of business changes or new circumstances; and. (C)

Cybersecurity 68

Cybersecurity Data breaches Privacy Risk 68

Data Matters

JANUARY 2, 2018

This past year was marked by ever more significant data breaches, growing cybersecurity regulatory requirements at the state and federal levels and continued challenges in harmonizing international privacy and cybersecurity regulations. Data breach litigation risks. Federal Data Breach Legislation.

Cybersecurity 68

Cybersecurity Privacy Data breaches GDPR 68

Data Protection Report

JANUARY 6, 2020

The New York State Department for Financial Services regulations require covered entities to have appropriate record retention policies and procedures and the CCPA provides an extra incentive to implement proper information governance to minimise the costs data access requests. In the U.S.,

Privacy 84

Privacy GDPR Data breaches Risk 84