IT Governance

JULY 20, 2018

As the saying goes, you’re only as strong as your weakest link, which is as true for data security as any other situation. Unfortunately, world-famous retailer Fortnum & Mason was recently let down by a weak link – survey company Typeform – that exposed the personal data of 23,000 of its customers.

Personal data 66

Personal data Retail Data breaches GDPR 66

IT Governance

OCTOBER 3, 2019

You might be surprised to learn that CCTV footage is subject to the GDPR (General Data Protection Regulation). Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant. Transparency is a core principle of the GDPR. Make sure people know they’re being recorded.

GDPR 110

GDPR Privacy Retail Personal data 110

IT Governance

NOVEMBER 14, 2018

Data controllers and data processors are an integral part of the GDPR. The terms ‘data controller’ and ‘data processor’ have been around for years, but it’s only since the EU GDPR (General Data Protection Regulation) took effect that they’ve been scrutinised. Responsibilities of the data processor.

GDPR 107

GDPR Retail Data collection Personal data 107

DLA Piper Privacy Matters

AUGUST 12, 2020

On 28 July 2020, the French Supervisory Authority (the “CNIL”) sanctioned the online shoes retail company, SPARTOO SAS, by a €250,000 fine and an injunction to comply with GDPR within 3 months under penalty for various non-compliances with the GDPR of the personal data processing related to clients, prospects and employees [1].

GDPR 93

GDPR Personal data Compliance Passwords 93

IT Governance

MAY 23, 2019

A year ago this week, the GDPR (General Data Protection Regulation) took effect, promising to revolutionise information security. To mark the anniversary, we gathered a panel of data protection experts to discuss the effect of the Regulation and the future of data protection. Compliance fatigue’.

GDPR 72

GDPR Data breaches Compliance Retail 72

OpenText Information Management

APRIL 4, 2018

On May 25, 2018, the new EU data privacy regulation, known as the General Data Protection Regulation (GDPR), comes into force. For … The post GDPR. Forget bitcoin, data is the new currency of retail appeared first on OpenText Blogs. Shortly after that the sky falls in and the world ends.

Retail 54

Retail GDPR Data Privacy Privacy 54

IT Governance

AUGUST 21, 2018

What steps will the ICO (Information Commissioner’s Office) take to ensure organisations comply with the recently enforced GDPR (General Data Protection Regulation)? The data included contact information, usernames and encrypted passwords. What is the cost of a data breach? Will non-complying organisations be fined?

Retail 66

Retail Data breaches GDPR Compliance 66

Hunton Privacy

DECEMBER 1, 2020

On November 26, 2020, the French Data Protection Authority (the “CNIL”) announced that it imposed a fine of €2.25 million on Carrefour France and a fine of €800,000 on Carrefour Banque for various violations of the EU General Data Protection Regulation (“GDPR”) and Article 82 of the French Data Protection Act governing the use of cookies.

GDPR 91

GDPR Personal data Data collection Marketing 91

IT Governance

MARCH 26, 2019

Although DPIAs (data protection impact assessments) are not a new concept, the GDPR (General Data Protection Regulation) now mandates them under certain circumstances. It’s relevant for everyone, including retail and hospitality. Common activities for retail and hospitality requiring DPIAs.

Retail 78

Retail Risk GDPR Government 78

IT Governance

APRIL 23, 2019

Stop us if you’ve heard this one before: organisations that fail to meet the requirements of the GDPR (General Data Protection Regulation) face fines of up to €20 million (about £17.3 That’s somewhat understandable, given that no UK organisation has yet been disciplined under the GDPR. GDPR fines expected in June.

GDPR 89

GDPR Personal data Compliance Retail 89

IT Governance

JULY 25, 2018

As of 25 May 2018, organisations that use CCTV to capture images of individuals are processing personal data as defined by the GDPR (General Data Protection Regulation) and must comply with the Regulation’s requirements. To comply with the data controller’s legal obligations.

GDPR 102

GDPR Personal data Privacy Access 102

IT Governance

FEBRUARY 23, 2018

There is an alarming lack of awareness across all industries about the EU General Data Protection Regulation (GDPR) , according to a government survey. Almost two thirds (62%) of respondents hadn’t heard of the Regulation, and only about 10% had taken steps to meet its compliance requirements. Preparing for the GDPR.

GDPR 63

GDPR Compliance Insurance Personal data 63

IT Governance

AUGUST 19, 2020

The concept of data controllers and data processors has been around for years, but the roles come with clearly defined responsibilities under the GDPR (General Data Protection Regulation). In this blog, we take a close look at what a data controller and processor does and how they fit into your organisation.

