Compliance, Exercises and Privacy - Information Management Today

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

However, GDPR compliance is not necessarily a straightforward matter. The law outlines a set of data privacy rights for users and a series of principles for the processing of personal data. The stakes are high, and the GDPR imposes significant penalties for non-compliance. They merely need to be EEA residents.

GDPR

GDPR Compliance Personal data Privacy

Big California Privacy News: Legislative and Enforcement Updates

Data Matters

SEPTEMBER 6, 2022

Privacy never sleeps in California. In recent days and as California’s legislative session comes to a close, there have been a number of significant legislative and regulatory developments in the state, each of which will likely (again) change the privacy landscape in California and, by extension, the rest of the country.

Privacy

Privacy B2B Sales Compliance

Protecting or Posturing: What's Acceptable in New Data Privacy Practices

AIIM

APRIL 13, 2021

Prompted by new concerns about digital privacy and ethics, The State of Virginia recently became the second state, behind California, to adopt a comprehensive consumer data privacy law. The AIIM community has been engaged in the personal data privacy conversation for a while now.

Data Privacy

Data Privacy Privacy Artificial Intelligence Personal data

Privacy Shield shafted – but do SCCs really deliver better privacy protections?

Data Protector

AUGUST 17, 2020

Presumably, most of the companies that have used the Privacy Shield will decide to adopt the SCC approach. Then, they can wait nervously for the European Commission to tweak the texts of the SCCs, and embark on another repapering exercise. To be honest, I’ve not dealt with many companies that have relied on the Privacy Shield.

Privacy

Privacy Personal data Risk Compliance

CIPL Releases Report on Effective Data Privacy Accountability

Hunton Privacy

JUNE 8, 2020

On June 3, 2020, the Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth LLP published its report, What Good and Effective Data Privacy Accountability Looks Like: Mapping Organizations’ Practices to the CIPL Accountability Framework (“Report”). Canada, Europe, Asia-Pacific and Latin America.

Data Privacy

Data Privacy Privacy Compliance Risk

Texas enacts comprehensive privacy law

Data Protection Report

JUNE 21, 2023

The new law also requires that “appeal process must be conspicuously available and similar to the process for initiating action to exercise consumer rights by submitting a request.” The notice must be posted in the same location and in the same manner as the privacy notice. “If

Privacy

Privacy Personal data Sales Retail

CCPA compliance: A sustainable approach

Collibra

DECEMBER 30, 2020

CCPA stands for California Consumers Privacy Act (2018), intended to enhance privacy rights and consumer protection for residents of California, United States. . Businesses are required to give consumers notice explaining their privacy practices and not discriminate against consumers for exercising their rights under the CCPA.

Compliance

Compliance Sales Privacy Data Privacy

Guest Post - Three Critical Steps for GDPR Compliance

AIIM

JANUARY 17, 2018

This is the eighth post in a series on privacy by Andrew Pery. You might also be interested in: Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. Privacy by Design: The Intersection of Law and Technology. What Do the GDPR and new Privacy Laws Mean for U.S.

GDPR

GDPR Compliance Data collection Privacy

Colorado AG Publishes Draft Colorado Privacy Act Rules

Hunton Privacy

NOVEMBER 1, 2022

On October 1, 2022, the Colorado Attorney General’s Office submitted an initial draft of the Colorado Privacy Act Rules (“CPA Rules”), which will implement and enforce the Colorado Privacy Act (“CPA”). The proposed regulations, if adopted, would add certain significant new compliance obligations on businesses. to 6.04).

Privacy

Privacy Personal data Data collection Compliance

How FIDO 2 authentication can help achieve regulatory compliance

Thales Cloud Protection & Licensing

JUNE 24, 2021

How FIDO 2 authentication can help achieve regulatory compliance. Businesses are governed by an increasingly complex network of regulations, jurisdictions, and standards which dictate security and privacy requirements. As such, FIDO2 can become an enabler for regulatory compliance. Compliance with GDPR and CCPA.

