Compliance, Exercises, Insurance and Security - Information Management Today

California Legislature Passes Bill Regulating Data Brokers

Hunton Privacy

SEPTEMBER 21, 2023

However, the Act would not extend to entities covered by the Fair Credit Reporting Act, the Gramm-Leach-Bliley Act and the Health Insurance Portability and Accountability Act, as well as entities covered by the California Insurance Code. If enacted, the Act’s provisions would become effective in multiple steps between 2024 and 2028.

Insurance

Insurance Personal data Sales Compliance

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

AIIM

JULY 24, 2018

Three Critical Steps for GDPR Compliance. Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR Compliance Starts with Data Discovery. There are a number of areas where GDPR strengthens compliance obligations and imposes additional legal liabilities.

GDPR

GDPR Compliance Privacy Data Privacy

More Than 90% of IT Decision Makers Struggle to Evaluate Security Products

eSecurity Planet

OCTOBER 18, 2022

The vast majority of cybersecurity decision makers – 91 percent, in fact – find it difficult to select security products due to unclear marketing, according to the results of a survey of 800 cybersecurity and IT decision makers released today by email security company Egress. Assessing AI and Security Training.

IT

IT Security Cybersecurity Marketing

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

2018 Global Data Regulations & Compliance Heat Up – Are you Ready?

Thales Cloud Protection & Licensing

MARCH 6, 2018

Every year, new regulations and compliance orders come into play that impact businesses across the world. You can find more information on the Thales website about GDPR and compliance. The post 2018 Global Data Regulations & Compliance Heat Up – Are you Ready? appeared first on Data Security Blog | Thales e-Security.

Compliance

Compliance GDPR Encryption Data Privacy

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. NYDFS: Setting a new bar for state cybersecurity regulation.

Insurance

Insurance Cybersecurity Data breaches Financial Services

Understanding HIPAA: A Guide to Avoiding Common Violations

Armstrong Archives

AUGUST 25, 2023

The Health Insurance Portability and Accountability Act (HIPAA) ensures individuals’ health data protection and privacy. This includes insurance companies, nurses, and doctors. In this article, we’ll talk more about the HIPAA, the importance of compliance, some common HIPAA violations, and more!

Computer and Electronics

Computer and Electronics Insurance Compliance Risk

Telehealth Hazard? HHS Loosens HIPAA Standards for Telemedicine

Adam Levin

MARCH 18, 2020

While the transition to remote appointments may help flatten the curve of Covid-19 cases and provide much-needed relief to medical professionals, it does create a new set of cybersecurity concerns, especially regarding compliance with the Health Insurance Portability and Accountability Act (HIPAA ).

Communications

Communications Insurance Compliance Cybersecurity

U.S. Banking Agencies Signal Closer Review of Cryptocurrency Activities

Data Matters

DECEMBER 1, 2021

Concurrently, the OCC , the Board of Governors of the Federal Reserve System, and the Federal Deposit Insurance Corporation (the Agencies) released a joint statement alerting the industry of their intent to provide additional guidance in the coming months concerning certain activities related to cryptoassets conducted by banking organizations.

Compliance

Compliance Risk Insurance Sales

UAE: Federal level data protection law enacted

DLA Piper Privacy Matters

DECEMBER 3, 2021

International businesses with global privacy compliance programs should seek to expand those to cover the UAE and achieve some synergies. The requirements regarding keeping data secure, and new data breach obligations, will definitely up the ante for businesses in the UAE to take cyber security seriously. Data security.

Personal data

Personal data Data breaches GDPR Compliance

FBI: Millions in Losses resulted from attacks against Healthcare payment processors

Security Affairs

SEPTEMBER 15, 2022

Below is the list of mitigations recommended by the FBI: Ensure anti-virus and anti-malware is enabled and security protocols are updated regularly and in a timely manner. Conduct regular network security assessments to stay up to date on compliance standards and regulations. Require all accounts with password logins (e.g.,

Passwords

Passwords Phishing Authentication Communications

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Hunton Privacy

DECEMBER 1, 2020

The group has diversified its activities into the banking and insurance, travel agency and e-commerce sectors. Between June 8, 2018 and April 6, 2019, the CNIL received 15 complaints from individuals relating to the exercise of their data protection rights with affiliates of the Carrefour Group. and carrefour-banque.fr

GDPR

GDPR Personal data Data collection Marketing

Saudi Arabia’s New Data Protection Law – What you need to know

DLA Piper Privacy Matters

OCTOBER 7, 2021

Ongoing compliance with existing laws and NDMO Personal Data Protection Interim Regulations. The PDPL does not appear to repeal the existing NDMO Personal Data Protection Interim Regulations, and so Data Controllers would appear to still need to comply with those regulations, while developing their compliance with the new PDPL.

