Perficient Data & Analytics

JULY 2, 2019

My previous blog post addresses the reasons for the regulation and the requirements associated with the New York State Department of Financial Services (NYDFS) 23 NYCRR 500. In this blog, I am addressing the General Data Protection Regulation (GDPR) and all the regulations that come with it. The General Data Protection Regulation (GDPR) is a European Union (EU) regulation on data protection and privacy for all individuals within the EU. Data Protection Officer.

Financial Services 40

Financial Services Data Privacy GDPR Personal data 40

ARMA International

NOVEMBER 7, 2019

The scope of a records and information management (RIM) program in financial services can seem overwhelming. Compared to other industries, the complexities of managing records and information in financial services are arguably some of the toughest to solve, primarily because of the intense regulatory scrutiny. History of Financial System. financial system continues to evolve in response to changing regulations. Financial Services Industry Overview.

Financial Services 55

Financial Services Communications Risk Customer Experience 55

Perficient Data & Analytics

JULY 16, 2019

My previous blog focused on addressing the General Data Protection Regulation (GDPR) and all the regulations that came with it. In my final post of this series, I want to outline the actions you can take to remain proactive with data privacy laws surrounding NYDFS 500 and GDPR. Companies will need to navigate the interconnected pieces of their organization, understand the history and lifecycle of their data, and work closely with regulators to ensure a successful outcome.

Financial Services 43

Financial Services Cybersecurity GDPR Data breaches 43

HL Chronicle of Data Protection

APRIL 17, 2020

Continuing its focus on COVID-19’s impact on its regulated entities, on April 13, the New York Department of Financial Services (NYDFS) released new cybersecurity guidance in response to the COVID-19 pandemic. Data Loss Prevention – ensure employees are not sending nonpublic information to personal email accounts and devices. For more information on the risks COVID-19 places on IT service providers and mitigating those risks, click here.

Financial Services 52

Financial Services MDM Authentication Risk 52

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R. Are data and applications that process data properly classified for confidentiality to ensure proper data management?

Financial Services 65

Financial Services Insurance Risk Encryption 65

Thales eSecurity

DECEMBER 5, 2018

One of the top findings from the 2018 Thales Data Threat Report, Financial Services Edition was that data breaches in U.S. financial services organizations are increasing at an alarming rate. Not only are breaches at record highs – with 65% of U.S. IT security pros in financial services organizations reporting that their organization already had a data breach – but breaches are increasing at alarming rates.

Financial Services 60

Financial Services Digital transformation Risk Blockchain 60

Krebs on Security

MAY 31, 2019

New York regulators are investigating a weakness that exposed 885 million mortgage records at First American Financial Corp. That measure, which went into effect in March 2019 and is considered among the toughest in the nation, requires financial companies to regularly audit and report on how they protect sensitive data, and provides for fines in cases where violations were reckless or willful. ” A Little Sunshine Data Breaches First American Financial Corp.

Financial Services 159

Financial Services Insurance Sales Authentication 159

Security Affairs

AUGUST 23, 2019

Mastercard disclosed a data breach that impacted customer data from the company’s Priceless Specials loyalty program. The American multinational financial services corporation noti f ied the data breach to the German and Belgian Data Protection Authorities. The data leaked online includes customers’ names, payment card numbers, email addresses, home addresses, phone numbers, gender, and dates of birth.

Data breaches 77

Data breaches Financial Services Passwords Access 77

Threatpost

OCTOBER 28, 2019

Breach cybersecurity investment data breach financial services GDPR italy unicreditUniCredit was also hit with hacking incidents in September-October 2016 and June-July 2017.

Cybersecurity 52

Cybersecurity Financial Services Data breaches GDPR 52

Security Affairs

AUGUST 30, 2018

Air Canada data breach – The incident was confirmed by the company and may have affected 20,000 customers (1%) of its 1.7 The data breach of the day is the one suffered by Air Canada that may have affected 20,000 customers (1%) of its 1.7 22-24, 2018, it added that financial data was protected but invited to remain vigilant for fraudulent credit card transactions. ” reads the data breach notification.

