Data Protection Report

JANUARY 16, 2020

Earlier this week, Hong Kong’s Panel on Constitutional Affairs (the Panel ) released its discussion paper ( LC Paper. CB(2) 512/19-20(03 ) (the Paper ) seeking views on changes to Personal Data (Privacy) Ordinance (Cap.486) Certainty around data retention periods. 486) (the PDPO ).

Paper 56

Paper Personal data Data breaches Privacy 56

IT Governance

AUGUST 29, 2019

At first glance, August has been a quiet month for data breaches, with a total of 114,686,290 breached records. But that figure comes from 95 incidents in total, which is the highest number of breaches we’ve had all year. Let’s take a look at those breaches in full in our slightly tweaked monthly list.

Data breaches 111

Data breaches Phishing Ransomware Personal data 111

IT Governance

SEPTEMBER 15, 2022

You’ll often see the terms cyber security and information security used interchangeably. In this blog, we explain what information security and cyber security are, the differences between them and how they fit into your data protection practices. What is information security? This is cyber security.

Information Security 126

Information Security Security Computer and Electronics Encryption 126

IT Governance

JANUARY 1, 2019

There are few things organisations fear more than data breaches. The stakes were raised with the enforcement of the EU GDPR (General Data Protection Regulation) in May 2018. It demands adequate security measures and has been widely publicised, as it has the potential to levy large fines against non-compliant organisations.

Data breaches 109

Data breaches GDPR Information Security Risk 109

IT Governance

MARCH 6, 2019

The GDPR (General Data Protection Regulation) isn’t only about preventing data breaches (it’s equally focused on strengthening data subjects’ rights), but organisations have understandably honed in on the importance of effective data protection. What the GDPR says about reducing risk.

Information Security 90

Information Security GDPR Data breaches Compliance 90

IT Governance

OCTOBER 8, 2018

There are few things organisations fear more than data breaches. The stakes were raised with the introduction of the EU GDPR (General Data Protection Regulation) in May 2018. An effective cyber incident response programme helps organisations prepare for and respond to data breaches. Data Flow Mapping Tool.

Data breaches 109

Data breaches GDPR Information Security Risk 109

IT Governance

OCTOBER 4, 2018

When you think of data breaches, you may well picture hackers infecting an organisation’s systems and stealing files. But that’s only one of six common ways a data breach can occur. This includes breaches that are the result of both accidental and deliberate causes.”. Are you prepared for a data breach?

Data breaches 92

Data breaches Paper Access GDPR 92

IT Governance

JANUARY 29, 2019

Although there will be some debate about the usefulness of including the 772,904,991 records from the Collection #1 breach – which comprises data stolen from a number of historic data breaches – even without them, the number of breached records still stands at just under 1 billion records for January 2019.

Data breaches 111

Data breaches Ransomware Phishing Privacy 111

Data Protection Report

JANUARY 16, 2020

Earlier this week, Hong Kong’s Panel on Constitutional Affairs (the Panel ) released its discussion paper ( LC Paper. CB(2) 512/19-20(03 ) (the Paper ) seeking views on changes to Personal Data (Privacy) Ordinance (Cap.486) Certainty around data retention periods. 486) (the PDPO ).

Paper 40

Paper Personal data Data breaches Privacy 40

Krebs on Security

DECEMBER 20, 2022

One reader’s copy of their Equifax Breach Settlement letter. In 2017, Equifax disclosed a massive, extended data breach that led to the theft of Social Security Numbers, dates of birth, addresses and other personal information on nearly 150 million people. They received a check for $6.97.

Data breaches 252

Data breaches Data collection Paper Personal data 252

IT Governance

APRIL 18, 2023

Data minimisation is a key part of information security and the GDPR (General Data Protection Regulation) in particular. Its principles are at the heart of effective data protection practices, and are intended to prevent privacy breaches and minimise the damage when security incidents occur.

GDPR 132

GDPR Personal data Data breaches Marketing 132

Data Protection Report

JANUARY 20, 2020

2019 saw continued growth and change in data protection and cyber-security across the Asia-Pacific. Following the implementation of the GDPR in May, 2018, many jurisdictions moved to review and strengthen existing data privacy and cyber-security laws. million patients.

