Cybersecurity and GDPR - Information Management Today

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. Any company operating in the EU or handling EU residents’ data must adhere to GDPR requirements. However, GDPR compliance is not necessarily a straightforward matter.

GDPR

GDPR Compliance Personal data Privacy

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Even the world’s biggest businesses are not free from GDPR woes. Many businesses find it hard to implement GDPR requirements because the law is not only complex but also leaves a lot up to discretion.

GDPR

GDPR Compliance Personal data Privacy

Marriott Breach Takeaway: The M&A Cybersecurity Challenge

Data Breach Today

NOVEMBER 4, 2020

s GDPR privacy fine against hotel giant Marriott: During M&A, review an organization's cybersecurity posture before finalizing any acquisition. After Buying Starwood, Marriott Didn't Spot Long-Running Breach for 2 More Years Takeaway from the U.K.'s

Cybersecurity

Cybersecurity GDPR Privacy Security

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Breach Roundup: Chinese Hackers Breach Japanese Cyber Agency

Data Breach Today

AUGUST 31, 2023

Also: Data Scraping Warning Sent to Social Media Platforms This week, Japan's cybersecurity agency reportedly was breached, social media companies were urged to ward off data scraping, the NSA said it respects foreign intelligence targets, Polish authorities arrested two for hacking a rail network, and a ransomware gang used GDPR fines as scare tactics. (..)

GDPR

GDPR Ransomware Cybersecurity IT

CJEU Rules That Fear May Constitute Damage Under the GDPR

Hunton Privacy

DECEMBER 19, 2023

Natsionalna agentsia za prihodite (C‑340/21), in which it clarified, among other things, the concept of non-material damage under Article 82 of the EU General Data Protection Regulation (“GDPR”) and the rules governing burden of proof under the GDPR.

GDPR

GDPR Personal data Data breaches Risk

GUEST ESSAY — The rationale for pursuing a culture of cybersecurity– and a roadmap to get there

The Last Watchdog

MARCH 27, 2023

Organizations with strong cybersecurity cultures experience fewer cyberattacks and recover faster than others. For most organizations, building a cybersecurity culture is a necessary evil rather than a cherished goal. For most organizations, building a cybersecurity culture is a necessary evil rather than a cherished goal.

Cybersecurity

Cybersecurity Data breaches Privacy Risk

How to Comply with GDPR, PIPL, and CCPA

eSecurity Planet

DECEMBER 22, 2021

When it comes to managing cybersecurity risk , approximately 35 percent of organizations say they only take an active interest if something bad happens. PIPL Compliance CCPA Compliance GDPR Compliance How to Stay Up to Date with Changing Compliance Regulations. GDPR Compliance. What is GDPR? Who Does GDPR Affect?

GDPR

GDPR Compliance Data Privacy Privacy

GUEST ESSAY: ‘CyberXchange’ presents a much-needed platform for cybersecurity purchases

The Last Watchdog

OCTOBER 19, 2020

There is no shortage of innovative cybersecurity tools and services that can help companies do a much better job of defending their networks. alone, in fact, there are more than 5,000 cybersecurity vendors. They are responding to a trend of companies moving to meet rising compliance requirements, such as PCI-DSS and GDPR.

Cybersecurity

Cybersecurity B2B Sales Compliance

GDPR Enforcement Deadline: If You Blew It, What's Next?

Data Breach Today

MAY 29, 2018

What happens if organizations that must comply with GDPR have yet to achieve compliance, despite having had two years to do so before enforcement began? Don't panic, says cybersecurity expert Brian Honan, but do be pursuing a data privacy transparency and accountability action plan.

GDPR

GDPR Data Privacy IT Compliance

The European Commission’s GDPR review in short

Privacy and Cybersecurity Law

JULY 22, 2020

Two years after the GDPR entered into force, the European Commission ( EC ) issued its first evaluation of the GDPR. Individuals are increasingly aware of the GDPR and their GDPR rights. The GDPR’s international data transfer toolbox. We have addressed the key points from the EC’s evaluation below.

GDPR

GDPR Privacy Personal data Compliance

Biden Cybersecurity Strategy: Big Ambitions, Big Obstacles

eSecurity Planet

MARCH 3, 2023

The White House’s National Cybersecurity Strategy unveiled yesterday is an ambitious blueprint for improving U.S. cybersecurity and threat response, but some of the more ambitious items will take time to implement, and could face opposition from Congress. ” Those fundamental shifts are focused on two core priorities. .”

