Compliance, Education and GDPR - Information Management Today

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S.

Data Privacy

Data Privacy Compliance Privacy Security

Happy Compliance Officer Day!

Thales Cloud Protection & Licensing

SEPTEMBER 25, 2023

Happy Compliance Officer Day! Here’s the thing about compliance, most people know that it’s necessary, but it can often be seen as an arduous blocker to doing fun things like cycling on your own - or growing a business in a fast-paced digital economy! In the world of IT, the compliance officer's role is not a glamorous one.

Compliance

Compliance GDPR Risk Education

7 steps to highly effective GDPR compliance

IT Governance

AUGUST 21, 2019

The GDPR (General Data Protection Regulation) hasn’t exactly crept up unnoticed over the past year or so, but it’s still caught many organisations by surprise. If you’re overwhelmed about GDPR compliance or find most implementation advice too technical and complex, don’t worry. But exactly how should you proceed?

GDPR

GDPR Compliance Personal data Access

Government surveying further education providers before Brexit

IT Governance

SEPTEMBER 24, 2019

Among the uncertainty surrounding GDPR (General Data Protection Regulation) compliance – particularly with Brexit complicating things – the UK government has been a reliable source for advice. The GDPR and Brexit. The post Government surveying further education providers before Brexit appeared first on IT Governance Blog.

Education

Education Government GDPR Compliance

What UK charities need to know about GDPR compliance

IT Governance

AUGUST 2, 2019

If you think that charities might be shown lenience under the GDPR (General Data Protection Regulation) , you’re wrong. The breach was reported to the ICO (Information Commissioner’s Office), which oversees GDPR compliance in the UK, and Mermaids is now subject to disciplinary action. What are charities’ GDPR requirements?

GDPR

GDPR Compliance Personal data Risk

Exploiting GDPR to Get Private Information

Schneier on Security

AUGUST 13, 2019

A researcher abused the GDPR to get information on his fiancee: It is one of the first tests of its kind to exploit the EU's General Data Protection Regulation (GDPR) , which came into force in May 2018. Generally if it was an extremely large company -- especially tech ones -- they tended to do really well," he told the BBC.

GDPR

GDPR Education Compliance IT

Wake up to the reality of the GDPR: What you need to know about compliance

IT Governance

JANUARY 30, 2019

With a mammoth GDPR fine handed out to Google last week, it’s time for organisations to reassess their understanding of the Regulation. We’re through the eye of the GDPR (General Data Protection Regulation) storm. The GDPR concerns personal data that is: Collected in an enterprise context; and. Some began to lose faith.

GDPR

GDPR Compliance Personal data Data breaches

More than half of schools not compliant with the GDPR

IT Governance

MAY 2, 2019

In a recent survey from edtech giant RM Learning and Trend Micro , 14% of respondents also admitted to not having a clear plan to become compliant with the GDPR (General Data Protection Regulation). Easy steps to reduce the risks and demonstrate GDPR compliance. Demonstrate compliance with GDPR.co.uk. The GDPR.co.uk

GDPR

GDPR Data breaches Compliance Phishing

The GDPR: A year in review

IT Governance

MAY 23, 2019

A year ago this week, the GDPR (General Data Protection Regulation) took effect, promising to revolutionise information security. Compliance fatigue’. According to some of our experts, like Senior Consultancy Manager Nicky Whiting, many organisations have become complacent about their GDPR compliance requirements.

GDPR

GDPR Data breaches Compliance Retail

3 tips for successful GDPR staff training

IT Governance

NOVEMBER 21, 2017

When organisations look to initiate a compliance programme, the ‘people’ factor is often overlooked. Staff awareness should be a major concern for organisations looking to comply with the EU General Data Protection Regulation (GDPR). Why implement a GDPR staff awareness training programme?

GDPR

GDPR Compliance Education Data breaches

Is your school GDPR-compliant? Use our checklist to find out

IT Governance

MARCH 28, 2019

At the recent ASCL (Association of School and College Leaders) conference , a guest said to us: “The GDPR ? Granted, 2018 was very much ‘the year of the GDPR’ in some circles. It came into effect in May 2018, following much discussion and a last-minute surge from organisations that left compliance until the last minute.