Authentication

Authentication Compliance GDPR Personal data

C-11 – The act to enact the Consumer Privacy Protection Act: Five top measures to get ready

Privacy and Cybersecurity Law

DECEMBER 10, 2020

Chantal Bernier, National Practice Leader, Privacy and Cybersecurity, Dentons Canada LLP Former Interim Privacy Commissioner of Canada. It will apply to all businesses across Canada, except to provincial businesses in Alberta, British Columbia and Québec where provincial privacy laws apply to the private sector. .

Privacy

Privacy Compliance Artificial Intelligence Risk

Colorado AG Provides Insights on the Colorado Privacy Act Rulemaking Process

Hunton Privacy

APRIL 25, 2022

On April 12, 2022, Colorado Attorney General Phil Weiser made remarks at the International Association of Privacy Professionals Global Privacy Summit in Washington, D.C., where he invited stakeholders to provide informal public comments on the Colorado Privacy Act (“CPA”) rulemaking. state to adopt a comprehensive privacy law.

Privacy

Privacy Personal data Sales Compliance

Privacy notices – the ICO follows the lead of the EU data protection authorities in their interpretation of Article 13 UK GDPR

Data Protection Report

JUNE 6, 2023

This MPN and its accompanying annexes set out details of TikTok’s non-compliance with data protection law and the reasons why the ICO considered that a fine was appropriate. However, where a DPO is appointed, it must be clear how the DPO specifically (as opposed to the privacy team or data controller generally) is to be contacted.

Privacy

Privacy GDPR Personal data Compliance

New York City Council Passes Tenant Data Privacy Act

Hunton Privacy

MAY 13, 2021

On April 29, 2021, the New York City Council passed the Tenant Data Privacy Act (“TDPA”), which would regulate the collection, use, safeguarding and retention of tenant data by owners of “smart access” buildings. Privacy policy. The TDPA has been sent to the New York City Mayor’s desk for signature.

Data Privacy

Data Privacy Privacy Passwords Authentication

Driving GDPR Compliance

Collibra

FEBRUARY 25, 2021

The General Data Protection Regulation (GDPR) mandates businesses to make provisions for EU citizens to exercise their right to access and control their personal data, including the export of personal data outside the EU. A successful GDPR compliance focuses on three key aspects: . Six phases of GDPR compliance.

GDPR

GDPR Compliance Personal data Data Privacy

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

AIIM

JULY 24, 2018

This is the 11th post in a series on privacy by Andrew Pery. Data Privacy and Open Data: Secondary Uses under GDPR. Three Critical Steps for GDPR Compliance. Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. Privacy by Design: The Intersection of Law and Technology.

GDPR

GDPR Compliance Privacy Data Privacy

ICO Publishes Report on Compliance in Direct Marketing Data Broking Sector

Hunton Privacy

NOVEMBER 5, 2020

On October 27, 2020, the UK Information Commissioner’s Office (“ICO”) published a report following its investigation into data protection compliance in the direct marketing data broking sector, alongside its enforcement action against Experian. Experian has stated that it will appeal the Enforcement Notice.

Marketing

Marketing Compliance Personal data GDPR

What you should do now in light of the Privacy Reform bill

Data Protection Report

OCTOBER 26, 2022

Major privacy law reform in Australia gathered pace this week, with newly tabled legislation proposing to significantly increase penalties for privacy breaches, among other reforms. Do we have effective information retention and disposal processes that are being used in practice (vs paper compliance)? Is yours effective?

Privacy

Privacy Data breaches Risk Compliance

European Data Protection Board Issues Privacy Shield Report

Hunton Privacy

JANUARY 28, 2019

Privacy Shield (the “Report”). authorities, the Report provides guidance to regulators in both jurisdictions regarding implementation of the Privacy Shield and highlights the EDPB’s ongoing concerns with regard to the Privacy Shield. businesses to clarify the requirements of the Privacy Shield ( g. , authorities.

Privacy

Privacy Compliance IT Information Security

China: Navigating China episode 17: China’s Draft Privacy and Security Laws – second drafts clarify compliance steps for businesses

DLA Piper Privacy Matters

MAY 4, 2021

Helpfully this new second draft does not substantially change the compliance obligations when handling personal information set out in the initial draft published in October 2020 (for our summary click here ). regularly publishing reports on the organisation’s data protection compliance. extra-territorial effect) – must comply.