Cybersecurity

Cybersecurity Government Manufacturing Personal data

Two Years on from GDPR: Has It Driven Growth in Cybersecurity Insurance?

Dark Reading

SEPTEMBER 10, 2020

Whilst GDPR has put the spotlight on data privacy and cyber issues, there are other more prominent trends that are driving a greater take-up of cyber insurance, says Ben Maidment, Class Underwriter - Cyber, Physical & Technology at Brit Insurance.

Insurance

Insurance GDPR Data Privacy Cybersecurity

Not GDPR Compliant Yet? Don't Panic

Data Breach Today

JUNE 1, 2018

Leading the latest edition of the ISMG Security Report: Cybersecurity expert Brian Honan provides insights on why organizations that are not yet compliant with GDPR need to focus on several key steps. Also: An assessment of the progress women are making in building careers in information security.

GDPR

GDPR Information Security Cybersecurity Security

The Reaction to New White House Cybersecurity Strategy

Data Breach Today

SEPTEMBER 28, 2018

Leading the latest edition of the ISMG Security Report: The reaction to the recently released White House cybersecurity strategy. Also featured: A discussion of GDPR's impact on class action lawsuits.

Cybersecurity

Cybersecurity GDPR Security

DLA Piper GDPR fines and data breach survey: January 2021

DLA Piper Privacy Matters

JANUARY 19, 2021

The third annual DLA Piper GDPR fines and data breach survey which we launched today reflects how the current circumstances have affected the privacy landscape across the 31 European countries surveyed. The report includes key GDPR metrics compiled from data from the 27 EU Member States plus the UK, Norway, Iceland and Liechtenstein.

Data breaches

Data breaches GDPR Personal data Privacy

The GDPR International Data Transfer Regime: the case for Proportionality and a Risk-Based Approach

DLA Piper Privacy Matters

NOVEMBER 15, 2022

Member State supervisory authorities have argued that it is not possible to adopt a risk-based approach when assessing transfers of personal data to “third countries”, in essence arguing that transfers are prohibited if the possibility of foreign governmental access gives rise to any risk of harm (however trivial and however unlikely).

GDPR

GDPR Risk Personal data Paper

Cybersecurity Awareness Month: Resilient Multi-factor Authentication (MFA) and Strong Passwords

Thales Cloud Protection & Licensing

OCTOBER 4, 2022

Cybersecurity Awareness Month: Resilient Multi-factor Authentication (MFA) and Strong Passwords. Historically, October has always been an important month for the cybersecurity community and a month of major cybersecurity events. So in 2004, the President of the United States designated October as Cybersecurity Awareness Month.

Authentication

Authentication Passwords Cybersecurity Personal data

GDPR Data Security Checklist in the Age of COVID-19 and the Remote Workforce

Security Affairs

MAY 11, 2020

During COVID-19 outbreak data processors have to be extra vigilant to maintain their compliance with data protection authorities like GDPR. It has imposed online learning and earning, which in turn has open new doors of cybersecurity threats and data breaches. COVID-19 Remote Working – GDPR Data Security Checklist.

GDPR

GDPR Security Compliance Encryption

CYBERSECURITY AND GDPR: WHERE WE ARE HEADING

DLA Piper Privacy Matters

NOVEMBER 24, 2017

The European General Data Protection Regulation (“GDPR”) is leading to a change culture, which will increase not only data protection but also security awareness. Below you will find the main takeaways of the data protection and cybersecurity seminar held with the GIOIN Open Innovation Network in Turin.

GDPR

GDPR Cybersecurity Data breaches Risk

Europe Leads the Cybersecurity Regulation Dance

Thales Cloud Protection & Licensing

MARCH 1, 2023

Europe Leads the Cybersecurity Regulation Dance divya Thu, 03/02/2023 - 06:58 Europe has emerged as a hub for developing cyber policies, acting to improve software security, and quickly reporting severe breaches. These steps intend to adjust European cybersecurity policy to the changing threat environment.

Cybersecurity

Cybersecurity Compliance GDPR Manufacturing

Webinar on Business Continuity and COVID-19 from a GDPR Perspective

Hunton Privacy

APRIL 10, 2020

Join us on April 20, 2020, for an in-depth webinar on Business Continuity and COVID-19 from a GDPR Perspective. Measures to consider for safe teleworking and cybersecurity preparedness. Register for this program now.