GDPR

GDPR Compliance Data breaches Personal data

The GDPR has arrived – are you compliant?

IT Governance

JUNE 14, 2018

The EU General Data Protection Regulation (GDPR) has been in effect for almost three weeks now – are you compliant, are you still working towards compliance or are you unsure of where to start? Compliance is not optional, and for many organisations it will be a lengthy process. The first steps towards GDPR compliance .

GDPR

GDPR Compliance Education Risk

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Thales Cloud Protection & Licensing

JANUARY 11, 2023

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List. Throughout 2022, Thales hosted more than 40 webinars on a wide variety of cybersecurity topics, including, cloud security, data sovereignty, compliance, data threat trends, and rethinking approaches to role-based authentication.

Compliance

Compliance Cloud Security Financial Services

Does your use of CCTV comply with the GDPR?

IT Governance

OCTOBER 3, 2019

You might be surprised to learn that CCTV footage is subject to the GDPR (General Data Protection Regulation). Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant. Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant.

GDPR

GDPR Privacy Retail Personal data

How to implement a GDPR staff awareness training programme

IT Governance

OCTOBER 29, 2018

When organisations look to initiate a GDPR compliance programme, the ‘people’ factor is often overlooked. Yet staff awareness and education are key components of any organisation’s GDPR compliance framework. . Staff awareness training for the GDPR does not mean simply briefing your employees about the Regulation.

GDPR

GDPR Compliance Security awareness Education

How to implement a GDPR staff awareness training programme

IT Governance

OCTOBER 29, 2018

When organisations look to initiate a GDPR compliance programme, the ‘people’ factor is often overlooked. Yet staff awareness and education are key components of any organisation’s GDPR compliance framework. . Staff awareness training for the GDPR does not mean simply briefing your employees about the Regulation.

GDPR

GDPR Compliance Security awareness Education

Using Information Governance with a Privacy Compliance Plan as the Fulcrum for Data Privacy and Continuous Compliance

Information Governance Perspectives

MAY 10, 2020

In May of 2020 I was honored to speak at the MERv conference with John Frost of Box on the topic of Using Information Governance with a Privacy Compliance Plan as the Fulcrum for Data Privacy and Continuous Compliance. Privacy makes data governance ethical and tangible, and compliance leaders understand that.

Compliance

Compliance Information governance Privacy Data Privacy

Government survey reveals GDPR awareness is falling short

IT Governance

FEBRUARY 8, 2018

The Cyber Security Breaches Survey 2018 from the Department for Digital, Culture, Media and Sport (DCMS) has revealed that only 38% of businesses and 44% of charities have heard of the General Data Protection Regulation (GDPR). Clearly there is still work to be done to ensure compliance by the 25 May deadline. Key findings.

GDPR

GDPR Government Education Compliance

GDPR automated decision-making and profiling: what are the requirements?

IT Governance

NOVEMBER 9, 2018

In addition to data subjects’ rights to be informed, of access, to rectification, to erasure, to restrict processing, to data portability and to object, the EU’s GDPR (General Data Protection Regulation) sets out requirements relating to automated individual decision-making, including profiling. What is profiling under the GDPR?

GDPR

GDPR Personal data Financial Services Compliance

62% of organisations unaware of the GDPR

IT Governance

FEBRUARY 23, 2018

There is an alarming lack of awareness across all industries about the EU General Data Protection Regulation (GDPR) , according to a government survey. Almost two thirds (62%) of respondents hadn’t heard of the Regulation, and only about 10% had taken steps to meet its compliance requirements. Preparing for the GDPR.

GDPR

GDPR Compliance Insurance Personal data

Why is the GDPR still something I should be concerned about?

IT Governance

OCTOBER 15, 2018

The EU’s GDPR (General Data Protection Regulation) superseded all laws based on the EU’s Data Protection Directive, including the UK’s Data Protection Act 1998, on 25 May 2018. Some organisations believe that a simple privacy notice is all that is required, but the GDPR actually demands far more than that. . GDPR complexities .

