Hunton Privacy

JANUARY 26, 2018

On January 25, 2018, the Standardization Administration of China published the full text of the Information Security Technology – Personal Information Security Specification (the “Specification”). The Specification divides personal information into two categories: personal information and sensitive personal information.

Information Security 48

Information Security Security Privacy Personal data 48

Data Protection Report

JUNE 27, 2019

Massachusetts ( HB 4806 ) – Massachusetts expands data breach notification obligations. Amendments to the Massachusetts’ data breach notification law went into effect on April 11, 2019. Lastly, businesses must inform state regulators as to whether they maintain “a written information security program.”.

Data breaches 40

Data breaches Passwords Privacy Military 40

Data Matters

NOVEMBER 4, 2020

Third, it creates a new category of businesses: those that voluntarily agree to be subject to the CCPA. Entities must annually buy sell, or share personal information of 100,000 consumers, not 50,000 as under the CCPA, to qualify as a business under the second prong of the test. New Rights for Sensitive Personal Information.

Privacy 122

Privacy B2B Sales Data breaches 122

Data Matters

AUGUST 25, 2022

Departing Commissioner Phillips has expressly called out the limited enforcement record on several of the purported commercial surveillance issues as a key flaw in the intended rulemaking process. Commissioner Phillips also decried what he called the majority’s “dystopic” view of American commerce.

Privacy 120

Privacy Cybersecurity Data Privacy Data collection 120

IBM Big Data Hub

FEBRUARY 23, 2024

The GDPR applies to any organization that processes the personal data of European residents, regardless of where that organization is based. Finally, the GDPR applies to the processing of personal data for virtually any reason: commercial, academic, governmental, and otherwise.

GDPR 77

GDPR Compliance Personal data Privacy 77

Security Affairs

APRIL 3, 2021

More clients of Capital One have been impacted in the 2019 data breach, the US bank is notifying them of their SSNs exposure. US bank Capital One notified a number of additional customers that their Social Security numbers were exposed in the data breach that took place in July 2019. District Court in Seattle.

Data breaches 67

Data breaches Access Security IT 67

Data Protection Report

NOVEMBER 8, 2023

Noticeably, covered entities are now subject to new requirements imposing heightened responsibilities on Chief Information Security Officers (“CISOs”) and more specific and prescriptive requirements in relation to governance, risk assessments, and notifications to the NYDFS. f), is sufficient to trigger this new notice requirement.

Financial Services 111

Financial Services Cybersecurity Compliance Government 111

DLA Piper Privacy Matters

OCTOBER 25, 2022

The databases also held special category personal data including ethnic origin; religion; details of disabilities; sexual orientation, and health information relevant to ill-heath retirement applications. Lower fines are also less likely to result in successful appeals and tie up the ICO’s enforcement team with legal arguments.

Security 52

Security GDPR Personal data Insurance 52

Data Matters

JUNE 11, 2018

Washington State notably adopted a law on net neutrality and there is the prospect of a ballot initiative in California that would give individuals the right to know which categories of their or their children’s personal data have been collected or traded by businesses. Donovan, who applauded its passage.

Privacy 60

Privacy Sales Data breaches Personal data 60

Data Matters

AUGUST 21, 2019

If the company later breaches its written statement, “the consumer may initiate an action against the business to enforce the written statement and may pursue statutory damages for each breach of the express written statement, as well as any other violation of the title that postdates the written statement.”.

Data breaches 68

Data breaches Privacy Information Security Security 68

Hunton Privacy

JUNE 22, 2018

For example, if enacted, the Bill would require businesses to disclose ( e.g. , in its Privacy Notice) the categories of personal information it collects about California consumers and the purposes for which that information is used.

Privacy 45

Privacy Sales Data breaches IT 45

Hunton Privacy

NOVEMBER 13, 2018

The Commission also welcomes that the key characteristics of a modern and flexible privacy regime ( i.e. , an overarching law, a core set of data protection principles, enforceable individual rights and an independent supervisory authority with effective enforcement powers) are also at the core of NTIA’s proposed approach to consumer privacy.

Privacy 53

Privacy Data breaches Risk Access 53

eSecurity Planet

SEPTEMBER 23, 2022

Those changes enforced independent financial auditing of companies and required every board of directors to retain at least one financial expert to ensure the board of directors understands those independent audits. Therefore, we should examine each category and consider what the rules fundamentally request. In fact, the U.S.