Compliance

Compliance Security Personal data Privacy

Strengthening Privacy Rights with Privacy Enhancing Technologies

AIIM

NOVEMBER 5, 2018

Moreover, there seems to be momentum developing for a more comprehensive US Federal Privacy initiative consistent with GDPR. The current US data privacy regime is somewhat fragmented and sectoral in nature and is perceived to be an impediment to competing in the digital economy. Content Analytics (Privacy Information Management).

Privacy

Privacy Artificial Intelligence GDPR Analytics

What is ‘privacy by design’?

IT Governance

FEBRUARY 28, 2018

Privacy by design is a voluntary approach to projects that promotes privacy and data protection compliance, and helps you comply with the Data Protection Act 1998 (DPA). Privacy by design and the GDPR. Existing data is used for new purposes. The upcoming EU General Data Protection Regulation (GDPR) will supersede the DPA.

Privacy

Privacy GDPR Personal data Compliance

Is your organisation equipped for long-term GDPR compliance?

IT Governance

MAY 28, 2019

Whether the panic and stress that accompanied the compliance deadline feels like a distant memory or still gives you nightmares, your data protection and privacy posture is something that shouldn’t be in your rear-view mirror. GDPR compliance is an ongoing process and should be embedded by design in your data protection practices.

GDPR

GDPR Compliance Personal data Risk

ICO Publishes Employment Guidance for Consultation

Hunton Privacy

DECEMBER 14, 2023

The former draft guidance aims to provide direction on compliance with data protection law when keeping records about employees, and to promote good practice, while the latter aims to provide guidance on compliance when carrying out recruitment exercises.

Compliance

Compliance IT Privacy

What (currently ignored) privacy area might result in early enforcement action when the GDPR is in force?

Data Protector

JANUARY 29, 2017

Does it really mean that in 481 days, European privacy regulators will be heralding the first megafine for non-compliance with one of the GDPR’s more obscure requirements? And also, what standard of evidence is necessary to be generated, just in case privacy regulators exercise their Article 30(4) right to request it.

GDPR

GDPR Privacy Compliance Personal data

EDPB Stakeholder Event Highlights Continued Confusion over Data Subject Rights Compliance under the GDPR

Data Matters

DECEMBER 2, 2019

Stakeholders noted some requests were too broad, in turn, making it difficult to identify which data subject right was being exercised (e.g., The post EDPB Stakeholder Event Highlights Continued Confusion over Data Subject Rights Compliance under the GDPR appeared first on Data Matters Privacy Blog.

GDPR

GDPR Compliance Personal data Access

CPPA Board Holds Meeting on Revised Draft Regulations for Risk Assessment and Automated Decisionmaking Technology

Hunton Privacy

MARCH 15, 2024

Clarify which negative impacts to consumers’ privacy a business may consider, including impairing consumers’ control over their personal information, such as by providing insufficient information for them to make an informed decision regarding the processing of their personal information.

Risk

Risk Artificial Intelligence Compliance Privacy

Think differently about data privacy to deliver digital transformation

Collibra

JANUARY 14, 2020

Data privacy isn’t about compliance — it’s about customers. Although much of the ink spilled around data privacy focuses on obeying regulations such as the EU’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), it’s a mistake to think about data privacy as a compliance exercise.

Digital transformation

Digital transformation Data Privacy Privacy IoT

California Privacy Law Overhaul – Proposition 24 Passes

Data Matters

NOVEMBER 4, 2020

The results are in, and California voters have approved the California Privacy Rights Act (CPRA) which was listed on the ballot as Proposition 24. Even so, with these and other new requirements, the CPRA does not go as far as some consumer privacy advocates had hoped it would. A Closer Look at Key CPRA Provisions.

Privacy

Privacy B2B Sales Data breaches

GDPR compliance for professional services firms: time to get on track

IT Governance

APRIL 3, 2018

The General Data Protection Regulation (GDPR)’s compliance deadline is looming. Every organisation that processes personal data must be in compliance with the new law by 25 May or risk substantial regulatory fines from the Information Commissioner’s Office and legal action from aggrieved data subjects.