GDPR

GDPR Data breaches Personal data Data collection

GDPR priorities in the lead up to May

IT Governance

MARCH 1, 2018

GDPR compliance should be a priority and high on every organisation’s agenda with only three months until the regulation comes into effect on 25 May 2018. Training – make sure those responsible for the project are trained on implementing the GDPR in the workplace.

GDPR

GDPR Compliance Privacy Data breaches

Only 25% of UK law firms are prepared for the GDPR

IT Governance

NOVEMBER 20, 2017

A recent report from CenturyLink has highlighted a lack of preparation among UK law firms for the upcoming EU General Data Protection (GDPR) compliance deadline. The report questioned more than 150 legal sector IT decision makers in the UK and discovered that only 25% believe they are currently compliant with the GDPR.

GDPR

GDPR Compliance Paper Data breaches

An essential GDPR guide for schools

IT Governance

JULY 17, 2018

The EU GDPR ( General Data Protection Regulation ) places greater obligations on how organisations handle personal data – including schools. Whatever their size or setting, schools and trusts are expected to demonstrate compliance with the Regulation and put in place measures to protect the data under their care.

GDPR

GDPR Compliance Personal data Education

Are your staff GDPR trained? Find out what you need to do

IT Governance

OCTOBER 30, 2018

Staff awareness training is a core component of GDPR compliance, yet many organisations haven’t implemented the necessary measures. That’s hardly a surprise, given how few resources organisations dedicate to educating their staff on how to handle sensitive information. Staff training under the GDPR.

GDPR

GDPR Government Data breaches Information Security

Are your staff GDPR trained? Find out what you need to do

IT Governance

OCTOBER 30, 2018

Staff awareness training is a core component of GDPR compliance, yet many organisations haven’t implemented the necessary measures. That’s hardly a surprise, given how few resources organisations dedicate to educating their staff on how to handle sensitive information. Staff training under the GDPR.

GDPR

GDPR Government Data breaches Information Security

What are the Data Subject Rights under the GDPR?

IT Governance

JUNE 15, 2018

Even though the EU General Data Protection Regulation (GDPR) is now in effect, many organisations are still working towards compliance. The GDPR gives individuals eight rights relating to their personal data. The GDPR gives individuals eight rights relating to their personal data. Become a GDPR expert.

GDPR

GDPR Personal data Compliance Access

Top 10 Governance, Risk and Compliance (GRC) Vendors

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. It includes multi-disciplinary risk and compliance management solutions and tools, including: IT & security risk management. Compliance management.

Compliance

Compliance Risk Government Retail

Train Your Team to Ensure You Achieve ISO 27001 Certification

IT Governance

OCTOBER 26, 2022

They are also usually responsible for selecting and training an implementation team that includes risk management, information security, audit and compliance specialists. The ISO 27005 risk management standard describes how to conduct an information security risk assessment to achieve certification to and maintain compliance with ISO 27001.

Compliance

Compliance Risk Education Information Security

Meeting Evolving Business Needs – A Conversation Between RIM Educators and Thought Leaders

Information Governance Perspectives

MAY 8, 2020

Hunter, Dr. Tao Jin, Dr. Patricia Franks, Rae Lynn Haliday, Cheryl Pederson, and Wendy McLain on the topic of Meeting Evolving Business Needs – A Conversation Between RIM Educators and Thought Leaders. And recruiters are looking for that education and experience. Their executives… and their attorneys, they all realize this.

Education

Education Digital transformation Search queries Information governance

Belgian Privacy Commission Issues Guidance on Data Protection Impact Assessments Under the GDPR

Data Matters

APRIL 5, 2018

On 28 February 2018, the Belgian Commission for the Protection of Privacy (the “Privacy Commission”) published a recommendation setting out its approach to Data Protection Impact Assessments (“DPIAs”), and in doing so published a “White List” and a “Black List” of processing operations, pursuant to the General Data Protection Regulation (“GDPR”).

