Data Matters

DECEMBER 20, 2019

The National Association of Insurance Commissioners (the NAIC) held its Fall 2019 National Meeting (Fall Meeting) in Austin, Texas, from December 7 to 10, 2019. 2019 Revisions to the Credit for Reinsurance Model Law and the Credit for Reinsurance Model Regulation.

Insurance 60

Insurance Risk Artificial Intelligence Privacy 60

IT Governance

JANUARY 9, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Publicly disclosed data breaches and cyber attacks: in the spotlight Hathaway breached, 41.5 The compromised data allegedly includes names, email addresses and phone numbers.

Data Privacy 75

Data Privacy Privacy Manufacturing Data breaches 75

Data Protection Report

JUNE 2, 2021

million settlement with two related insurance companies, relating to violations of two different requirements of the NYDFS cybersecurity regulation during the period 2018 to 2019. The regulation includes an annual certification of compliance, to be filed with NYDFS. Affiliate #1 notified NYDFS on November 25, 2019.

Cybersecurity 71

Cybersecurity Insurance Financial Services Phishing 71

Data Matters

MARCH 28, 2022

Department of Health and Human Service’s Office for Civil Rights (“OCR”) issued industry guidance for Health Insurance Portability and Accountability Act (“HIPAA”) regulated entities to take preventative steps to protect against some of the more common, and often successful, cyber-attack techniques. On March 17, 2022, the U.S.

Cybersecurity 88

Cybersecurity Privacy Insurance Risk 88

eSecurity Planet

JANUARY 11, 2022

Investors, business clients, and more continue to look for secure application access for remote workers , provide real-time visibility into cyberattacks, and protect data as it travels from the cloud to edge networks and end-users and back. Top 10 Cybersecurity Startups. Series B Apiiro Security 2019 Tel Aviv, Israel 65 $35.0

Cybersecurity 142

Cybersecurity Cloud Compliance Analytics 142

IT Governance

JANUARY 30, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. The data is more than mere credentials, too – according to Cybernews, most of the exposed data is sensitive. In total, 3,876 domain names were included in the exposed data set.

Data Privacy 52

Data Privacy Retail Privacy Manufacturing 52

Data Matters

JUNE 24, 2021

On June 15, 2021, the SEC announced settled charges against First American Title Insurance Company (First American) for disclosure controls and procedures violations related to a cybersecurity vulnerability that exposed sensitive customer information.

Cybersecurity 68

Cybersecurity Financial Services Risk Compliance 68

Data Matters

JANUARY 2, 2018

This past year was marked by ever more significant data breaches, growing cybersecurity regulatory requirements at the state and federal levels and continued challenges in harmonizing international privacy and cybersecurity regulations. As we begin this New Year, here is list of the top 10 privacy and cybersecurity issues for 2018: EU GDPR.

Cybersecurity 68

Cybersecurity Privacy Data breaches GDPR 68

Reltio

SEPTEMBER 12, 2022

What is Dirty Data, and How Can it Impact Your Bottom Line? Our everyday lives rely on confidence in quality data. We trust that our bank accounts are accurate, our social security numbers are secure, and our insurance policies are up to date. Dirty data is what happens when this goes wrong. Types of Dirty Data.

MDM 52

MDM Marketing Compliance Insurance 52

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services 68

Financial Services Cybersecurity Insurance Risk 68

Hunton Privacy

APRIL 30, 2019

The French Data Protection Authority (the “CNIL”) recently published its Annual Activity Report for 2018 (the “Report”) and released its annual inspection program for 2019. Of the 11,077 complaints received by the CNIL in 2018, approximately 20 percent are the subject of cooperation between EU data protection authorities.

GDPR 48

GDPR Personal data Data breaches Marketing 48

Hunton Privacy

JUNE 6, 2019

On May 24, 2019, Oregon Governor Kate Brown signed Senate Bill 684 (the “Bill”) into law. Additionally, the vendor must notify the covered entity with which the vendor has a contract as soon as possible and no later than 10 days after discovering the breach.

Data breaches 48

Data breaches Insurance Authentication Compliance 48

Data Matters

SEPTEMBER 7, 2022

The National Association of Insurance Commissioners (NAIC) held its Summer 2022 National Meeting (Summer Meeting) August 9–13, 2022. The Privacy Working Group has been reviewing state insurance privacy protections regarding the collection, ownership, use, and disclosure of information gathered in connection with insurance transactions.

Insurance 78

Insurance Paper Privacy Risk 78

eSecurity Planet

SEPTEMBER 16, 2022

52% of companies with more than $10 billion in revenue were hit with fraud. Finally, it also is useful for companies looking for a governance, risk, compliance ( GRC ) solution. According to FTC findings in 2019, government impostor fraud was the most-reported type of fraud. Here are the top 10, in our analysis.

Analytics 111

Analytics Risk Authentication Financial Services 111

eDiscovery Daily

JANUARY 30, 2020

Certainly a motivating factor may have occurred when hackers hit Baltimore, Maryland’s largest city, with a RobbinHood ransomware attack on May 7, 2019. Following the attack, Baltimore City’s board allocated $10 million to an emergency ransomware response to prevent similar attacks. You can register to attend here.

Ransomware 69

Ransomware Cybersecurity Insurance Education 69

HL Chronicle of Data Protection

MAY 7, 2019

We will explore how certain common hacks work from a technical perspective and how to mitigate related risks from a legal and compliance perspective. Lawyers, privacy officers, compliance officers, and executives are key figures in helping manage such risks, but many may not understand how various hacks work. – 10:30 a.m.

