IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. Any company operating in the EU or handling EU residents’ data must adhere to GDPR requirements. However, GDPR compliance is not necessarily a straightforward matter.

GDPR 86

GDPR Compliance Personal data Privacy 86

DLA Piper Privacy Matters

JANUARY 19, 2021

The third annual DLA Piper GDPR fines and data breach survey which we launched today reflects how the current circumstances have affected the privacy landscape across the 31 European countries surveyed. This year has been extraordinary in many different ways.

Data breaches 103

Data breaches GDPR Personal data Privacy 103

DLA Piper Privacy Matters

OCTOBER 13, 2020

In contrast to personal injury claims where lawyers have (hundreds of) years of case law to call upon to help calculate compensation, there is comparatively little case law considering how compensation will be calculated for distress when personal data are processed in breach of GDPR. The decision.

GDPR 103

GDPR Data breaches Personal data Access 103

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Yet many organizations still struggle to meet compliance requirements, and EU data protection authorities do not hesitate to hand out penalties. Irish regulators hit Meta with a EUR 1.2

GDPR 81

GDPR Compliance Personal data Privacy 81

Data Protection Report

APRIL 5, 2023

The alleged GDPR infringements: The Garante apparently took its action after becoming aware of a recent data breach at ChatGPT, where users’ chat titles and payment information was exposed.

Personal data 111

Personal data GDPR Data breaches Privacy 111

Hunton Privacy

JULY 1, 2020

The Italian Data Protection Authority ( Garante per la protezione dei dati personali , “Garante”) recently announced that it levied a €600,000 fine on banking institution UniCredit for several violations of the Italian Personal Data Protection Code, in its pre-General Data Protection Regulation (“GDPR”) form.

Data breaches 111

Data breaches GDPR Personal data Education 111

Security Affairs

AUGUST 26, 2023

Pôle emploi, the French government employment agency suffered a data breach that impacted 10 million individuals. The French government employment agency Pôle emploi suffered a data breach and is notifying 10 million individuals impacted by the security breach.

Data breaches 83

Data breaches GDPR Personal data Government 83

Security Affairs

NOVEMBER 2, 2020

The UK Information Commissioner’s Office fined US hotels group Marriott over the 2018 data breach that affected millions of customers worldwide. million) for multiple data breaches suffered by the company since 2018 that exposed the personal information of its customers. million ($23.5 According to the U.K.’s

Data breaches 131

Data breaches Personal data GDPR Encryption 131

IT Governance

NOVEMBER 28, 2018

The data breach notification requirements of the EU GDPR (General Data Protection Regulation) are complicated, so it’s no surprise that many organisations aren’t sure what they’re supposed to be doing. What is a personal data breach? What is a personal data breach?

Data breaches 85

Data breaches GDPR Personal data Compliance 85

IT Governance

JANUARY 3, 2018

There’s not much organisations can do to eliminate data loss, so the problem becomes how to reduce the damage once the data is exposed? This is a particularly pressing concern with the EU General Data Protection Regulation (GDPR) taking effect this year. Data transfers. Pseudonymisation and encryption.

Personal data 71

Personal data GDPR Encryption Data breaches 71

IT Governance

MAY 25, 2023

billion fine for Meta – by far the biggest fine issued under the GDPR since it took effect five years ago – has been taken by many as a sign that the Regulation is at last beginning to be enforced with sufficient vigour. Monday’s €1.2 Our team will review your suppliers’ privacy notices and other supporting information.

GDPR 96

GDPR Compliance Personal data Data Privacy 96

Data Matters

OCTOBER 31, 2017

The WP29 is a collective of EU data privacy supervisory authorities (“ DPAs ”). The WP29 guidance regarding personal data breaches has been long awaited. affected data subjects of the breach “without undue delay” where the breach is “likely to result in a high risk to the rights and freedoms of natural persons’.

Personal data 60

Personal data Data breaches GDPR Risk 60

Hunton Privacy

JULY 18, 2023

Palazzi from Allende & Brea in Argentina reports that on June 30, 2023, the Argentine Executive Branch sent the new proposed Personal Data Protection Bill (the “Bill”) to the National Congress for consideration. 25,326 of 2000). It is expected to be discussed during the end of 2023 and next year.

