Data Breach Today

OCTOBER 15, 2019

What's the purpose of ISO 27701, the new privacy extension to the ISO 27001 information security management standard? Matthieu Grall, CISO and DPO at SodiFrance, a French IT services company, who participated in development of 27701, explains the standard and discusses "privacy by design" compliance issues.

Privacy 132

Privacy Compliance Information Security Security 132

IT Governance

SEPTEMBER 17, 2019

We have good news for those looking for help complying with the GDPR (General Data Protection Regulation) : new guidance has been released on how to create effective data privacy controls. ISO 27701 explains what organisations must do to when implementing a PIMS (privacy information management system). ISO 27701 and the GDPR.

Data Privacy 92

Data Privacy GDPR Compliance Privacy 92

IT Governance

JULY 12, 2018

To address the rising threat of data breaches across all sectors, new compliance requirements which aim to harmonise and improve data security practices. Providing adequate levels of training to staff is vital to address the practicalities of information security and avoid the risk of non-compliance. ISO 27001 ?is

Information Security 66

Information Security Compliance GDPR Security 66

AIIM

FEBRUARY 21, 2018

1 -- Healthcare at the practice level illustrates the challenges of matching small business IT resources with highly complex compliance requirements. The stakes for non-compliance are significant. 2 -- Retail provides useful lessons in the importance of decentralized capture and the security challenges it creates.

Retail 92

Retail Compliance Information Security Security 92

Hunton Privacy

DECEMBER 16, 2022

The FTC emphasized that the tool is meant to provide general guidance about potential compliance obligations and cannot substitute for personalized legal advice.

Compliance 108

Compliance Insurance Privacy Access 108

The Last Watchdog

AUGUST 7, 2023

Information Security Enforcer (ISE) GhangorCloud’s ISE is a 4th Generation Data Leak and Exfiltration Prevention (DLEP) solution that enables robust security and compliance enforcement against both malicious and inadvertent disclosure and/or theft of sensitive and confidential information. San Jose, Calif.,

Data Privacy 100

Data Privacy Compliance Privacy Information Security 100

Information Governance Perspectives

MAY 10, 2020

In May of 2020 I was honored to speak at the MERv conference with John Frost of Box on the topic of Using Information Governance with a Privacy Compliance Plan as the Fulcrum for Data Privacy and Continuous Compliance. Privacy makes data governance ethical and tangible, and compliance leaders understand that.

Compliance 52

Compliance Information governance Privacy Data Privacy 52

Hunton Privacy

DECEMBER 14, 2023

On December 12, 2023, the Centre for Information Policy Leadership at Hunton Andrews Kurth LLP (“CIPL”) released a white paper on Privacy-Enhancing and Privacy-Preserving Technologies: Understanding the Role of PETs and PPTs in the Digital Age.

Paper 118

Paper Privacy Data Privacy Education 118

Hunton Privacy

JUNE 8, 2020

On June 3, 2020, the Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth LLP published its report, What Good and Effective Data Privacy Accountability Looks Like: Mapping Organizations’ Practices to the CIPL Accountability Framework (“Report”). Canada, Europe, Asia-Pacific and Latin America.

Data Privacy 113

Data Privacy Privacy Compliance Risk 113

Hunton Privacy

APRIL 6, 2020

The CNIL reminds that this is an international standard that defines the management system and security measures that need to be implemented for the processing of personal data (“personally identifiable information” under the ISO/IEC 27701 standard), by extending the requirements of two well-known information security standards.

Compliance 102

Compliance Personal data GDPR Privacy 102

Hunton Privacy

JANUARY 31, 2022

There is a clear tension between such further use of vast amounts of personal data and some of the key data protection principles outlined in EU privacy regulations.

Artificial Intelligence 98

Artificial Intelligence Compliance GDPR Personal data 98

IT Governance

DECEMBER 6, 2023

As privacy professionals, we see consumers exercising their rights to withdraw consent to their data being processed via ‘opt out’ or ‘unsubscribe’ buttons, for example. Privacy is international It’s not just the EU GDPR, the UK GDPR and the DPA 2018 that we may need to ensure compliance with. But compliance requires clarity.

Data Privacy 59

Data Privacy Privacy GDPR IT 59

Hunton Privacy

MARCH 20, 2023

Department of Justice (“DOJ”) released an update to its Evaluation of Corporate Compliance Programs guidance (“ECCP Guidance”). The ECCP Guidance serves as a guidance document for prosecutors when evaluating a corporate compliance program. On March 3, 2023, the U.S.

