DLA Piper Privacy Matters

MARCH 4, 2021

In contrast, only 70 valid data breach notifications were received under the ePrivacy Regulations and 25 notifications under the Law Enforcement Directive. Around 60% of the data breaches notified occurred in the private sector. Unauthorised disclosure of personal data continues to be the leading reason for breach notifications.

GDPR 105

GDPR Compliance Data breaches Marketing 105

Data Matters

JUNE 24, 2021

3 The SEC and its staff followed the September 2017 statement with various cybersecurity-related initiatives and guidance, including January 27, 2020, cybersecurity guidance and observations published by the SEC’s Division of Examinations (formerly Office of Compliance Inspections and Examinations).

Cybersecurity 68

Cybersecurity Financial Services Risk Compliance 68

HL Chronicle of Data Protection

JUNE 14, 2019

Please join the Hogan Lovells Privacy and Cybersecurity team and LexisNexis on June 19 for the webinar, Operationalizing the California Consumer Privacy Act – Key Decisions and Compliance Strategies. As the first broad-based state law on consumers’ personal data in the U.S., Date: Wednesday, June 19, 2019.

Privacy 40

Privacy GDPR Compliance Financial Services 40

Hunton Privacy

NOVEMBER 22, 2019

On November 13, 2019, the European Data Protection Board (“EDPB”) published its draft guidelines 4/2019 (the “Guidelines”) on the obligation of Data Protection by Design and by Default (“DPbDD”) set out under Article 25 of the EU General Data Protection Regulation (“GDPR”). on how to handle personal data.

Personal data 50

Personal data GDPR Compliance Risk 50

Data Protection Report

FEBRUARY 27, 2019

EU and US regulators continue to increase the stakes for data privacy enforcement. On January 21, 2019, in one of the largest privacy fines announced globally, the French National Data Protection Commission (CNIL) imposed a €50 million penalty against a tech giant for violation of the General Data Protection Regulation (GDPR).

Data Privacy 40

Data Privacy GDPR Privacy Risk 40

Hunton Privacy

DECEMBER 16, 2019

On December 10, 2019, the French Data Protection Authority (the “CNIL”) published the final version of its standard (“Referential”) concerning the processing of personal data in the context of whistleblowing hotlines. The Referential sets a single set of data protection rules that cover all these whistleblowing systems.

Personal data 49

Personal data GDPR Compliance Privacy 49

IT Governance

JANUARY 10, 2019

This week, we discuss a high-profile German data breach, the top worst passwords of 2018, the resignation of NHS Digital’s CISO, and Microsoft’s latest patches. Hello and welcome to the first IT Governance podcast of 2019 – for Friday, 11 January. So, without further ado, let’s crack on with what’s happened so far in 2019.

Data breaches 77

Data breaches Passwords GDPR Personal data 77

Hunton Privacy

APRIL 26, 2019

On April 15, 2019, the UK Information Commissioner’s Office (the “ICO”) issued for public consultation a draft code of practice , “Age Appropriate Design,” that will regulate the provision of online services likely to be accessed by children in the UK. The deadline for responding to the public consultation is May 31, 2019.

Personal data 60

Personal data Privacy GDPR Access 60

Hunton Privacy

JULY 10, 2019

On July 9, 2019, the hearing in the so-called Schrems II case ( case C-311/18 ) took place at the Court of Justice of the European Union (“CJEU”) in Luxembourg. The main parties involved in the proceedings, the Irish Data Protection Commissioner (“Irish DPA”), Facebook Ireland Ltd. in October 2015.

Personal data 63

Personal data Privacy Compliance Access 63

HL Chronicle of Data Protection

JUNE 13, 2019

On May 28, 2019, the Cyberspace Administration of China (“ CAC “) released the draft Measures on the Administration of Data Security (“ Data Security Measures ” see our in-house English translation here ) for public consultation. Requirements for personal data collection statements.

Personal data 40

Personal data IT Data collection Compliance 40

Thales Cloud Protection & Licensing

FEBRUARY 24, 2020

Today, half (50%) of all corporate data is stored in the cloud and nearly half (48%) of that data is considered sensitive (everything from intellectual property to employee, financial or personal data). Whatever the nature of the data stored in the cloud, it needs to be secured. A look ahead—quantum computing.

Digital transformation 79

Digital transformation Cloud Encryption Security 79

Hunton Privacy

JULY 11, 2019

His comments follow an ICO report on adtech released in June 2019, that warned of increased focus on this sector by the regulator, particularly with regards to the real-time bidding component of digital advertising. The need for organisations to be accountable for who they share data with is unambiguous. This is simple stuff.”.

GDPR 55

GDPR Marketing Personal data Compliance 55

Hunton Privacy

MARCH 26, 2019

On March 14, 2019, the Dutch Data Protection Authority ( Autoriteit Persoonsgegevens , the “Dutch DPA”) published a press release announcing its policy (in Dutch ) for calculating administrative fines (the “Policy”).