Data breaches 57

Data breaches Passwords Financial Services Encryption 57

DLA Piper Privacy Matters

JULY 30, 2019

It’s summer, and life’s a breach. A data breach, that is. It’s your service provider’s breach, but it involves your (more likely, your customer’s) data. So put down the beach reading, for some breach reading. Service provider cyber incidents have exploded in volume, type, frequency, response time and cost. Who “owns” a data breach? How to best protect against service provider incidents?

Data breaches 43

Data breaches Financial Services Insurance Risk 43

IT Governance

JULY 31, 2019

July was bound to be a bounce-back month, but we couldn’t have expected the frighteningly high total of 2,266,042,039 breached records. Granted, a big chunk of those come from a single incident – a mammoth breach involving a Chinese smart tech supplier – but as unimaginative football commentators say, ‘they all count’. Philadelphia Federal Credit Union confirms security breach (unknown). State-sponsored hackers breach Greece’s top-level domain registrar (unknown).

Ransomware 87

Ransomware Data breaches Phishing Libraries 87

OpenText Information Management

DECEMBER 4, 2019

Last year, the number of personal records exposed by cyber attacks on the financial services industry was an incredible 446,575,334 – more than triple from the year before. The financial and reputational damage from these data breaches can be immense. That means being able to … The post Striking a balance between security and usability of sensitive data appeared first on OpenText Blogs.

Financial Services 40

Financial Services Security Insurance Personal data 40

Dark Reading

JULY 28, 2020

The financial services app confirms user data was compromised in a data breach at its former third-party provider, WayDev

Financial Services 78

Financial Services Data breaches IT Security 78

erwin

APRIL 11, 2019

Keeping up with new data protection regulations can be difficult, and the latest – the General Data Protection Regulation (GDPR) – isn’t the only new data protection regulation organizations should be aware of. California recently passed a law that gives residents the right to control the data companies collect about them. In fact, organizations should expect increasing pressure on lawmakers to introduce new data protection regulations.

Retail 65

Retail Government Metadata Financial Services 65

InfoGoTo

FEBRUARY 12, 2020

Financial services firms saw mounting information management challenges in 2019. As the volume and variety of data grows, so do threats from hackers, posing security concerns for organizations and customers alike. Growing Data Volume, Velocity, Variety. According to a Fintech News article, financial institutions like JPMorgan Chase produce terabytes of data every single day. Data Breaches Continue.

Data breaches 46

Data breaches Cloud Risk Financial Services 46

HL Chronicle of Data Protection

FEBRUARY 25, 2020

Companies should take note of two imminent developments in New York in the area of cybersecurity regulation: enforcement of the New York Department of Financial Services (NYDFS) Cybersecurity Regulation (Regulation) and the effective date of the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act or Act). The Regulation and the Act both contain prescriptive cybersecurity requirements and new breach notification obligations for regulated organizations.

Cybersecurity 66

Cybersecurity Insurance Authentication Encryption 66

Data Matters

JANUARY 25, 2018

3, the United States Court of Appeals for the Sixth Circuit issued a decision that effectively required a company to turn over materials relating to a privileged forensic data breach investigation because, the court concluded, the company had implicitly waived privilege when it disclosed certain of the forensic firm’s conclusions in response to a discovery request. The post Protection of Privilege in the Aftermath of a Data Breach appeared first on Data Matters Privacy Blog.

Data breaches 60

Data breaches Communications Financial Services Cybersecurity 60

Rocket Software

AUGUST 17, 2020

For some sectors, like finance, security and data protection are top of mind for everything that is done. Financial services organizations typically experience the most data breaches and hacks, which makes security a priority. Benefits for Financial Services.

Authentication 52

Authentication Passwords Insurance Phishing 52

InfoGoTo

AUGUST 27, 2019

In light of recent malware attacks that affected financial services customers’ data stored in the cloud, organizations should take a hard look at how they’re securing their financial information. One notable example, as discussed in a CIO Dive article, was a data breach at Capital One that exposed the cloud-stored data of 106 million customers. Data protection is an ongoing process. Misconfigured Servers Unveil Sensitive Data.