Risk 40

Risk IT Compliance Privacy 40

eSecurity Planet

MARCH 28, 2023

10+ million authentications a day) as well as distributed environments requiring local authentication survivability across multiple geographies (e.g. Microsoft Azure Microsoft Hyper-V 2016/2019 R2/2019 VMware ESXi up to 7.0 Applicable Metrics Aruba ClearPass is deployed in high-volume authentication environments (e.g.

Authentication 113

Authentication Access IoT MDM 113

IT Governance

MAY 2, 2019

A third of businesses and a fifth of charities were hit by a cyber attack or data breach in the past year, the UK government’s Cyber Security Breaches Survey 2019 has found. More medium-sized (31% vs 19%) and large businesses (35% vs 24%) have invested in cyber insurance. appeared first on IT Governance Blog.

Data breaches 69

Data breaches GDPR IT Compliance 69

Data Matters

FEBRUARY 10, 2022

Chair Gensler also stressed the importance of proper disclosure regimes for non-public-company service providers — including, for example, cloud companies, investor reporting systems and providers, and data analytics. He also signaled the SEC’s continued focus on enforcement and cooperation with other law enforcement agencies.

Cybersecurity 88

Cybersecurity Marketing Risk Compliance 88

IT Governance

FEBRUARY 21, 2019

This week, we discuss a security flaw affecting 1Password, Dashlane, KeePass and LastPass; the prevalence of historic vulnerabilities in corporate IT systems; the increase in formjacking attacks; and Wendy’s $50 million data breach settlement. Hello, and welcome to the IT Governance podcast for Thursday, 21 February 2019.

Passwords 76

Passwords Data breaches Retail Government 76

Data Protection Report

MAY 17, 2019

On May 16, 2019, the California Senate Appropriations Committee held a hearing that included S.B. The bill would have deleted that requirement and would have substituted an authorization to provide general guidance on compliance with CCPA. 10-word summary. Social media data – right to remove and prohibit sale.

Retail 40

Retail Privacy Insurance Manufacturing 40

Info Source

JANUARY 31, 2019

31, 2019 – Ephesoft, Inc. , This first-to-market hybrid offering enables organizations to optimize their existing Ephesoft Transact on-premise solution with improved performance, processing up to 2,500 pages per minute – more than 10 times faster than a strictly on-premise version. IRVINE, Calif. –

Cloud 40

Cloud Artificial Intelligence Insurance Marketing 40

HL Chronicle of Data Protection

OCTOBER 21, 2019

Regulators, industry experts, and researchers provided insight into health privacy and security enforcement trends, emerging threats, and new tools at a recent conference focused on the Health Insurance Portability and Accountability (HIPAA) regulatory framework. New guidance and frameworks for health data not regulated by HIPAA.

Risk 40

Risk Compliance Privacy Phishing 40

eSecurity Planet

FEBRUARY 16, 2021

Without a comprehensive network segmentation or microsegmentation policy, malicious actors can also move laterally within your organization’s network, infect endpoints and servers, and demand a ransom for access to your data. Attackers will inform the victim that their data is encrypted. How ransomware works. Screenshot example.

Ransomware 97

Ransomware Encryption Insurance Cloud 97

Data Protector

OCTOBER 11, 2017

What follows below is an edited version of the debate in the House of Lords of the Second Reading of the Data Protection Bill, held on 10 October. Data is not just a resource for better marketing, better service and delivery. Data is used to build products themselves. It has become a cliché that data is the new oil.

GDPR 120

GDPR Personal data Government IT 120

Data Matters

JULY 12, 2019

On July 8, 2019, the long-awaited statement (Statement) on custody of digital asset securities was released jointly by the staffs (Staffs) of the U.S. These recordkeeping rules help securities regulators determine whether broker-dealers are in compliance with securities laws. However, a March 2019 letter from Paul G.

Security 74

Security Marketing Blockchain Insurance 74

Data Protection Report

JUNE 6, 2019

On May 29, 2019, Nevada enacted an amendment to its online privacy law, requiring businesses to offer consumers a right to opt-out of the sale of their personal information. While it has some similarities to the California Consumer Privacy Act (CCPA), it contains notable differences.

Sales 40

Sales Privacy Insurance Manufacturing 40

Data Matters

OCTOBER 23, 2019

On October 10, 2019, this wait finally ended. Addressing a key compliance issue for businesses, the proposed regulations provide a detailed set of rules on how businesses should incorporate data security concerns into their right to know responses. Right to Opt-Out of Sale. Specific Guidance on Right to Know Requests.

Sales 60

Sales Privacy Passwords Compliance 60

Information Matters

NOVEMBER 2, 2018

I recently sat down with Gus Tugendhat, founder of UK-based government tenders and contracts data provider, Tussell. Gus told me about the origins of Tussell, the market it is addressing, its data-driven solution for businesses tendering for public sector contracts and the challenges of growing this innovative startup business.

Sales 40

Sales Marketing Government Mining 40

Data Protection Report

OCTOBER 11, 2019

On October 10, 2019, with just weeks to go until the law goes into effect, the California Attorney General released the long-awaited draft regulations for the California Consumer Privacy Act (CCPA). Written comments will be accepted by the Attorney General until 5 PM (Pacific time) on December 6, 2019. For example:ser.

Sales 40

Sales Retail Privacy Access 40

Data Matters

OCTOBER 22, 2019

On October 10, 2019, this wait finally ended. One of the main objectives of the CCPA is to require businesses to be more transparent about what data they collect and how they use it. This is the first introduction of a data collection prohibition in the CCPA. Detailed Analysis On Consumer Notice.

Privacy 60

Privacy Sales Paper Compliance 60