GDPR 95

GDPR Personal data Compliance Privacy 95

IBM Big Data Hub

APRIL 24, 2024

An online retailer always gets users’ explicit consent before sharing customer data with its partners. A navigation app anonymizes activity data before analyzing it for travel trends. One cannot overstate the importance of data privacy for businesses today.

Data Privacy 79

Data Privacy Privacy GDPR Personal data 79

Reltio

AUGUST 16, 2018

On May 25, 2018 GDPR (General Data Protection Regulation) went into effect. The primary objectives of the GDPR are to give control back to their EU citizens and residents over their personal data, to simplify the regulatory environment for international business, and to unify regulations within the European Union.

GDPR 70

GDPR MDM Compliance Personal data 70

IT Governance

NOVEMBER 12, 2018

The impact of the GDPR (General Data Protection Regulation) in Scotland is greater than most realise. Not only does it affect the way organisations process personal data, but also extends data subjects rights in terms of how their data is processed. What is a data subject access request (DSAR)?

Access 91

Access GDPR Personal data Retail 91

IT Governance

JANUARY 30, 2024

Data breached: 2 PB. Mobile network database breach exposes 750 million Indians’ personal data The Indian security company CloudSEK claims to have found the personal data of 750 million Indians for sale on an “underground forum”. Data breached: 750 million victims’ personal data.

Data Privacy 52

Data Privacy Retail Privacy Manufacturing 52

Collibra

APRIL 11, 2023

Retail is a dynamic and competitive market. In addition to the traditional brick-and mortar-stores, the retail business today includes online and mobile stores. Every process at every stage of these stores relies on data. The right kind of data can drive great innovations in retail. What if they do not match?

Retail 73

Retail Sales Compliance Marketing 73

IT Governance

JUNE 13, 2018

Dixons Carphone has suffered a major data breach involving 5.9 million personal data records. At this point, the major consumer electronics retailer said there was no evidence of any fraud. In a second breach, personal customer data in the form of names, addresses and email addresses was accessed.

Retail 65

Retail GDPR Data breaches Compliance 65

IT Governance

JANUARY 25, 2019

Home improvement retailer B&Q has suffered a data breach affecting 70,000 of its… well, not customers, exactly. As the data contains alleged criminal records, it could be considered sensitive information under the GDPR (General Data Protection Regulation).

Data breaches 111

Data breaches GDPR Passwords Retail 111

DLA Piper Privacy Matters

JANUARY 28, 2022

Looking back on 2021, the privacy and data protection landscape continues to evolve at pace. In Europe we saw the UK finally conclude Brexit and establishment of a separate data protection regime in the UK which will be governed by the UK GDPR. Data transfers to other countries remain a challenge. billion (USD1.2 / GBP0.9

GDPR 98

GDPR Privacy Data breaches Personal data 98

CGI

JUNE 6, 2018

GDPR: Navigating the differences. Two very important, but, in some respects, seemingly contradictory pieces of regulation are at the center of attention in the European financial world—the Revised Payment Services Directive (PSD2) and the General Data Protection Regulation (GDPR). What is GDPR? Data Subject”).

GDPR 40

GDPR Marketing Personal data Retail 40

Data Protection Report

NOVEMBER 2, 2023

In 2017, Equifax Inc, suffered a cybersecurity breach, with hackers able to access the personal data of around 13.8 The breach included data held by Equifax Inc in connection with two of Equifax’s products. The Information Commissioner recently highlighted the risks of complacency on cybersecurity within companies.

GDPR 78

GDPR Risk Cybersecurity Compliance 78

IT Governance

JUNE 11, 2019

“Upon discovery of the breach, the security of our retail platform was immediately restored and appropriate measures were taken to ensure the security of all other online assets,” the statement read. A GDPR penalty? There are many ways to mitigate the risks of a data breach. It’s time to take the GDPR seriously.

GDPR 66

GDPR Personal data Data breaches Retail 66

Thales Cloud Protection & Licensing

MARCH 14, 2024

Putting Personal Data at Risk The results were not all positive, however. The Thales study highlighted how nearly six out of ten (57%) of global consumers were anxious that brands using generative AI would be putting their personal data at risk.