Personal data 52

Personal data GDPR Privacy Data Privacy 52

IT Governance

JULY 2, 2020

What is the GDPR? The Regulation came into effect on 25 May 2018, and was designed to strengthen the rights of EU residents regarding the way organisations process and use their personal data. First, the UK has implemented the UK DPA (Data Protection Act) 2018 , which adopts the GDPR into national law.

GDPR 111

GDPR Personal data Data breaches Compliance 111

Hunton Privacy

JANUARY 19, 2021

On January 18, 2021, the European Data Protection Board (“EDPB”) released draft Guidelines 01/2021 on Examples regarding Data Breach Notification (the “Guidelines”). The new draft Guidelines take into account supervisory authorities’ common experiences with data breaches since the GDPR became applicable in May 2018.

Data breaches 99

Data breaches Personal data GDPR Risk 99

eSecurity Planet

DECEMBER 22, 2021

The regulations from GDPR, PIPL, and CCPA are especially prevalent to MSPs and software vendors because they get access to data from so many organizations, but all businesses need to comply with them. PIPL Compliance CCPA Compliance GDPR Compliance How to Stay Up to Date with Changing Compliance Regulations. GDPR Compliance.

GDPR 144

GDPR Compliance Data Privacy Privacy 144

Hunton Privacy

MARCH 10, 2021

On March 2, 2021, the Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth submitted its response to the European Data Protection Board (“EDPB”) consultation on draft guidelines on examples regarding data breach notification (the “Guidelines”).

Data breaches 96

Data breaches GDPR Personal data Risk 96

Hunton Privacy

MARCH 7, 2023

The Report contains details on several areas of the DPC’s work, including complaints from data subjects received by the DPC, personal data breach notifications received by the DPC and statutory inquiries conducted by the DPC.

Personal data 114

Personal data GDPR Data breaches Compliance 114

Hunton Privacy

OCTOBER 31, 2023

October 12, 2023, the French Data Protection Authority (the “CNIL”) announced a €600,000 fine for mass media company Groupe Canal+ for failing to comply with its commercial prospecting obligations applicable under the French Post and Electronic Communications Code and several obligations of the EU General Data Protection Regulation (“GDPR”).

GDPR 64

GDPR Marketing Personal data Communications 64

IT Governance

JUNE 20, 2018

A number of people have asked whether the GDPR (General Data Protection Regulation) applies to data breaches that occurred before 25 May 2018 but were discovered after that date. He stressed that the GDPR’s 25 May enforcement date was well known. He stressed that the GDPR’s 25 May enforcement date was well known.

Data breaches 68

Data breaches GDPR Compliance Personal data 68

IT Governance

MARCH 8, 2019

2018 saw some of the biggest data breaches yet , with Marriott, Under Armour and Facebook suffering breaches that affected 500 million, 150 million and 100 million people respectively. However, the Regulation didn’t seem to reduce the number of data breaches: there were approximately 2.3

Data breaches 109

Data breaches GDPR Personal data Compliance 109

IT Governance

MARCH 6, 2019

The GDPR (General Data Protection Regulation) isn’t only about preventing data breaches (it’s equally focused on strengthening data subjects’ rights), but organisations have understandably honed in on the importance of effective data protection. What the GDPR says about reducing risk.

Information Security 90

Information Security GDPR Data breaches Compliance 90

IT Governance

JULY 31, 2019

The documentation of processing activities is a new legal requirement under the EU GDPR (General Data Protection Regulation). Documenting your processing activities can also support good data governance, and help you to demonstrate your compliance with other aspects of the GDPR. Data Retention Schedule (Article 30).

GDPR 77

GDPR Data breaches Personal data Compliance 77

Hunton Privacy

MARCH 30, 2021

The Draft Guidance also applies to all organizations that process children’s data, not just providers of Information Society Services (“ISS”), and has a broader scope than the ICO Age Appropriate Code, covering issues such as how to address security standards, handle data breaches and use biometrics.

Personal data 111

Personal data GDPR Risk Privacy 111

Hunton Privacy

OCTOBER 29, 2018

Recently, the French Data Protection Authority (the “CNIL”) published a statistical review of personal data breaches during the first four months of the EU General Data Protection Regulation’s (“GDPR”) entry into application. Types of breaches. Cause of the breaches.

Data breaches 96

Data breaches GDPR Personal data Risk 96

IT Governance

AUGUST 12, 2021

Last month, Amazon was hit with a €746 million (about £630 million) fine for violating the GDPR (General Data Protection Regulation) – an astronomical figure by data protection regulation, or indeed most, standards. And how will it affect GDPR compliance in the future? So what did Amazon do wrong to warrant such a fine?