GDPR

GDPR Privacy Personal data Education

Universities across the UK and North America confirm cyber attack

IT Governance

JULY 28, 2020

Blackbaud, which provides education administration, fundraising and financial management software, was infected with ransomware, giving cyber criminals access to a wealth of sensitive information. At least eight educational institutions in the US and Canada were also affected, as well as several charities on both sides of the Atlantic.

GDPR

GDPR Education Ransomware Data breaches

France: The CNIL publishes a practical guide on Data Protection Officers

DLA Piper Privacy Matters

NOVEMBER 29, 2021

The guide is in line with the Article 29 Working Party Guidelines on Data Protection Officers (WP 243 rev 01) , but provides additional insights and practical guidance to organizations that designate a DPO in respect of GDPR and French data protection act requirements. Be the point of contact on GDPR issues.

GDPR

GDPR Compliance Personal data Communications

HMRC forced to delete 5 million voice records after GDPR gaffe

IT Governance

MAY 9, 2019

HMRC (HM Revenue and Customs) has been told to delete more than five million people’s voice records after it was discovered that the way the information was collected breached the GDPR (General Data Protection Regulation). Compliance with a legal obligation : when you need to process personal data to meet other legal requirements.

GDPR

GDPR Personal data Education Passwords

AI and AI policy top the agenda at CILIP Supplier Forum

CILIP

MARCH 4, 2024

This article is featured on the AI hub AI policy is set to become the new GDPR, and the release of the UK government’s AI Regulation White Paper this month is accelerating government action on building a legal framework for AI regulation.

Education

Education Paper Risk Libraries

Data Privacy Compliance Isn’t Just for Europe or California Anymore: Data Privacy Trends

eDiscovery Daily

APRIL 10, 2019

We have covered Europe’s General Data Protection Regulation (GDPR) over several posts the past couple of years and even conducted a webcast on the topic last year. Do they mimic GDPR policies? Unlike GDPR, POPIA asserts companies also have “personal data” that requires protection. Not necessarily.

Data Privacy

Data Privacy Privacy Compliance GDPR

What are the best books on data privacy?

IT Governance

MARCH 4, 2019

EU General Data Protection Regulation (GDPR) – An Implementation and Compliance Guide. This bestselling guide is the ideal companion for those trying to understand how the GDPR affects their organisation. EU GDPR: A Pocket Guide. It also provides invaluable advice on how you can meet the GDPR’s requirements.

Data Privacy

Data Privacy Privacy GDPR Compliance

Victims of Blackbaud ransomware attack to take legal action

IT Governance

SEPTEMBER 24, 2020

Blackbaud, which provides education administration, fundraising and financial management support, was attacked earlier this year, with cyber criminals accessing victims’: Names; Dates of birth; Addresses; Phone numbers; Email addresses; Donation history; and Events that individuals attended. Do they have a case? they have suffered distress).

Ransomware

Ransomware Data breaches Education GDPR

Italy’s Data Protection Authority temporarily blocks ChatGPT over privacy concerns

Security Affairs

APRIL 1, 2023

If the company will fail to notify Italy’s data protection agency it will be fined up to EUR 20 million or 4% of the total worldwide annual turnover in compliance to the General Data Protection Regulation (GDPR). We will engage with the Garante with the goal of restoring your access as soon as possible.

Privacy

Privacy Personal data GDPR Compliance

Ready for GDPR? Here’s a Webcast that Can Help You Get Ready: eDiscovery Best Practices

eDiscovery Daily

FEBRUARY 5, 2018

If you think that your organization isn’t subject to the requirements of Europe’s impending General Data Protection Regulation (GDPR), you may be wrong about that. On Wednesday, February 21 at noon CST (1:00pm EST, 10:00am PST), CloudNine will conduct the webcast eDiscovery and the GDPR: Ready or Not, Here it Comes!