Privacy 71

Privacy Data Privacy Analytics Risk 71

DLA Piper Privacy Matters

FEBRUARY 1, 2019

On 31 January 2019, the French Data Protection Supervisory Authority (CNIL) and the French General Directorate for Competition Policy, Consumer Affairs and Fraud Control (DGCCRF, authority in charge of consumer protection) signed a new protocol of cooperation to improve protection of personal data of consumers.

GDPR 40

GDPR Personal data B2C Retail 40

DLA Piper Privacy Matters

APRIL 9, 2020

The enforcement warning is an acknowledgement by the DPC that regulatory guidance to date has not been sufficiently clear and it should act as a call-to-arms for businesses operating websites in Ireland to ensure compliance by that date. The Law – Interaction with the GDPR. Cookie Sweep Survey. DPC Concerns and Recommendations.

GDPR 59

GDPR Analytics Personal data Compliance 59

Thales Cloud Protection & Licensing

NOVEMBER 26, 2018

Six months on from the legal implementation of the General Data Protection Regulation (GDPR), a third of consumers have admitted they still aren’t confident that the companies they interact with comply with the regulation. A quarter (25%) of people in both regions revealed that they could not explain the GDPR in any way.

GDPR 81

GDPR Data breaches Retail Manufacturing 81

IBM Big Data Hub

MAY 3, 2024

The business buys, sells, or shares the personal data of 100,000+ California residents. The business makes at least half of its total annual revenue from selling the data of California residents. Behavioral advertising is the act of using someone’s personal data to display targeted ads to them.

Artificial Intelligence 66

Artificial Intelligence Compliance Privacy Risk 66

Data Matters

FEBRUARY 10, 2020

The Draft Code is intended to update existing guidance published pre-GDPR and provide clarity on certain important issues. a message informing a user they are approaching their monthly data limit). Lawful basis for direct marketing: The two lawful bases for direct marketing under the GDPR are consent and legitimate interests.

Marketing 68

Marketing GDPR Personal data Communications 68

Thales Cloud Protection & Licensing

JUNE 21, 2018

Just look back at the amount of marketing we have seen around the launch of the GDPR this year, all of it relentlessly focused on the size of the financial penalties and, largely, adopting scare tactics designed to catch the eye and provoke pangs of guilt. I believe that world may be just around the corner.

Security 54

Security Personal data Retail Marketing 54

Thales Cloud Protection & Licensing

NOVEMBER 30, 2021

Registration and medical data access in healthcare. Secure online services for retailers. Compliance with current regulatory regime, certified in accordance with established criteria for data privacy protection. Remote check-ins at hotels. The user identity verification journey.

Authentication 71

Authentication Privacy Compliance Retail 71

DLA Piper Privacy Matters

MARCH 21, 2019

The DPA reviewed cyber security and user tracking practices with the – “sobering” – finding that in the DPA’s view none of the 40 companies provided for GDPR-compliant practices on their websites. As a result, the DPA announced it is considering fines under the GDPR. Consequences and risk based recommendations.

GDPR 49

GDPR Personal data Risk Retail 49

Thales Cloud Protection & Licensing

MARCH 20, 2023

When privacy is at stake, SSI puts individuals back in control of their personal data. Moreover, it helps organizations to operate in an environment they trust and control to significantly reduce Know Your Customer (KYC) and GDPR costs and to more easily comply with regional privacy rules while improving user experience.

Privacy 71

Privacy Blockchain Customer Experience Access 71

IT Governance

NOVEMBER 22, 2018

Just days before Black Friday, Amazon suffered a data breach in which an undisclosed number of customers’ names and email addresses were accidentally exposed on its website. Asked to provide further information, it tersely commented: “We have fixed the issue and informed customers who may have been impacted”. Well, that’ll do for this week.

Data breaches 96

Data breaches Personal data Passwords Encryption 96

IT Governance

AUGUST 14, 2019

Pavur refused to name the organisations that mishandled the requests, which is wise, because it would encourage miscreants to submit their own fake DSARs and gain access to other people’s personal data. The GDPR has created security weaknesses. The GDPR should be protecting people.

GDPR 45

GDPR Retail Access Personal data 45

IT Governance

JANUARY 9, 2024

Source (New) Software Luxembourg Yes 3,600,000 National Automobile Dealers Association Source (New) Retail USA Yes 1,065,000 Consórcio Canopus Source (New) Professional services Brazil Yes 1,400,000 The Teaching Company (Wondrium by The Great Courses) Source (New) Education USA Yes 1.3 TB Gräbener Maschinentechnik GmbH & Co.

Data Privacy 75

Data Privacy Privacy Manufacturing Data breaches 75