GDPR

GDPR Compliance Personal data Risk

Hong Kong: Newly published Model Contractual Clauses

DLA Piper Privacy Matters

JUNE 1, 2022

Organisations engaging in cross border transfers of personal data may now rely on the Recommended Model Contractual Clauses (RMCs), recently published by the Privacy Commissioner for Personal Data (PCPD). reporting, audit and inspection rights, data breach notification, compliance with regulatory investigations etc).

Personal data

Personal data Compliance Data breaches Privacy

2018 Global Data Regulations & Compliance Heat Up – Are you Ready?

Thales Cloud Protection & Licensing

MARCH 6, 2018

Every year, new regulations and compliance orders come into play that impact businesses across the world. In the United States alone, companies across different industries have been following regulations to comply with privacy laws. My colleague Vikram Ramesh blogs more about Australia’s privacy amendment act here.

Compliance

Compliance GDPR Encryption Data Privacy

Data governance for data privacy

Collibra

MAY 5, 2020

Many of the new headlines warn the public about the dangers the digital world places on our privacy. If a company uses data unethically and privacy is compromised, the public will know about it. Privacy concerns hinder the excitement over the downpour of data. Why is data governance important to data privacy?

Data Privacy

Data Privacy Government Privacy Compliance

Department of Commerce Updates Privacy Shield FAQs

Hunton Privacy

AUGUST 27, 2018

When responding to individuals seeking to exercise their rights under the Privacy Shield Principles, the FAQs state that a processor should respond pursuant to the instructions of the EU data controller. View the full Privacy Shield FAQs. and Swiss-U.S. Onward transfers.

Privacy

Privacy Cloud Compliance IT

How to prepare for the California Consumer Privacy Act

Thales Cloud Protection & Licensing

AUGUST 15, 2019

375 the California Consumer Privacy Act (CCPA), making California the first U.S. state to pass its own data privacy law. Also, entities under the CCPA must post a “Do Not Sell My Personal Information” link on their websites allowing consumers to easily exercise their right of opting-out. (4) Currently, every U.S.

Privacy

Privacy GDPR Digital transformation Sales

Important Changes to the Singapore Data Privacy Regime

Data Matters

NOVEMBER 16, 2020

If you operate in Singapore, handle Singapore data, or maintain a server in Singapore, it is crucial that you have protocols in place to guide employees on what to do when a data breach occurs and consider doing a data breach tabletop exercise. (We Carry out data breach drills or tabletop exercises.

Data Privacy

Data Privacy Privacy Data breaches Personal data

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Yet many organizations still struggle to meet compliance requirements, and EU data protection authorities do not hesitate to hand out penalties. For a full list of approved legal bases, see the GDPR compliance page.

GDPR

GDPR Compliance Personal data Privacy

California Legislature Passes Bill Regulating Data Brokers

Hunton Privacy

SEPTEMBER 21, 2023

The Act aims to close a loophole in the California Consumer Privacy Act (“CCPA”) that allows consumers to request that data brokers delete personal information obtained directly from the consumer, but does not require data brokers to delete personal information obtained from other sources.

Insurance

Insurance Personal data Sales Compliance

10 key areas to identify gaps in your GDPR compliance

IT Governance

APRIL 12, 2018

Compliance with the EU General Data Protection Regulation (GDPR) should be a priority for all EU organisations, and non-EU organisations that monitor the behaviour or offer goods and services to EU residents. If you are only just beginning your GDPR compliance project, you need to first assess your current stance against the requirements.

GDPR

GDPR Compliance Personal data Risk

EDPB Releases Guidelines on Virtual Voice Assistants

Hunton Privacy

MARCH 13, 2021

These activities raise compliance issues under both the General Data Protection Regulation (“GDPR”) and the e-Privacy Directive. In addition, VVAs require a terminal device equipped with a microphone and transfer data to remote service.

Personal data

Personal data Compliance GDPR Privacy

GUEST ESSAY: Achieving trust — in a tumultuous 2023 that’s likely to come — can lead to success

The Last Watchdog

DECEMBER 20, 2022

Regulatory crackdowns on poor privacy practices, continued supply chain issues, and ongoing challenges in retaining talent will all impact consumers’ sentiments negatively. Privacy continues to be a critical consumer value. Technology firms experienced unprecedented popularity because of this.