GDPR

GDPR Data Privacy Compliance Privacy

54% of universities reported a data breach in the past year

IT Governance

AUGUST 18, 2020

According to the study , 46% of university staff haven’t received staff awareness training in the past year, and universities spend just £7,529 a year on average educating their employees. Redscan found a similar lack of investment in training for students. Affordable cyber security. It’s not just universities that need to be concerned.

Data breaches

Data breaches GDPR Education Phishing

A Guide to Key Management as a Service

Thales Cloud Protection & Licensing

JUNE 15, 2023

KMaaS providers typically offer features such as FIPS 140-2 certified Hardware Security Modules (HSMs) to ensure the highest security and compliance for sensitive keys. Sustained compliance: Encryption and effective key management are key requirements across all security and privacy regulations.

Encryption

Encryption Compliance Cloud Authentication

Weekly podcast: MyHeritage, PageUp, Rochester Grammar School and, yes, the GDPR

IT Governance

JUNE 8, 2018

This week, we discuss the compromise of 92 million MyHeritage users’ credentials, “unauthorised activity” at PageUp, a missing memory stick at Rochester Grammar School, and the first couple of weeks of the GDPR. The Information Commissioner’s Office has been notified, as required by the GDPR. Here are this week’s stories.

GDPR

GDPR Passwords Authentication Information Security

Six eDiscovery Trends for 2024

eDiscovery Daily

JANUARY 10, 2024

The General Data Protection Regulation (GDPR) is an early example of this. Legal teams and eDiscovery experts will need to be aware of the region that data is collected from and ongoing changes in the legal landscape to maintain compliance. This may be especially true for data that crosses national borders.

Blockchain

Blockchain Artificial Intelligence Cloud Compliance

Security Compliance & Data Privacy Regulations

Happy Compliance Officer Day!

Trending Sources

7 steps to highly effective GDPR compliance

Government surveying further education providers before Brexit

What UK charities need to know about GDPR compliance

Exploiting GDPR to Get Private Information

Wake up to the reality of the GDPR: What you need to know about compliance

More than half of schools not compliant with the GDPR

The GDPR: A year in review

3 tips for successful GDPR staff training

Is your school GDPR-compliant? Use our checklist to find out

The GDPR has arrived – are you compliant?

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Does your use of CCTV comply with the GDPR?

How to implement a GDPR staff awareness training programme

How to implement a GDPR staff awareness training programme

Using Information Governance with a Privacy Compliance Plan as the Fulcrum for Data Privacy and Continuous Compliance

Government survey reveals GDPR awareness is falling short

GDPR automated decision-making and profiling: what are the requirements?

62% of organisations unaware of the GDPR

Why is the GDPR still something I should be concerned about?

GDPR priorities in the lead up to May

Only 25% of UK law firms are prepared for the GDPR

An essential GDPR guide for schools

Are your staff GDPR trained? Find out what you need to do

Are your staff GDPR trained? Find out what you need to do

What are the Data Subject Rights under the GDPR?

Top 10 Governance, Risk and Compliance (GRC) Vendors

Train Your Team to Ensure You Achieve ISO 27001 Certification

Meeting Evolving Business Needs – A Conversation Between RIM Educators and Thought Leaders

Belgian Privacy Commission Issues Guidance on Data Protection Impact Assessments Under the GDPR

Universities across the UK and North America confirm cyber attack

France: The CNIL publishes a practical guide on Data Protection Officers

HMRC forced to delete 5 million voice records after GDPR gaffe

AI and AI policy top the agenda at CILIP Supplier Forum

Data Privacy Compliance Isn’t Just for Europe or California Anymore: Data Privacy Trends

What are the best books on data privacy?

Victims of Blackbaud ransomware attack to take legal action

Italy’s Data Protection Authority temporarily blocks ChatGPT over privacy concerns

Ready for GDPR? Here’s a Webcast that Can Help You Get Ready: eDiscovery Best Practices

54% of universities reported a data breach in the past year

A Guide to Key Management as a Service

Weekly podcast: MyHeritage, PageUp, Rochester Grammar School and, yes, the GDPR

Six eDiscovery Trends for 2024

Stay Connected