Personal data 128

Personal data Security Data Privacy GDPR 128

IT Governance

MAY 24, 2019

The UK introduced new rules intended to make online gambling safer earlier this month , but there are concerns that they have created additional information security risks. Is your personal data at risk? Any time a system requires organisations to access more personal data, the risks associated with that information increase.

Data breaches 64

Data breaches Personal data Paper Risk 64

IT Governance

JANUARY 10, 2022

The cyber security landscape offered similarly familiar topics: there were huge data breaches at Facebook and LinkedIn, while the threat of ransomware reached catastrophic levels. You can read more about that attack, along with the year’s other biggest stories, in our 2021 cyber security review of the year.

Security 115

Security Data breaches Ransomware Phishing 115

Hunton Privacy

JUNE 14, 2018

Attorney General Notification: If an entity must notify Colorado residents of a data breach, and reasonably believes that the breach has affected 500 or more residents, it must also provide notice to the Colorado Attorney General.

Data breaches 65

Data breaches Security Passwords Military 65

Data Matters

SEPTEMBER 28, 2021

This summer, the Federal Trade Commission (“FTC”) hosted its sixth annual PrivacyCon , an event focused on the latest research and trends related to consumer privacy and data security. The FTC also held both a panel of three research papers, and a separate presentation, on Algorithms. Privacy – Children and Teenagers.

Privacy 88

Privacy Security IoT Data breaches 88

IT Governance

JULY 2, 2020

The Regulation came into effect on 25 May 2018, and was designed to strengthen the rights of EU residents regarding the way organisations process and use their personal data. First, the UK has implemented the UK DPA (Data Protection Act) 2018 , which adopts the GDPR into national law. What is personal data?

GDPR 111

GDPR Personal data Data breaches Compliance 111

IT Governance

APRIL 25, 2023

Insider threats are one of the most difficult security challenges that organisations face. Preventing this from happening requires a nuanced approach to information security, and it’s one that organisations are increasingly struggling with. By contrast, negligent insiders act carelessly but have no intent to harm the organisation.

Data breaches 105

Data breaches Phishing Personal data Access 105

DLA Piper Privacy Matters

FEBRUARY 28, 2020

Any organisation processing Hong Kong personal data must plan ahead to anticipate significant new compliance obligations requirements. These are proposed in a recent consultation paper to amend Hong Kong’s Personal Data (Privacy) Ordinance (PDPO), and would – if passed – constitute the first changes to the PDPO since 2012.

Paper 52

Paper Personal data Data breaches Data collection 52

IT Governance

NOVEMBER 14, 2018

The EU’s GDPR (General Data Protection Regulation) requires all organisations that process EU residents’ personal data to abide by its strict terms. Our 2018 GDPR webinar series covers topics such as accountability, suffering a data breach, and the required policies and procedures.

GDPR 94

GDPR Data breaches Compliance Paper 94

IT Governance

APRIL 18, 2018

Under the EU’s General Data Protection Regulation (GDPR), aggrieved data subjects can sue firms for failing to secure their personal data properly. Processing personal data is an intrinsic part of professional services work. Information security, not just cyber security.

GDPR 65

GDPR Compliance Paper Data breaches 65

Data Matters

MARCH 19, 2019

Singapore may soon mandate data breach notifications and data portability via amendments to the Singapore Personal Data Protection Act, or PDPA. The Personal Data Protection Commission (PDPC) issued a statement on March 1 confirming its intent to introduce a mandatory breach notification regime.

Data Privacy 68

Data Privacy Privacy Data breaches Personal data 68

IT Governance

OCTOBER 31, 2019

Throughout October, cyber security experts have been helping Europeans understand the importance of effective information security practices as part of Cyber Security Month. The campaign may be drawing to a close, but there is still plenty you can do to boost your awareness of cyber security risks. Security Summit North.

Security 61

Security Data breaches Passwords Risk 61

DLA Piper Privacy Matters

OCTOBER 25, 2022

The ICO found that Interserve had failed to put appropriate technical and organisational measures in place to secure personal data (in contravention of Articles 5(1)(f) and 32 GDPR) for a period of ~20 months. The attacker then compromised four HR databases containing data of 113k employees and former employees.

Security 52

Security GDPR Personal data Insurance 52

DLA Piper Privacy Matters

SEPTEMBER 10, 2021

The government has today published its eagerly awaited Consultation Paper on Reforms to the UK Data Protection Regime – ‘Data: A New Direction’ (“ Consultation Paper ”), setting out the specific areas for regulatory reform of the UK’s data protection regime.