Personal data

Personal data Compliance Computer and Electronics IoT

CCPA Marches On: California Attorney General Proposes Further Revisions to CCPA Regulations, Industry Pleads for Enforcement Delay Amid COVID-19 Crisis

Data Matters

APRIL 10, 2020

Businesses will not need to dramatically change compliance plans as the proposed revised regulations seek to refine requirements in prior drafts rather than introduce any wholesale changes to the regulatory framework. For more resources and information on CCPA compliance planning, visit Sidley’s CCPA Monitor.

Privacy

Privacy Sales Insurance Compliance

Guidelines Published for Changes to the Singapore Data Privacy Regime

Data Matters

DECEMBER 2, 2020

financial information, life/health insurance information, specified medical information, information leading to identification of a vulnerable adult, child, or young person who is the subject of an investigation or relating to court proceedings involving a child and young person, or.

Data Privacy

Data Privacy Privacy Data breaches Personal data

Spanish DPA Publishes Report on Data Processing Activities in Relation to COVID-19

Hunton Privacy

MARCH 25, 2020

Performing a task carried out in the public interest: Article 6(1)(e) of the GDPR may also provide a legal basis where data processing is necessary to perform a task carried out in the public interest or in the course of exercising official authority vested in the data controller.

Personal data

Personal data GDPR Risk Insurance

EUROPE: New privacy rules for connected vehicles in Europe?

DLA Piper Privacy Matters

MAY 5, 2020

To achieve these, local data processing or anonymization of data must be considered; The security and confidentiality of the personal data processed in the context of connected vehicles must be guaranteed, in particular by implementing measures such as the encryption of the communication channel. . geolocation data; biometric data; etc.)

Privacy

Privacy Personal data GDPR Insurance

The Netherlands: Health sector once again on the radar of DPA

DLA Piper Privacy Matters

DECEMBER 14, 2018

Just a few months after the Dutch DPA inspected more than 100 hospitals and health insurers on whether they comply with the obligation to appoint (and publish the details of) a Data Protection Officer, this week it announced more news and monitoring action with respect to the health sector. Ilias Abassi.

GDPR

GDPR Personal data Insurance Privacy

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

identifiers such as a real name, alias, postal address, unique personal identifier, online identifier, internet protocol address, email address, account name, Social Security number, driver’s license number or passport number. Businesses cannot discriminate against consumers who exercise any of their rights under AB 375.

GDPR

GDPR Privacy Sales Data breaches

Cybersecurity: Managing Risks With Third Party Companies

Cyber Info Veritas

JULY 19, 2018

This means that instead of going through the target’s heightened security, they look to use a valid entry point to gather confidential data while also masking themselves as genuine users. This entry point is usually through the third party vendor whose security protocols are less secure.

Risk

Risk Cybersecurity Compliance Data breaches

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

Data Matters

SEPTEMBER 24, 2019

The GDPR was designed to harmonize data protection laws across Europe and to protect EU residents’ data privacy rights; and, its coming triggered significant privacy and data protection compliance activities amongst organizations doing business in the EU and working with the personal data of EU residents. An Overview of the BDPA.

Personal data

Personal data GDPR Data Privacy Privacy

How to improve your cyber resilience

IT Governance

FEBRUARY 15, 2019

That may sound daunting, but when cyber resilience is done right, your cyber security and incident response strategy will seem straightforward. Cyber resilience risk assessments cover everything associated with cyber security – i.e. the way you mitigate risks, meet regulatory requirements and deal with incidents that can’t be prevented.

Risk

Risk GDPR Communications Insurance

California Enacts Broad Privacy Protections Modeled on GDPR

Data Matters

JUNE 29, 2018

identifiers such as a real name, alias, postal address, unique personal identifier, online identifier, internet protocol address, email address, account name, Social Security number, driver’s license number or passport number. Businesses cannot discriminate against consumers who exercise any of their rights under AB 375.

GDPR

GDPR Privacy Sales Data breaches

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

Hunton Privacy

OCTOBER 14, 2021

During the week of October 4, 2021, California Governor Gavin Newsom signed into law bills amending the California Privacy Rights Act of 2020 (“CPRA”), California’s data breach notification law and California’s data security law. Genetic Data: California Data Breach Notification and Data Security Law Amendment Bill.

Privacy

Privacy Insurance Security Data breaches

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

For many readers of this post, a huge amount of work will have been done in recent months in building up to compliance with the new regime. Many of our clients ask us when and how they may be called upon to demonstrate compliance with the GDPR. What do we expect in terms of enforcement priorities? Challenge #1.