GDPR

GDPR Compliance Privacy Cybersecurity

GDPR Enforcement Deadline: If You Blew It, What Next?

Data Breach Today

MAY 29, 2018

What happens if organizations that must comply with GDPR have yet to achieve compliance, despite having had two years to do so before enforcement begins? Don't panic, says cybersecurity expert Brian Honan, but do be pursuing a data privacy transparency and accountability action plan.

GDPR

GDPR Data Privacy IT Compliance

New SEC Cybersecurity Rules Could Affect Private Companies Too

eSecurity Planet

SEPTEMBER 23, 2022

Securities and Exchange Commission (SEC) strongly advised public companies to improve their cybersecurity. However, after minimal corporate adoption of stronger cybersecurity, the SEC has drafted rules to require more formal cybersecurity reporting and disclosure. Also read: What is Cybersecurity Risk Management?

Cybersecurity

Cybersecurity Compliance Risk Communications

Researchers: GDPR Already Having Positive Effect on Cybersecurity in EU

The Security Ledger

DECEMBER 5, 2018

The General Data Privacy Regulation (GDPR) seems to already be having a positive effect on the state of cybersecurity in Europe less than seven months after it was enacted, showing that policy indeed can have a direct effect on organizations' security practices, security researchers said. Read the whole entry. »

GDPR

GDPR Cybersecurity Data Privacy Data breaches

Data Breach Reports Fall 45% in UK

Data Breach Today

SEPTEMBER 4, 2020

Are Organizations Failing to Spot Breaches, or to Report Them, as Required by GDPR? The number of cybersecurity incidents reported to the U.K.'s s data privacy watchdog has continued to decline, recently plummeting by nearly 40%.

Data breaches

Data breaches Data Privacy GDPR Privacy

MY TAKE: NIST Cybersecurity Framework has become a cornerstone for securing networks

The Last Watchdog

APRIL 30, 2019

If your company is participating in the global supply chain, either as a first-party purchaser of goods and services from other organizations, or as a third-party supplier, sooner or later you’ll encounter the NIST Cybersecurity Framework. They are the people who brought you 36 inches in a yard,” Wrenn observed. The stakes are high.

Cybersecurity

Cybersecurity Insurance Security Privacy

New Guidance Published on Cybersecurity and Medical Devices

Data Matters

JANUARY 13, 2020

New European medical device guidance will require manufacturers to carefully review cybersecurity and IT security requirements in relation to their devices and in their product literature. In December 2019, the Medical Device Coordination Group (MDCG) published its guidance on cybersecurity for medical devices (the Guidance).

Cybersecurity

Cybersecurity Manufacturing GDPR Privacy

The impact of GDPR on cybersecurity managers

Information Management Resources

DECEMBER 6, 2018

Among many unclear implication of GDPR, the vaguest might be how to ensure compliance with the security requirements, including data protection by design and by default.

GDPR

GDPR Cybersecurity Compliance Security

Hackers Love to Strike on Saturday

Data Breach Today

MARCH 13, 2019

Analysis of Pre-GDPR Breach Reports in UK Reveals Attack Trends If you had to guess what day of the week a hacker will hit your organization, the answer might seem obvious: Hackers prefer to strike on Saturday. And a review by Redscan of cybersecurity incidents reported to Britain's privacy regulator before GDPR took effect confirms it.

GDPR

GDPR Privacy Cybersecurity IT

Hunton Partner Dora Luo Publishes “China: The Draft PIPL and the GDPR – A Comparative Perspective”

Hunton Privacy

FEBRUARY 23, 2021

In the February 2021 issue of the Data Protection Leader , Hunton partner Dora Luo discusses China’s draft Personal Information Protection Law (“Draft PIPL”) ( in Chinese ) in the context of other comprehensive data protection frameworks, such as the EU General Data Protection Regulation (“GDPR”).

GDPR

GDPR Personal data Compliance Cybersecurity

Exploiting GDPR to Get Private Information

Schneier on Security

AUGUST 13, 2019

A researcher abused the GDPR to get information on his fiancee: It is one of the first tests of its kind to exploit the EU's General Data Protection Regulation (GDPR) , which came into force in May 2018. Generally if it was an extremely large company -- especially tech ones -- they tended to do really well," he told the BBC.