Authentication 61

Authentication Metadata Cloud Encryption 61

erwin

DECEMBER 20, 2018

The driving factors behind data governance adoption vary. Whether implemented as preventative measures (risk management and regulation) or proactive endeavors (value creation and ROI), the benefits of a data governance initiative is becoming more apparent. Historically most organizations have approached data governance in isolation and from the former category. Defining Data Governance. www.erwin.com/blog/defining-data-governance/. to Data Governance 2.0

Government 40

Government Metadata Compliance Analytics 40

Rippleshot

SEPTEMBER 14, 2017

The massive Equifax data breach that’s making national headlines is estimated to impact nearly half of the U.S. While most of the news centers on the consumer identity theft impact, the real story in the financial services ecosystem is what this hack will cost banks, credit unions and issuers. From what’s been publicly reported, there’s been 209,000 credit card numbers and 182,000 documents with personal information breached.

Financial Services 46

Financial Services Data breaches Personal data Security 46

erwin

MARCH 28, 2019

It also combines process/ workflow, functional, organizational and data/resource views with underlying metrics such as costs, cycle times and responsibilities to provide a foundation for analyzing value chains, activity-based costs, bottlenecks, critical paths and inefficiencies. s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) are requiring businesses across industries to think about their compliance efforts.

Compliance 47

Compliance Customer Experience Healthcare Risk 47

Information Management Resources

MARCH 3, 2019

Equifax's massive breach and Facebook's scandals have made data privacy a big issue for state and federal lawmakers. Data privacy Cyber security Data breaches Finance, investment and tax-related legislation Compliance House Financial Services Committee Senate Banking Committee Equifax CaliforniaHere's why banks need to be worried.

Privacy 28

Privacy Financial Services Data breaches Compliance 28

Information Management Resources

FEBRUARY 20, 2018

Cyber security Cyber attacks Data breaches Finance, investment and tax-related legislation House Financial Services Committee EquifaxA bipartisan bill to establish a federal security framework follows a string of efforts beset by congressional turf battles.

Financial Services 29

Financial Services Security Data breaches 29

Rippleshot

MARCH 8, 2019

When your organization is part of a data breach as big as Equifax and Marriott, expect to stay in the headlines. Those two corporations continue to be under a congressional review microscope following the incidents that left millions of consumers’ data exposed. The Senate Permanent Subcommittee on Investigations has been probing these breaches and its members have been vocal about the lack of oversight in protecting people’s personal and financial credentials.

Financial Services 40

Financial Services Data breaches IT Security 40

Data Matters

JUNE 5, 2018

The Act makes many significant modifications to the postcrisis financial regulatory framework, although it leaves the core of that framework intact. One major consequence of the Act may be an increased potential for mergers, acquisitions and organic growth among regional and midsize banks, as well as community banks, because of provisions that increase the thresholds that must be met before various financial regulatory requirements apply. Initiating Online Banking Services.

Financial Services 65

Financial Services Insurance Authentication Government 65

Adam Levin

APRIL 6, 2020

Marriott International announced a data breach that may have exposed the information of 5.2 This is the second major data breach that Marriott has experienced in recent years; in 2018, the company announced that the information of 327 million customers of subsidiary Starwoodhad been compromised in a similar incident. . The post How Marriott Customers Can Protect Themselves From The Latest Breach appeared first on Adam Levin.

Passwords 66

Passwords Insurance Financial Services Data breaches 66

Troy Hunt

FEBRUARY 26, 2018

tl;dr - a collection of nearly 3k alleged data breaches has appeared with a bunch of data already proven legitimate from previous incidents, but also tens of millions of addresses that haven't been seen in HIBP before. Those 80M records are now searchable, read on for the full story: There's an unknown numbers of data breaches floating around the web. It's also interesting because among nearly 3k other breaches, the data contains Dropbox.

Cleanup 69

Cleanup Passwords Data breaches File names 69

Data Breach Today

JANUARY 23, 2019

GDPR has been in effect since May 2018, but organizations are still waiting to see what impact it will have on the costs organizations might face from breach cleanup, investigations, sanctions and class action lawsuits, says Ian Thornton-Trump of the financial services firm AMTrust International

Cleanup 147

Cleanup Data breaches GDPR Financial Services 147

HL Chronicle of Data Protection

MAY 13, 2019

Major data breaches in recent years are spurring state legislators and regulators across the US into action. For example, the New York Department of Financial Services (‘NYDFS’) in March 2017 issued its Cybersecurity Regulation (23 NYCRR 500) (‘the NYDFS Cybersecurity Regulation’), a groundbreaking and far-reaching regulatory regime focused on financial institutions licensed in New York, including insurance companies.