Communications 104

Communications Compliance Risk Government 104

Collibra

APRIL 28, 2020

As we move to virtual life, we are generating data at higher rates and privacy and protection concerns are growing among the public. Data privacy is now a requirement, and we want to ensure that you are prepared to make the best decisions for your company. Data privacy requires collaboration from every department.

Data Privacy 85

Data Privacy Privacy Compliance Marketing 85

Data Protection Report

DECEMBER 23, 2019

This blogpost summarises our recent webinar: “ An urgent message from Berlin: The importance of record retention in privacy and cybersecurity ”. In 2019, we saw regulators put a renewed focus on how long businesses retain personal information. Why should this be a high priority project? Increased regulation and enforcement action.

Privacy 144

Privacy Compliance Personal data Risk 144

Collibra

DECEMBER 30, 2020

CCPA stands for California Consumers Privacy Act (2018), intended to enhance privacy rights and consumer protection for residents of California, United States. . Under the act, they can access their personal information collected by businesses, request to delete it, and opt-out from selling their personal information. .

Compliance 59

Compliance Sales Privacy Data Privacy 59

Security Affairs

APRIL 1, 2023

Italy’s data protection agency is temporarily blocking the popular chatbot ChatGPT due to a possible violation of the European data privacy regulation. “No way for ChatGPT to continue processing data in breach of privacy laws. The Authority pointed out that OpenAI does not alert users that it is collecting their data.

Privacy 91

Privacy Personal data GDPR Compliance 91

IT Governance

MARCH 11, 2019

For many organisations, last year’s GDPR (General Data Protection Regulation) compliance deadline was a whirlwind of privacy policy updates, data protection training courses and hours spent online researching exactly what a ‘controller’ and ‘processor’ are. You should have also noticed that compliance isn’t a fixed status.

GDPR 101

GDPR Compliance Data breaches Privacy 101

Privacy and Cybersecurity Law

DECEMBER 10, 2020

Chantal Bernier, National Practice Leader, Privacy and Cybersecurity, Dentons Canada LLP Former Interim Privacy Commissioner of Canada. It will apply to all businesses across Canada, except to provincial businesses in Alberta, British Columbia and Québec where provincial privacy laws apply to the private sector. .

Privacy 89

Privacy Compliance Artificial Intelligence Risk 89

Thales Cloud Protection & Licensing

JANUARY 11, 2023

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List. Security & Compliance for SAP Data in Financial Services. If you prefer to listen to the latest cybersecurity news, we also have some great sessions on the Thales Security Sessions podcast. Stay tuned!

Compliance 83

Compliance Cloud Security Financial Services 83

IG Guru

APRIL 17, 2024

The post AI & Deepfakes Represent ‘A New Type of Information Security Problem’, Says Drexel’s Matthew Stamm via Drexel News first appeared on IG GURU. Check out the article here.

Information Security 49

Information Security Security Artificial Intelligence Compliance 49

IT Governance

MARCH 11, 2024

Other news ISO/IEC 27006:2024 published ISO (the International Organization for Standardization) and the IEC (International electrotechnical Commission) have published a new standard in the ISO 27000 information security series. The consultation closes on 17 April.

Data Privacy 87

Data Privacy Privacy Security Data breaches 87

Hunton Privacy

DECEMBER 19, 2022

On December 9, 2022, Hunton Andrews Kurth LLP London senior consultant attorney Rosemary Jay received the 2022 PICCASO Privacy Award for Achievement in recognition of her longstanding contributions to the data privacy industry. We are so proud of Rosemary’s recognition among the top data privacy practitioners.

Privacy 55

Privacy Data Privacy Data breaches GDPR 55

AIIM

NOVEMBER 16, 2017

This is the seventh post in a series on privacy by Andrew Pery. You might also be interested in: Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. Privacy by Design: The Intersection of Law and Technology. What Do the GDPR and new Privacy Laws Mean for U.S.

GDPR 102

GDPR Compliance Privacy Paper 102

IT Governance

NOVEMBER 7, 2019

You might not be able to bring in expert consultants, but there are software packages to help with the majority of your compliance requirements, from risk assessments to data breach reporting. vsRisk Cloud , for conducting information security risk assessments. vsRisk Cloud , for conducting information security risk assessments.