Cybersecurity 130

Cybersecurity Compliance Risk Communications 130

Data Matters

AUGUST 5, 2019

The flurry of state legislative activity in the wake of the enactment of the California Consumer Protection Act (CCPA) continues with the New York legislature recently passing two bills to increase accountability for the processing of personal information. codified at N.Y. codified at N.Y.

Cybersecurity 68

Cybersecurity Data breaches Privacy Risk 68

Data Protection Report

JULY 9, 2018

states have recently introduced and passed legislation to expand data breach notification rules and to mirror some of the protections provided by Europe’s newly enacted General Data Protection Regulation (“GDPR”). data protection laws that were passed in the last year. Several U.S. Below are the key takeaways from U.S.

GDPR 40

GDPR Data breaches Personal data Insurance 40

eSecurity Planet

JUNE 17, 2022

See the Top Zero Trust Security Solutions. Forrester Research developed the formal concept of zero trust more than a decade ago: Zero Trust is an information security model that denies access to applications and data by default. Zero Trust Defined. Litigation will also play a part in pushing standards towards ZTA.

Cloud 122

Cloud Authentication Access Security 122

Data Matters

OCTOBER 30, 2017

When a company experiences a major data breach or hacking incident, media attention turns to speculation or allegations about the company’s past history of underinvesting in cyber defenses, its supposed culture of cyber complacency, or its history of unaddressed (but, in retrospect, allegedly clear) vulnerabilities.

Compliance 60

Compliance Cybersecurity Risk Government 60

eSecurity Planet

DECEMBER 9, 2021

Or as is often the case with security, what costs can we skip and still escape big penalties later? Unfortunately for those of us indulging in wishful thinking, the likelihood and costs of data breaches continue to increase. The Ponemon Institute estimates that data breach costs rose to an average cost of $4.24

Insurance 122

Insurance Ransomware Data breaches Cloud 122

IT Governance

JULY 25, 2018

Except for special categories of personal data, whose processing is prohibited except under certain circumstances, personal data can be processed under the GDPR only if the data subject gives their explicit consent or if it’s necessary: To meet contractual obligations entered into by the data subject.

GDPR 102

GDPR Personal data Privacy Access 102

AIIM

JULY 24, 2018

GDPR Compliance Starts with Data Discovery. The EU General Data Protection Regulation is a game changer , particularly enforcement of obligations to safeguard privacy rights. Balancing Privacy Rights with Social Utility in the Age of the Internet of Things.

GDPR 83

GDPR Compliance Privacy Data Privacy 83

Data Protection Report

JULY 16, 2019

Here are the key changes: Under the current draft, employers will not be exempt from providing a privacy notice to employees – employers must provide employees with notice at or before the point their personal information is collected as to the categories of personal information to be collected and why.

Privacy 40

Privacy B2B Data breaches Data collection 40

Data Protection Report

MAY 23, 2018

We have shared below some interesting points that we’ve seen arising recently, all of which relate to how things are likely to develop from today onwards, including enforcement predictions, challenges related to operationalizing data subject access procedures, and how the GDPR may change the data privacy litigation landscape in Europe.

GDPR 40

GDPR Personal data Compliance Data breaches 40

Security Affairs

JUNE 4, 2021

The most expensive product in this category is a stolen eBay account with a good reputation (that means positive feedback from more than a thousand users) at 1000 USD. But not all the stolen information on offer is strictly digital in origin. So they have high-security practices in all ends. The menu is broad in this category.

Marketing 106

Marketing Passwords Personal data Encryption 106

Data Matters

APRIL 23, 2018

Recent guidance from the Securities and Exchange Commission (SEC) on disclosure and enforcement actions by the Federal Trade Commission (FTC) make clear that cybersecurity is no longer a niche topic, but a concern significant enough to warrant the oversight of corporate boards of directors.

Cybersecurity 60

Cybersecurity Risk Passwords Authentication 60

eSecurity Planet

JANUARY 11, 2022

Information security products , services, and professionals have never been in higher demand, making for a world of opportunities for cybersecurity startups. Series A Ubiq Security 2019 San Diego, CA 25 $6.4 Ethyca GitGuardian Evervault Satori Ubiq Security Wabbi. Series A Evervault 2018 Dublin, Ireland 12 $19.4

Cybersecurity 142

Cybersecurity Cloud Compliance Analytics 142