Government 104

Government Paper Personal data GDPR 104

IT Governance

DECEMBER 30, 2019

Welcome to the second part of our round-up of 2019’s information security stories. The second half of the year began with major data privacy news: the UK’s data protection authority, the ICO (Information Commissioner’s Office), announced its intention to fine British Airways and Marriott International a combined £282.6

Data breaches 78

Data breaches Personal data GDPR Ransomware 78

IT Governance

MAY 24, 2021

Two in five businesses reported a cyber attack or data breach in the past 12 months, according to the UK government’s Cyber Security Breaches Survey 2021. Among those, 35% reported negative effects including the loss of money, data or other assets. Security misconfiguration. DDoS attacks.

Phishing 122

Phishing Data breaches Passwords Access 122

DLA Piper Privacy Matters

JULY 10, 2019

Following the notification of the breach, the Data Protection Authority initiated an investigation and concluded that the controller i. did not take steps to ensure that its employees who have access to personal data only process such data on its instructions, and ii.

GDPR 68

GDPR Data breaches Personal data Paper 68

Krebs on Security

AUGUST 12, 2020

Postal Service, the credit bureaus or the Social Security Administration, it’s a good idea to do so for several reasons. Adding multi-factor authentication (MFA) at these various providers (where available) and/or establishing a customer-specific personal identification number (PIN) also can help secure online access.

Passwords 342

Passwords Authentication Access Paper 342

Archive Document Data Storage

FEBRUARY 6, 2019

In this blog, we highlight five ways a secure shredding service helps your business. You can’t afford to feed documents through a shredder, fix paper jams, and empty shredding bags when other important, revenue-generating tasks require your attention. A secure shredding service helps you stay productive. Enhancing Productivity.

Security 40

Security Paper GDPR Archiving 40

Archive Document Data Storage

FEBRUARY 6, 2019

In this blog, we highlight five ways a secure shredding service helps your business. You can’t afford to feed documents through a shredder, fix paper jams, and empty shredding bags when other important, revenue-generating tasks require your attention. A secure shredding service helps you stay productive. Enhancing Productivity.

Security 40

Security Paper GDPR Archiving 40

IT Governance

MARCH 26, 2018

We often talk about how organisations can benefit from implementing ISO 27001 , the international standard the describes best practice for an information security management system (ISMS), but did you know that employees will benefit too? ISO 27001 outlines information security policies and procedures for staff to follow.

Data breaches 68

Data breaches Personal data Information Security Risk 68

IT Governance

FEBRUARY 14, 2023

These are the three components of the CIA triad, an information security model designed to protect sensitive information from data breaches. The CIA triad is a widely accepted principle within the industry, and is used in ISO 27001 , the international standard for information security management.

IT 105

IT Risk GDPR Information Security 105

IT Governance

SEPTEMBER 14, 2018

Over the past month or so, we’ve been discussing the threats associated with payment card breaches, and why it’s important to comply with the PCI DSS (Payment Card Industry Data Security Standard). Further reading: Why you should be concerned about payment card data breaches. The cost of a payment card data breach.

Data breaches 99

Data breaches Paper Retail Manufacturing 99

Security Affairs

MAY 19, 2019

The best news of the week with Security Affairs. Paper Copy. If you appreciate my effort in spreading cybersecurity awareness, please vote for Security Affairs in the section “Your Vote for the Best EU Security Tweeter” [link]. Security breach suffered by credit bureau Equifax has cost $1.4

Security 55

Security Mining Analytics Paper 55

IT Governance

JANUARY 11, 2018

Organisations rely on personal data more than ever, collecting people’s information to fulfil any number of tasks. But the opportunities that personal data gives organisations comes with the responsibility of keeping it secure. Sharing data with a third party without obtaining the data subject’s consent.

Risk 73

Risk Privacy Personal data Data breaches 73

IT Governance

JANUARY 19, 2018

Last year, the headlines were laden with cyber attacks and data breaches. million leaked records, not to mention the infamous global WannaCry ransomware attack in May 2017 left a trail of devastation as organisations were blocked out of their data, halting business operations until a ransom was paid. Upcoming UK legislation.

Data breaches 56

Data breaches Paper GDPR Compliance 56