GDPR

GDPR Education Compliance IT

Key lessons from the first major GDPR fines for cyber breaches

Privacy and Cybersecurity Law

JANUARY 18, 2021

The first headlines on the future threat of “mega fines” under the EU General Data Protection Regulation (GDPR) appeared as far back as 2016, when the text of the GDPR was first adopted by the European Parliament. Nevertheless, they remain the highest data protection fines imposed in Europe for cybersecurity breaches.

GDPR

GDPR Cybersecurity Data breaches Risk

Ways to Develop a Cybersecurity Training Program for Employees

Security Affairs

APRIL 15, 2022

Cybersecurity experts would have you believe that your organization’s employees have a crucial role in bolstering or damaging your company’s security initiatives. Developing a cybersecurity training program requires knowing where the blind spots are. Cover Cybersecurity Topics. Introduce Data Privacy Laws.

Cybersecurity

Cybersecurity Data Privacy Data breaches Privacy

How Brexit Impacts the Future of Europe’s Cybersecurity Posture

Thales Cloud Protection & Licensing

AUGUST 2, 2019

The EU recently adopted two key pieces of legislation designed to govern cybersecurity and privacy issues. The first piece of legislation, the General Data Protection Regulation (GDPR) 1 , regulates data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA).

Cybersecurity

Cybersecurity Personal data Data breaches GDPR

Payments and Fintech: Addressing Key EU, UK and U.S. Cybersecurity Issues

Data Matters

JULY 17, 2020

Regulators and policymakers on both sides of the Atlantic are imposing increasingly prescriptive cybersecurity regulatory frameworks and closer scrutiny upon companies, while new and escalating cybersecurity threats challenge standard safeguards. Partner, Privacy and Cybersecurity Practice, Washington, D.C. PT | 11:00 a.m.

Cybersecurity

Cybersecurity Financial Services GDPR Privacy

Sidley Privacy and Cybersecurity Roundtable

Data Matters

SEPTEMBER 10, 2021

Please join Sidley’s Privacy and Cybersecurity Group for a two-part discussion with UK government officials with a focus on data transfer and innovation. The post Sidley Privacy and Cybersecurity Roundtable appeared first on Data Matters Privacy Blog. UK Data Protection and Data Transfers – New Directions. Moderators.

Privacy

Privacy Cybersecurity Government Risk

Why Isn't GDPR Being Enforced?

Schneier on Security

MAY 2, 2019

Politico has a long article making the case that the lead GDPR regulator, Ireland, has too cozy a relationship with Silicon Valley tech companies to effectively regulate their privacy practices.

GDPR

GDPR Data Privacy Privacy Access

GDPR Solutions: Cybersecurity Vendors Offer New Compliance Products

eSecurity Planet

JUNE 1, 2018

GDPR is here, and cybersecurity vendors are responding with privacy and security compliance solutions.

GDPR

GDPR Compliance Cybersecurity Privacy

10 Highlights: Cryptographers' Panel at RSA Conference 2019

Data Breach Today

APRIL 17, 2019

Facebook's Cryptocurrency Folly, Scaling Security and Why Doomsday Is Temporary From blockchains and surveillance to backdoors and GDPR, a group of leading cryptographers rounded up the top cybersecurity and privacy matters of the day at the cryptographers' panel held at the recent RSA Conference 2019 in San Francisco.

Blockchain

Blockchain GDPR Privacy Cybersecurity

This Cybersecurity Awareness Month, Implement Multi-Factor Authentication

Rocket Software

OCTOBER 28, 2021

The White House has proclaimed October Cybersecurity Awareness Month, promoting efforts by the Cybersecurity and Infrastructure Security Agency (CISA) to encourage the public to be “Cyber Smart” and stay safe online. This Cybersecurity Awareness Month, find the system-specific security solution that fits your needs.

Authentication

Authentication Cybersecurity Passwords Access

Highlighting the Chinese Cybersecurity Law

Data Matters

OCTOBER 9, 2018

Former Department of Homeland Security Chief Privacy Officer Hugo Teufel III and Sidley’s Edward McNicholas addressed a packed room on Chinese Cybersecurity Law at the 2018 Privacy + Security Forum hosted at George Washington University. The post Highlighting the Chinese Cybersecurity Law appeared first on Data Matters Privacy Blog.