Privacy

Privacy Risk Government Compliance

When And How Cos. Should Address Cyber Legal Compliance

Data Matters

OCTOBER 30, 2017

They can, however, engage in probing internal due diligence of their companies’ cyber governance and compliance posture before it is too late — that is, before a cyber event occurs. Growing Expectations of Director-Level Responsibility for Cyber Legal Compliance. 1] The U.S. 7] The lack of confidence, moreover, may be warranted.

Compliance

Compliance Cybersecurity Risk Government

Why have I joined the LinkedIn Data Protection Reform Group?

Data Protector

OCTOBER 13, 2020

There’s also an ongoing debate on what role our national Data Protection supervisory authority should play in developing and enforcing privacy laws. The provisions impose very considerable administrative burdens on many data controllers, not all of which do much, if anything, to respect legitimate privacy rights. I disagree.

GDPR

GDPR Privacy Compliance Access

The New Privacy Regulation That’s Sink-or-Swim for Small Business

Adam Levin

FEBRUARY 17, 2020

The California Consumer Privacy Act ( CCPA ) became law on January 1, 2020, and as was the case on the effective date of the General Data Protection Regulation (GDPR), the European Union’s similarly sweeping privacy legislation, it is being met with a general panic. To not face discrimination for exercising their privacy rights.

Privacy

Privacy Compliance Personal data Sales

GDPR compliance checklist

Big California Privacy News: Legislative and Enforcement Updates

Trending Sources

Protecting or Posturing: What's Acceptable in New Data Privacy Practices

Privacy Shield shafted – but do SCCs really deliver better privacy protections?

CIPL Releases Report on Effective Data Privacy Accountability

Texas enacts comprehensive privacy law

CCPA compliance: A sustainable approach

Guest Post - Three Critical Steps for GDPR Compliance

Colorado AG Publishes Draft Colorado Privacy Act Rules

How FIDO 2 authentication can help achieve regulatory compliance

C-11 – The act to enact the Consumer Privacy Protection Act: Five top measures to get ready

Colorado AG Provides Insights on the Colorado Privacy Act Rulemaking Process

Privacy notices – the ICO follows the lead of the EU data protection authorities in their interpretation of Article 13 UK GDPR

New York City Council Passes Tenant Data Privacy Act

Driving GDPR Compliance

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

ICO Publishes Report on Compliance in Direct Marketing Data Broking Sector

What you should do now in light of the Privacy Reform bill

European Data Protection Board Issues Privacy Shield Report

China: Navigating China episode 17: China’s Draft Privacy and Security Laws – second drafts clarify compliance steps for businesses

Strengthening Privacy Rights with Privacy Enhancing Technologies

What is ‘privacy by design’?

Is your organisation equipped for long-term GDPR compliance?

ICO Publishes Employment Guidance for Consultation

What (currently ignored) privacy area might result in early enforcement action when the GDPR is in force?

EDPB Stakeholder Event Highlights Continued Confusion over Data Subject Rights Compliance under the GDPR

CPPA Board Holds Meeting on Revised Draft Regulations for Risk Assessment and Automated Decisionmaking Technology

Think differently about data privacy to deliver digital transformation

California Privacy Law Overhaul – Proposition 24 Passes

GDPR compliance for professional services firms: time to get on track

Hong Kong: Newly published Model Contractual Clauses

2018 Global Data Regulations & Compliance Heat Up – Are you Ready?

Data governance for data privacy

Department of Commerce Updates Privacy Shield FAQs

How to prepare for the California Consumer Privacy Act

Important Changes to the Singapore Data Privacy Regime

How to implement the General Data Protection Regulation (GDPR)

California Legislature Passes Bill Regulating Data Brokers

10 key areas to identify gaps in your GDPR compliance

EDPB Releases Guidelines on Virtual Voice Assistants

GUEST ESSAY: Achieving trust — in a tumultuous 2023 that’s likely to come — can lead to success

When And How Cos. Should Address Cyber Legal Compliance

Why have I joined the LinkedIn Data Protection Reform Group?

The New Privacy Regulation That’s Sink-or-Swim for Small Business

Stay Connected