Insurance 40

Insurance Cybersecurity Compliance Risk 40

Perficient Data & Analytics

OCTOBER 30, 2018

The first step any financial institution must take in its response to the new CCPA law is to evaluate its exposure and current state of readiness. Analysis: Identification of critical process and data gaps, implementation or reinforcement of governance processes, documentation of requirements. Implementation: Technical services to consolidate customer data, develop governance and approval workflows, and make infrastructure upgrades. Perficient + Financial Services.

Insurance 40

Insurance Risk Privacy Government 40

Data Breach Today

NOVEMBER 4, 2019

Incident Exposed Contact Information for 3 Million Italians, Bank Reports UniCredit, an Italian banking and financial services company, sustained a data breach exposing information on 3 million customers that went undetected for four years, the company has acknowledged. Find out what data was exposed

Financial Services 116

Financial Services Data breaches 116

Hunton Privacy

MARCH 23, 2017

On March 21, 2017, New York Attorney General Eric Schneiderman announced that the New York Office of the Attorney General received over 1,300 data breach notifications in 2016, a 60 percent increase from 2015. The reported breaches led to the exposure of personal information of 1.6 According to the Attorney General’s report, 46 percent of the exposed personal information consisted of Social Security numbers, and 35 percent consisted of financial account information.

Financial Services 43

Financial Services Data breaches Cybersecurity Information Security 43

Security Affairs

AUGUST 7, 2019

The American group of insurance and financial services companies State Farm disclosed a credential stuffing attack it has suffered in July. The American group of insurance and financial services companies State Farm revealed that it was the victim of a credential stuffing attack it has suffered in July. Credential stuffing attacks involve botnets to try stolen login credentials usually obtained through phishing attacks and data breaches.

Insurance 79

Insurance Passwords Financial Services Phishing 79

Perficient Data & Analytics

OCTOBER 16, 2018

Compliance with the CCPA will be challenging because it represents major changes in how financial institutions conduct their business. DATA DISPERSION. Consumer personal data is often scattered across multiple internal platforms and shared with many third parties. Firms use consumer personal data to identify and qualify prospects, cross-sell and up-sell to existing customers, and create targeted outreach messages.

Personal data 40

Personal data Privacy Data breaches Financial Services 40

DLA Piper Privacy Matters

JANUARY 29, 2019

NETHERLANDS: Dutch Data Protection Authority received record amount of data breach notifications in 2018. Earlier today, the Dutch Data Protection Authority ( Autoriteit Persoonsgegevens ) issued a press release stating that it received 20,881 notifications of data breaches in 2018. In comparison to 2017, the amount of data breach notifications has (more than) doubled.

Personal data 40

Personal data Financial Services Phishing IT 40

Reltio

OCTOBER 24, 2018

privacy law , similar to GDPR (General Data Protection Regulation), is appropriate and timely. Five years ago this initiative would have been too big of a burden for companies because customer data is siloed throughout organizations in dozens or hundreds of separate systems. GDPR has irreversibly changed the landscape for single customer view data projects for companies doing business in Europe. Blending different types of data. Understanding data ownership.

Data Privacy 63

Data Privacy Customer Experience Data breaches Financial Services 63

Security Affairs

JULY 9, 2020

A report published by security firm Digital Shadows r evealed the availability of more than 15 billion credentials shared on cybercrime marketplaces, paste sites, file sharing services, and code sharing websites. Over the past few years, Digital Shadows added to its breach repository more than 15 billion credentials shared on criminal forums, paste sites, file sharing services, and code sharing websites.

Marketing 80

Marketing Passwords Financial Services Access 80

Perficient Data & Analytics

SEPTEMBER 18, 2018

The California Consumer Privacy Act (CCPA) will have far-reaching effects on how financial institutions manage their customer data. Compliance will be difficult for firms with disparate silos of customer data, nascent data governance and retention policies, multiple third-party relationships, and marketing programs based on personal information. Receive equal service and price even if they exercise their privacy rights.

Privacy 40

Privacy Sales Data breaches Marketing 40