GDPR

GDPR Personal data Compliance Data breaches

Network Security Architecture: Best Practices & Tools

eSecurity Planet

APRIL 26, 2024

Network security architecture is a strategy that provides formal processes to design robust and secure networks. Effective implementation improves data throughput, system reliability, and overall security for any organization. Network Elements Networks connect physical and virtual assets and control the data flow between them.

Security

Security Cloud Cybersecurity Risk

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

California law also requires businesses that suffer a breach of security to disclose the breach to consumers, and in some instances law enforcement, if sensitive information is compromised. This page will enable consumers to exercise the right to opt-out of the sale of their personal information. Anti-Discrimination Provisions.

Privacy

Privacy Sales Compliance Cybersecurity

FRANCE: New data protection law declared constitutional and ready for promulgation

DLA Piper Privacy Matters

JUNE 14, 2018

This provision modifies article 9 of the existing law, providing that personal data relating to criminal convictions and offences or related security measures may be processed only “ under the control of official authority ” or by certain categories of persons listed in the law.

GDPR

GDPR Personal data Insurance Government

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

California law also requires businesses that suffer a breach of security to disclose the breach to consumers, and in some instances law enforcement, if sensitive information is compromised. This page will enable consumers to exercise the right to opt-out of the sale of their personal information. Anti-Discrimination Provisions.

Privacy

Privacy Sales Education Compliance

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

OCTOBER 8, 2018

Managing the interaction of these new requirements with existing obligations under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), California’s Confidentiality of Medical Information Act (CMIA), and other health privacy laws will continue to be an area of focus in the health privacy community for years to come.

Privacy

Privacy Healthcare Sales Insurance

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

OCTOBER 8, 2018

Managing the interaction of these new requirements with existing obligations under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), California’s Confidentiality of Medical Information Act (CMIA), and other health privacy laws will continue to be an area of focus in the health privacy community for years to come.

Privacy

Privacy Healthcare Sales Insurance

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

HL Chronicle of Data Protection

OCTOBER 8, 2018

Managing the interaction of these new requirements with existing obligations under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), California’s Confidentiality of Medical Information Act (CMIA), and other health privacy laws will continue to be an area of focus in the health privacy community for years to come.

Privacy

Privacy Healthcare Sales Insurance

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Notice

Data Matters

OCTOBER 22, 2019

This obligation could impose significant recordkeeping, contracting and other compliance burdens on both businesses that obtain, as well as those that provide personal information. The regulations require businesses to explain that they may not discriminate against consumers who exercise their CCPA rights. Right to Non-Discrimination.

Privacy

Privacy Sales Paper Compliance

Regulatory Update: NAIC Spring 2019 National Meeting

Data Matters

MAY 9, 2019

The National Association of Insurance Commissioners (NAIC) held its Spring 2019 National Meeting (Spring Meeting) in Orlando, Florida, from April 6 to 9, 2019. ceding insurer could be eligible for the same reduced collateral requirements that would apply to qualifying EU reinsurers under the revised CFR Model Laws.

Insurance

Insurance Blockchain Big data Risk

Nevada, New York and other states follow California’s CCPA

Data Protection Report

JUNE 6, 2019

Exempts from deletion personal information needed to complete insurance transactions. 5/29 – referred to Senate Committee on Judiciary and Senate committee on Insurance. Redefines “personal information” to exclude information from government records. 5/22 – referred to Senate Committee on Judiciary.

Sales

Sales Privacy Insurance Manufacturing

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

IT Governance

FEBRUARY 6, 2024

Source 1 ; source 2 (New) Professional services USA Yes 11,556 Poder Judicial de Santa Cruz Source (New) Legal Argentina Yes 8,732 J.D.

Data Privacy

Data Privacy Privacy Insurance Security

Join Our Webinar on November 16th: IGI & Preservica Address the Governance of Long-Term Digital Information

IGI

NOVEMBER 10, 2017

These exchanges provided many more compelling use cases for long-term born-digital and digitized records and information that are essential to maintain compliance and keep their business operations running. So as the benchmark study reported, the need for long-term digital preservation and access capabilities is pervasive.

Digital preservation

Digital preservation Government Digital transformation Access

Private cloud use cases: 6 ways private cloud brings value to enterprise business

IBM Big Data Hub

MARCH 28, 2024

As cloud computing continues to transform the enterprise workplace, private cloud infrastructure is evolving in lockstep, helping organizations in industries like healthcare, government and finance customize control over their data to meet compliance, privacy, security and other business needs. billion by 2033, up from USD 92.64

Cloud

Cloud Energy and Utilities Compliance Privacy

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

Data Matters

OCTOBER 23, 2019

Security Concerns. Addressing a key compliance issue for businesses, the proposed regulations provide a detailed set of rules on how businesses should incorporate data security concerns into their right to know responses. Specific Guidance on Right to Know Requests. Explanation of Denial.