GDPR 128

GDPR Data breaches Compliance Privacy 128

IT Governance

DECEMBER 21, 2023

To find out, we looked at the ICO’s (Information Commissioner’s Office) public data set , specifically looking into four data breach types caused by human error: Data emailed to incorrect recipient. Data posted or faxed to incorrect recipient. Failure to redact. Failure to use Bcc. This isn’t too surprising.

Data breaches 52

Data breaches Personal data Government GDPR 52

IT Governance

DECEMBER 13, 2018

The first 72 hours after you become aware of a data breach are critical. This is the deadline given to you under the EU GDPR (General Data Protection Regulation) to report information security incidents to your supervisory authority. Not all breaches need to be reported. How to report data breaches.

Data breaches 110

Data breaches GDPR Personal data Compliance 110

IT Governance

OCTOBER 24, 2018

The first 72 hours after you become aware of a data breach are critical. This is the deadline given to you under the EU GDPR (General Data Protection Regulation) to report information security incidents to your supervisory authority. Not all breaches need to be reported. How to report data breaches.

Data breaches 110

Data breaches GDPR Compliance Personal data 110

The Last Watchdog

AUGUST 19, 2021

TMobile has now issued a formal apology and offered free identity theft recovery services to nearly 48 million customers for whom the telecom giant failed to protect their sensitive personal information. At the start of this week, word got out that hackers claimed to have seized personal data for as many as 100 million T-Mobile patrons.

Data breaches 306

Data breaches Authentication Access Personal data 306

DLA Piper Privacy Matters

APRIL 27, 2023

In the course of this cyber-attack, personal data – mainly tax and social security information – of approximately 4 million Bulgarian citizens (or approximately 6 million citizens in total, including foreign citizens) had been accessed and published on the Internet. 82 (1) GDPR.

Personal data 52

Personal data GDPR Access Data breaches 52

Data Protection Report

JUNE 1, 2020

But this is a tricky area to navigate, particularly following the General Data Protection Regulation ( GDPR ), since both the ICO and the FCA have started to pay more attention to this area. What are the legal mechanisms to sell or utilise personal data in an insolvency situation? Asset sales.

Personal data 100

Personal data Sales Marketing GDPR 100

IT Governance

JANUARY 25, 2019

Home improvement retailer B&Q has suffered a data breach affecting 70,000 of its… well, not customers, exactly. The breached database contained a list of people who had been caught stealing products from B&Q stores. How did it inform the data subjects that their data was being processed?

Data breaches 111

Data breaches GDPR Passwords Retail 111

Hunton Privacy

JANUARY 31, 2019

On January 29, 2019, the Dutch Data Protection Authority ( Autoriteit Persoonsgegevens , the “Dutch DPA”) published a report (in Dutch) on the personal data breach notifications received in 2018 (the “Report”). In 63% of the cases, the breach involved personal data sent to the wrong email address.

Data breaches 81

Data breaches Personal data GDPR Phishing 81

DLA Piper Privacy Matters

SEPTEMBER 7, 2023

Authors: Eilis McDonald; Marcus Walsh; John Magee; Gavin Woods; David Cook; Andreas Rüdiger The Irish Circuit Court has recently delivered an important judgment on non-material damages for infringement of the GDPR. The factors that he set out are: “Mere breach” of the GDPR is not sufficient to warrant an award of compensation.

GDPR 111

GDPR Data breaches Risk Personal data 111

Hunton Privacy

DECEMBER 17, 2020

On December 15, 2020, the Irish Data Protection Commission (“DPC”) announced its fine of €450,000 against Twitter International Company (“Twitter”), following its investigation into a breach resulting from a bug in Twitter’s design. Investigation and GDPR Dispute Resolution Procedure. based organization.

GDPR 72

GDPR Data breaches Personal data Compliance 72

IT Governance

JANUARY 1, 2019

There are few things organisations fear more than data breaches. The stakes were raised with the enforcement of the EU GDPR (General Data Protection Regulation) in May 2018. GDPR Data Breach Support Service. Data Flow Mapping Tool. To do this, you will need to conduct regular data flow maps.

Data breaches 109

Data breaches GDPR Information Security Risk 109