Cybersecurity

Cybersecurity Privacy GDPR Security

Privacy and Cybersecurity October 2018 Events

HL Chronicle of Data Protection

SEPTEMBER 28, 2018

Please join us for our October 2018 Privacy and Cybersecurity Events. GDPR Compliance. Bret Cohen will speak on the panel, “ GDPR Compliance 2.0 ,” at the Privacy + Security Forum. Highlights From the GDPR. Cybersecurity Threats. Medical Device Privacy and Cybersecurity. October 4 . October 10.

Privacy

Privacy Cybersecurity GDPR Data Privacy

MY TAKE: Six-figure GDPR privacy fines reinforce business case for advanced SIEM, UEBA tools

The Last Watchdog

AUGUST 29, 2019

Related: Will GDPR usher in new age of privacy? Under GDPR, Europe has the authority to fine organizations up to 4 percent of their annual global revenue if they violate any European citizen’s privacy rights, for example, by failing to secure their personal data. We spoke at Black Hat USA 2019.

GDPR

GDPR Privacy Big data Personal data

First multi-million GDPR fine in Germany: €14.5 million for not having a proper data retention schedule in place

Data Protection Report

NOVEMBER 12, 2019

million fine on a German real estate company, die Deutsche Wohnen SE ( Deutsche Wohnen ), the highest German GDPR fine to date. For the first time, the Berlin DPA applied the new calculation method for GDPR fines issued by the German Datenschutzkonferenz recently (see our recent post ). Infringement of deletion obligations.

GDPR

GDPR Personal data Records Management Archiving

GDPR compliance checklist

How to implement the General Data Protection Regulation (GDPR)

Webinars

Trending Sources

Marriott Breach Takeaway: The M&A Cybersecurity Challenge

Webinars

Breach Roundup: Chinese Hackers Breach Japanese Cyber Agency

CJEU Rules That Fear May Constitute Damage Under the GDPR

GUEST ESSAY — The rationale for pursuing a culture of cybersecurity– and a roadmap to get there

How to Comply with GDPR, PIPL, and CCPA

GUEST ESSAY: ‘CyberXchange’ presents a much-needed platform for cybersecurity purchases

GDPR Enforcement Deadline: If You Blew It, What's Next?

The European Commission’s GDPR review in short

Biden Cybersecurity Strategy: Big Ambitions, Big Obstacles

Two Years on from GDPR: Has It Driven Growth in Cybersecurity Insurance?

Not GDPR Compliant Yet? Don't Panic

The Reaction to New White House Cybersecurity Strategy

DLA Piper GDPR fines and data breach survey: January 2021

The GDPR International Data Transfer Regime: the case for Proportionality and a Risk-Based Approach

Cybersecurity Awareness Month: Resilient Multi-factor Authentication (MFA) and Strong Passwords

GDPR Data Security Checklist in the Age of COVID-19 and the Remote Workforce

CYBERSECURITY AND GDPR: WHERE WE ARE HEADING

Europe Leads the Cybersecurity Regulation Dance

Webinar on Business Continuity and COVID-19 from a GDPR Perspective

GDPR Enforcement Deadline: If You Blew It, What Next?

New SEC Cybersecurity Rules Could Affect Private Companies Too

Researchers: GDPR Already Having Positive Effect on Cybersecurity in EU

Data Breach Reports Fall 45% in UK

MY TAKE: NIST Cybersecurity Framework has become a cornerstone for securing networks

New Guidance Published on Cybersecurity and Medical Devices

The impact of GDPR on cybersecurity managers

Hackers Love to Strike on Saturday

Hunton Partner Dora Luo Publishes “China: The Draft PIPL and the GDPR – A Comparative Perspective”

Exploiting GDPR to Get Private Information

Key lessons from the first major GDPR fines for cyber breaches

Ways to Develop a Cybersecurity Training Program for Employees

How Brexit Impacts the Future of Europe’s Cybersecurity Posture

Payments and Fintech: Addressing Key EU, UK and U.S. Cybersecurity Issues

Sidley Privacy and Cybersecurity Roundtable

Why Isn't GDPR Being Enforced?

GDPR Solutions: Cybersecurity Vendors Offer New Compliance Products

10 Highlights: Cryptographers' Panel at RSA Conference 2019

This Cybersecurity Awareness Month, Implement Multi-Factor Authentication

Highlighting the Chinese Cybersecurity Law

Privacy and Cybersecurity October 2018 Events

MY TAKE: Six-figure GDPR privacy fines reinforce business case for advanced SIEM, UEBA tools

First multi-million GDPR fine in Germany: €14.5 million for not having a proper data retention schedule in place

Stay Connected