GDPR 55

GDPR Personal data Authentication Compliance 55

Hunton Privacy

DECEMBER 17, 2020

Twitter estimated that 88,726 Twitter users in Europe were affected between September 5, 2017 and January 11, 2019. The bug was discovered on December 26, 2018. Investigation and GDPR Dispute Resolution Procedure.

GDPR 72

GDPR Data breaches Personal data Compliance 72

DLA Piper Privacy Matters

NOVEMBER 24, 2020

How to properly calculate administrative fines for non-compliance with the EU General Data Protection Regulation (‘ GDPR ’) is one of the most important questions when applying the GDPR on practical level, e.g. : What is actually meant by the reference to “undertaking” in Article 83 (4) to (6) GDPR? million Euro as was too high.

GDPR 75

GDPR Authentication Compliance Personal data 75

Hunton Privacy

JUNE 10, 2019

On May 28, 2019, the Cyberspace Administration of China (“CAC”) released draft Data Security Administrative Measures (the “Measures”) for public comment. The Measures likely will significantly impact network operators’ compliance programs in China. The Measures are open to public comment until June 28, 2019.

Security 53

Security Data breaches Data collection Cybersecurity 53

HL Chronicle of Data Protection

MAY 29, 2019

Opinion 5/2019 on the interplay between the ePrivacy Directive and the GDPR, particularly regarding the competence, tasks, and powers of data protection authorities (12.3.2019) – The EDPB confirmed that where the ePD provides for a more specific rule than the GDPR, the specific rule will prevail. More details in this blog post.

GDPR 40

GDPR Personal data Privacy Information architecture 40

IT Governance

JANUARY 30, 2024

Data breached: 2 PB. Mobile network database breach exposes 750 million Indians’ personal data The Indian security company CloudSEK claims to have found the personal data of 750 million Indians for sale on an “underground forum”. Data breached: 750 million victims’ personal data.

Data Privacy 52

Data Privacy Retail Privacy Manufacturing 52

Hunton Privacy

APRIL 30, 2019

On April 11, 2019, the People’s Republic of China’s Network Security Bureau of the Ministry of Public Security, the Beijing Network Industry Association and the Third Research Institution of the Ministry of Public Security jointly released a “Guide to Protection of Security of Internet Personal Information (the “Guide”).

Cybersecurity 58

Cybersecurity Information Security Personal data Security 58

Data Protection Report

JULY 9, 2018

Like their European counterparts, these state laws are intended to provide consumers with greater transparency and control over their personal data. The California and Vermont laws, in particular, go beyond breach notification and require companies to make significant changes in their data processing operations. Vermont ( H.

GDPR 40

GDPR Data breaches Personal data Insurance 40

IT Governance

DECEMBER 13, 2018

Also in January, the ICO (Information Commissioner’s Office) fined Carphone Warehouse £400,000 – one of the largest fines it issued under the DPA (Data Protection Act) 1998 – for multiple security inadequacies that led to a 2015 data breach in which three million customers’ personal data was compromised.

Data breaches 71

Data breaches Personal data Access GDPR 71

HL Chronicle of Data Protection

MAY 13, 2019

Additionally in 2017, Connecticut passed legislation requiring that health insurers, third-party administrators, and related entities implement and maintain a comprehensive information security program with specific minimum requirements to protect insureds’ personal data. More states are sure to follow.

Insurance 40

Insurance Cybersecurity Data breaches Financial Services 40

CGI

SEPTEMBER 25, 2018

While for some, compliance with the General Data Protection Regulation (GDPR) was business as usual (BAU), for others it represented a huge effort—and a bit of a panic for a minority. Nearly 70% of these companies have either met or are on track to exceed GDPR requirements by May 2019. harini.kottees…. Tue, 09/25/2018 - 02:46.

Privacy 40

Privacy GDPR Cybersecurity Unstructured data 40

Data Matters

JANUARY 2, 2018

The May 25, 2018 effective date for the EU’s General Data Protection Regulation (GDPR) will no doubt be a central focus of 2018. Europe’s omnibus new framework for data protection law applies to (almost) all entities that collect and process EU personal data regardless of where the data are processed.

Cybersecurity 68

Cybersecurity Privacy Data breaches GDPR 68

Data Protector

OCTOBER 11, 2017

We want businesses to ensure that their customers and future customers have consented to having their personal data processed, but we also need to ensure that the enormous potential for new data rights and freedoms does not open us up to new threats. Where she finds criminality, she can prosecute.

GDPR 120

GDPR Personal data Government IT 120

Thales Cloud Protection & Licensing

DECEMBER 23, 2019

According to the 2019 Thales Data Threat Report-India Edition , digital transformation is well underway in India, with 41% of Indian respondents saying they are either aggressively disrupting the markets they participate in or embedding digital capabilities that enable greater organizational agility.

Digital transformation 15

Digital transformation Cloud Encryption Data Privacy 15