Sales

Sales Privacy Passwords Compliance

The Orion blockchain database: Empowering multi-party data governance

IBM Big Data Hub

AUGUST 7, 2023

It provides a comprehensive solution for secure, transparent and trustworthy data management. By integrating a cryptography-based layer on top of a classical database, Orion offers a wide range of blockchain functionalities, including a highly available, secure, and replicated distributed database with an immutable tamper-proof ledger.

Blockchain

Blockchain Government Authentication Manufacturing

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

Where the Information Commissioner gives notices to data controllers, she can now secure compliance, with the power to issue substantial administrative penalties of up to 4% of global turnover. How then will we secure adequacy without adhering to the charter? Where she finds criminality, she can prosecute.

GDPR

GDPR Personal data Government IT

CNIL Unveils 2019 Inspection Program and 2018 Annual Activity Report

Hunton Privacy

APRIL 30, 2019

The CNIL served 49 formal notices to companies in 2018, including to insurance companies (five formal notices) and marketing companies collecting personal data from mobile phones via software development kit (“SDK”) tools for the purposes of sending targeted ads (four formal notices).

GDPR

GDPR Personal data Data breaches Marketing

Mic Drop: California AG releases long-awaited CCPA Rulemaking

Data Protection Report

OCTOBER 11, 2019

The rules also define “Third-party identity verification service” as “a security process offered by an independent third-party who verifies the identity of the consumer making a request to the business.” The rules are not final. For example:ser. 999.313 (c)(4)). 999.313 (c)(9)).

Sales

Sales Retail Privacy Access

Sustainable Software Requires Deep Agility & Expertise

Role Model Software

OCTOBER 24, 2019

Perhaps they have read about agile processes and think it will help them avoid catastrophe, but try to exercise it with unproven talent. I know of one company in the insurance industry that has 95% or more of its developers having less than 5 years of development experience. Or they hire a bright person or two?—?or

Risk

Risk IT Marketing Insurance

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Data Matters

MARCH 4, 2021

These are (i) government entities; (ii) entities subject to the Gramm-Leach-Bliley Act; (iii) entities subject to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and Health Information Technology for Economic and Clinical Health Act; (iv) nonprofits; and (v) institutions of higher education. Controllers must.

Personal data

Personal data GDPR Sales Privacy

California Legislature Passes Bill Regulating Data Brokers

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

Webinars

Trending Sources

More Than 90% of IT Decision Makers Struggle to Evaluate Security Products

Webinars

2018 Global Data Regulations & Compliance Heat Up – Are you Ready?

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

Understanding HIPAA: A Guide to Avoiding Common Violations

Telehealth Hazard? HHS Loosens HIPAA Standards for Telemedicine

U.S. Banking Agencies Signal Closer Review of Cryptocurrency Activities

UAE: Federal level data protection law enacted

FBI: Millions in Losses resulted from attacks against Healthcare payment processors

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Saudi Arabia’s New Data Protection Law – What you need to know

CCPA Marches On: California Attorney General Proposes Further Revisions to CCPA Regulations, Industry Pleads for Enforcement Delay Amid COVID-19 Crisis

Guidelines Published for Changes to the Singapore Data Privacy Regime

Spanish DPA Publishes Report on Data Processing Activities in Relation to COVID-19

EUROPE: New privacy rules for connected vehicles in Europe?

The Netherlands: Health sector once again on the radar of DPA

California Enacts Broad Privacy Laws Modeled on GDPR

Cybersecurity: Managing Risks With Third Party Companies

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

How to improve your cyber resilience

California Enacts Broad Privacy Protections Modeled on GDPR

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

GDPR is upon us: are you ready for what comes next?

Network Security Architecture: Best Practices & Tools

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

FRANCE: New data protection law declared constitutional and ready for promulgation

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Notice

Regulatory Update: NAIC Spring 2019 National Meeting

Nevada, New York and other states follow California’s CCPA

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

Join Our Webinar on November 16th: IGI & Preservica Address the Governance of Long-Term Digital Information

Private cloud use cases: 6 ways private cloud brings value to enterprise business

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

The Orion blockchain database: Empowering multi-party data governance

The debate on the Data Protection Bill in the House of Lords

CNIL Unveils 2019 Inspection Program and 2018 Annual Activity Report

Mic Drop: California AG releases long-awaited CCPA Rulemaking

Sustainable Software Requires Deep Agility & Expertise

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Stay Connected