Data breaches, Exercises and Financial Services

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. The new rules provide more details on how the senior governing body of the covered entity is expected to exercise oversight of its cybersecurity risk management.

Financial Services

Financial Services Cybersecurity Compliance Government

Security Affairs newsletter Round 450 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 17, 2023

CISA and ENISA enhance their Cooperation CISA adds Qlik bugs to exploited vulnerabilities catalog Report: 2.6

Security

Security Data breaches Ransomware Artificial Intelligence

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

The New York State Department for Financial Services regulations require covered entities to have appropriate record retention policies and procedures and the CCPA provides an extra incentive to implement proper information governance to minimise the costs data access requests. In the U.S., Be one step ahead.

Privacy

Privacy GDPR Data breaches Risk

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

The New York State Department for Financial Services regulations require covered entities to have appropriate record retention policies and procedures and the CCPA provides an extra incentive to implement proper information governance to minimise the costs data access requests. In the U.S., Be one step ahead.

Privacy

Privacy GDPR Data breaches Risk

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

HL Chronicle of Data Protection

MAY 13, 2019

Major data breaches in recent years are spurring state legislators and regulators across the US into action. The NYDFS Cybersecurity Regulation requires covered entities – banks, insurance companies, and other financial services institutions – to implement a wide range of practices to manage cybersecurity risk.

Insurance

Insurance Cybersecurity Data breaches Financial Services

The Impact of Data Protection Laws on Your Records Retention Schedule

ARMA International

APRIL 18, 2022

For instance, Canada has a data protection law 3 and is currently considering a new data protection law that places even more restrictions on the retention and use of personal data than the GDPR 4. The United States does not have a Federal data protection law that protects all consumers.

Personal data

Personal data GDPR Privacy Records Management

Cybersecurity: Managing Risks With Third Party Companies

Cyber Info Veritas

JULY 19, 2018

Did you know that 63% of all data breaches are directly or indirectly linked to third party companies? This article will focus on some strategies that organizations should consider implementing in order to mitigate their cybersecurity risk as far as third-party service providers are concerned.

Risk

Risk Cybersecurity Compliance Data breaches

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

Data Matters

SEPTEMBER 24, 2019

We provide a brief overview of BDPA’s principles relating to the processing of personal data, requirements with respect to data subject rights, international transfers, and compliance. Companies in the financial services, technology, airline and hotel industries are among those that could face substantial compliance obligations.

Personal data

Personal data GDPR Data Privacy Privacy

Takeaways From CCPA Public Forums

Data Matters

FEBRUARY 12, 2019

See id. § 1798.125(a)(2) (allowing a different rate to be charged to consumers who opt-out if it is reasonably related “to the value provided to the consumer [sic] by the consumer’s data”). Safe Harbors and Concrete Guidance.

Sales

Sales Privacy Data Privacy Compliance

Ireland: DPC Annual Report 2020: Enforcement & Transfers Dominate Agenda

DLA Piper Privacy Matters

MARCH 4, 2021

Breach notifications to the DPC increased by 10% in 2020, reaching a total of 6,628 valid notifications. 90% of the recorded breach cases were concluded in 2020. In contrast, only 70 valid data breach notifications were received under the ePrivacy Regulations and 25 notifications under the Law Enforcement Directive.

GDPR

GDPR Compliance Data breaches Marketing

Rock the Blockchain: Thales and DigiCert Secure the Data

Thales Cloud Protection & Licensing

SEPTEMBER 15, 2021

It’s a staggering statistic, but 39% of companies are still not using robust data security measures. billion data records were breached, quadrupling in 2020 to 36 billion globally. Data breaches are a tremendous threat to any enterprise, as malicious actors continue to be the driving force behind these breaches.

Blockchain

Blockchain Security Authentication Compliance

The Hacker Mind Podcast: Going Passwordless

ForAllSecure

JANUARY 19, 2022

You might not think of it as a major aspect of security and yet, stolen credentials are really the key to data breaches today. In most cases, this regards the European Union’s General Data Protection Regulation or GDPR, and in the UK that law continues as the UK GDPR. And those breach reports.

Passwords

Passwords Authentication Access Data breaches

Nation-State-Sponsored Attacks: Not Your Grandfather’s Cyber Attacks

Data Matters

MAY 17, 2022

It used to be that data breaches were all about cyber-crooks hacking computer systems to steal personal information, followed by an affected company sending regretful notification letters offering a year or two of complimentary credit monitoring. In your grandfather’s data breach—e.g., All rights reserved.

Cybersecurity

Cybersecurity Government Authentication Ransomware

Information Management Today

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Security Affairs newsletter Round 450 by Pierluigi Paganini – INTERNATIONAL EDITION

Webinars

Trending Sources

The Privacy Officers’ New Year’s Resolutions

Webinars

The Privacy Officers’ New Year’s Resolutions

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

The Impact of Data Protection Laws on Your Records Retention Schedule

Cybersecurity: Managing Risks With Third Party Companies

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

Takeaways From CCPA Public Forums

Ireland: DPC Annual Report 2020: Enforcement & Transfers Dominate Agenda

Rock the Blockchain: Thales and DigiCert Secure the Data

The Hacker Mind Podcast: Going Passwordless

Nation-State-Sponsored Attacks: Not Your Grandfather’s Cyber Attacks

Stay Connected