GDPR 84

GDPR Compliance Risk Cloud 84

IT Governance

DECEMBER 17, 2018

This is because the Regulation requires organisations to demonstrate their compliance. Accountability: the key to compliance. The need to document compliance shouldn’t be new to you. Information security policy. Privacy procedure. Privacy notice. Get help demonstrating your compliance.

GDPR 73

GDPR Compliance Data breaches Privacy 73

Security Affairs

OCTOBER 20, 2020

The global data privacy landscape is changing and everyday we can see new regulations emerge. These regulations are encouraging organizations to be better custodians of the consumers data and create a healthier space for data privacy.

Data Privacy 98

Data Privacy Privacy GDPR Compliance 98

IG Guru

OCTOBER 24, 2023

2 The threat brief […] The post How Sanction Policies Can Support HIPAA Compliance via the OCR Listserv first appeared on IG GURU. 2 The threat brief […] The post How Sanction Policies Can Support HIPAA Compliance via the OCR Listserv first appeared on IG GURU.

Compliance 72

Compliance Cybersecurity Access Risk 72

Data Matters

APRIL 3, 2020

The COVID-19 global pandemic presents unique legal and practical challenges for businesses across all industries, including with respect to ongoing relationships with vendors and suppliers – whether this relates to information security, privacy compliance, business continuity and contractual issues, such as in relation to force majeure.

Privacy 68

Privacy Compliance Information Security Security 68

AIIM

JANUARY 17, 2018

This is the eighth post in a series on privacy by Andrew Pery. You might also be interested in: Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. Privacy by Design: The Intersection of Law and Technology. What Do the GDPR and new Privacy Laws Mean for U.S.

GDPR 83

GDPR Compliance Data collection Privacy 83

Security Affairs

JANUARY 20, 2020

of Privacy Framework, it is a tool designed to help organizations to manage privacy risks. of its privacy framework. The Framework is a voluntary tool that can be used by organizations to manage risks in compliance with privacy legislation, including the European GDPR. The NIST released version 1.0

Privacy 108

Privacy Risk Compliance Communications 108

IG Guru

JULY 29, 2020

Information privacy has boomed with new regulation such as GDPR and CCPA, but why do organizations still struggle with privacy matters? Maybe it is time to talk about cyber security WITH privacy. Even lead with cyber security. The post Having trouble talking about privacy in 2020?

Privacy 83

Privacy GDPR Information Security Government 83

Hunton Privacy

JULY 10, 2020

On June 26, 2020, New Zealand Justice Minister Andrew Little announced that the bill to repeal and replace New Zealand’s existing Privacy Act 1993 (the “Privacy Bill”) had passed its third reading in Parliament. The Privacy Bill received royal assent on June 30, 2020. Key reforms include: Scope/Applicability. Enforcement.

Privacy 90

Privacy Data breaches Compliance Risk 90

AIIM

JULY 24, 2018

This is the 11th post in a series on privacy by Andrew Pery. Data Privacy and Open Data: Secondary Uses under GDPR. Three Critical Steps for GDPR Compliance. Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR Compliance Starts with Data Discovery.

GDPR 83

GDPR Compliance Privacy Data Privacy 83

IT Governance

AUGUST 21, 2019

If you’re overwhelmed about GDPR compliance or find most implementation advice too technical and complex, don’t worry. IT Governance has created a simple guide to help you understand how to achieve regulatory compliance and avoid disciplinary action. But exactly how should you proceed? Let’s take a look. Implement a DPIA.

GDPR 86

GDPR Compliance Personal data Access 86

Hunton Privacy

JUNE 20, 2019

On June 14, 2019, the Federal Trade Commission announced that it has taken action against a number of companies that allegedly misrepresented their compliance with the EU-U.S. Privacy Shield frameworks (collectively, the “Privacy Shield”) and other international privacy agreements. and Swiss-U.S. SecurTest, Inc.

Privacy 49

Privacy Compliance Government IT 49

Hunton Privacy

APRIL 10, 2020

To cope, transaction processors are shifting work out of their high-security delivery centers and into the spare bedrooms and home offices of their personnel. That shift creates security challenges that have chief information security officers’ (“CISOs’”) heads spinning. The pandemic, however, is changing the game.

Compliance 102

Compliance e-Delivery Security Information Security 102