Data collection, GDPR and Insurance - Information Management Today

A guide to the GDPR for insurance companies

IT Governance

MAY 30, 2018

The EU General Data Protection Regulation (GDPR) is designed to harmonise data protection laws across the EU, but certain industries will have to respond differently in order to achieve compliance. A report published by research and consultancy company Celent highlights the challenges that the GDPR presents to insurers.

Insurance

Insurance GDPR Compliance Data collection

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Hunton Privacy

DECEMBER 1, 2020

On November 26, 2020, the French Data Protection Authority (the “CNIL”) announced that it imposed a fine of €2.25 million on Carrefour France and a fine of €800,000 on Carrefour Banque for various violations of the EU General Data Protection Regulation (“GDPR”) and Article 82 of the French Data Protection Act governing the use of cookies.

GDPR

GDPR Personal data Data collection Marketing

These 3 GDPR Requirements You Must Support Today are Nothing Compared With What’s Coming

Reltio

AUGUST 16, 2018

On May 25, 2018 GDPR (General Data Protection Regulation) went into effect. The primary objectives of the GDPR are to give control back to their EU citizens and residents over their personal data, to simplify the regulatory environment for international business, and to unify regulations within the European Union.

GDPR

GDPR MDM Compliance Personal data

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

What is progressive profiling and how can it benefit your business?

Thales Cloud Protection & Licensing

JULY 3, 2023

madhav Tue, 07/04/2023 - 05:10 As the data trust gap between customers and businesses continue to grow, and as third-party cookies become redundant, there is an urgency to adopt a modernized approach to customer data collection. Progressive profiling introduces a fresher and far more proactive take on data collection.

IT

IT Data collection B2C B2B

Data privacy examples

IBM Big Data Hub

APRIL 24, 2024

These are just some examples of how organizations support data privacy , the principle that people should have control of their personal data, including who can see it, who can collect it, and how it can be used. One cannot overstate the importance of data privacy for businesses today.

Data Privacy

Data Privacy Privacy GDPR Personal data

India: New Digital Personal Data Protection Act, Start Planning Now.

DLA Piper Privacy Matters

SEPTEMBER 6, 2023

Authors: Carolyn Bigg, Gwyneth To and Rachel De Souza Start preparing now to comply with India’s new data protection law. In contrast to the current position in India and the EU/UK GDPR, the DPDP Act makes no distinction between personal data and sensitive personal data, but this is quite similar to many other Asia data protection laws.

Personal data

Personal data GDPR Data breaches Compliance

CNIL Publishes Guidance on Web Scraping and Re-Use of Publicly Available Online Data for Direct Marketing

Hunton Privacy

MAY 4, 2020

Companies that collect, for their own purposes, all the personal data from a given geographic area in online directories and then use the data to send their own direct marketing communications ( e.g. , an insurance company to sell insurance products). In this case, the practice is clearly unlawful.

Marketing

Marketing GDPR Communications Personal data

Berlin Commissioner Issues Fine to Deutsche Wohnen SE

Hunton Privacy

NOVEMBER 6, 2019

On November 5, 2019, the Berlin Commissioner for Data Protection and Freedom of Information (“the Berlin Commissioner,” Berliner Beauftragte für Datenschutz und Informationsfreiheit ) announced that it had imposed a fine of €14.5 GDPR Violation. million (approximately $16 million) on Deutsche Wohnen SE, a prominent real estate company.

GDPR

GDPR Archiving Personal data Insurance

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

According to the bill’s author, it was consciously designed to emulate the new European General Data Protection Regulation (GDPR) that went into effect on May 25, and if and when it goes into effect, it would constitute the broadest privacy law in the United States. law, consumers and the marketplace have been comfortable with to date.

GDPR

GDPR Privacy Sales Data breaches

EUROPE: New privacy rules for connected vehicles in Europe?

DLA Piper Privacy Matters

MAY 5, 2020

Main takeaways from the EDBP guidelines are: Connected vehicles raise various privacy and data protection concerns, such as the lack of control and information asymmetry, the risk of excessive data collection; the risk of unlawful further processing of personal data; Most data associated with connected vehicles are considered as personal data (e.g.

Privacy

Privacy Personal data GDPR Insurance

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

The wait is finally over—this Friday the European Union General Data Protection Regulation (GDPR) will come into force. However, the challenges of GDPR certainly don’t end on the date this law goes into implementation. Many of our clients ask us when and how they may be called upon to demonstrate compliance with the GDPR.

GDPR

GDPR Personal data Compliance Data breaches

California Enacts Broad Privacy Protections Modeled on GDPR

Data Matters

JUNE 29, 2018

According to the bill’s author, it was consciously designed to emulate the new European General Data Protection Regulation (GDPR) that went into effect on May 25, and if and when it goes into effect, it would constitute the broadest privacy law in the United States. law, consumers and the marketplace have been comfortable with to date.

GDPR

GDPR Privacy Sales Data breaches

U.S. states pass data protection laws on the heels of the GDPR

Data Protection Report

JULY 9, 2018

states have recently introduced and passed legislation to expand data breach notification rules and to mirror some of the protections provided by Europe’s newly enacted General Data Protection Regulation (“GDPR”). See our previous blog posts on GDPR here and here. Several U.S. Practical Tips.

GDPR

GDPR Data breaches Personal data Insurance

French DPA Publishes a Compliance Pack Regarding Connected Vehicles

Hunton Privacy

OCTOBER 27, 2017

The Pack applies to connected vehicles for private use only (not to Intelligent Transport Systems), and describes the main principles data controllers must adhere to under both the current French legislation and the EU General Data Protection Regulation (“GDPR”). . 2. “IN -> OUT” scenario.

Compliance

Compliance Data collection GDPR Insurance

Spanish DPA Publishes Report on Data Processing Activities in Relation to COVID-19

Hunton Privacy

MARCH 25, 2020

The Spanish Data Protection Authority (the “AEPD”) recently published a report on data processing activities carried out by data controllers in the private and public sectors as a result of the spread of the COVID-19 virus (the “Report”). the data subject) or other individuals.

Personal data

Personal data GDPR Risk Insurance

CNIL Provides Update on Compliance Pack Regarding Connected Vehicles

Hunton Privacy

OCTOBER 5, 2016

It is currently drafted in cooperation with the automobile industry, innovative companies from the insurance and telecommunications sector, and public authorities. Information on the vehicle condition, the number of miles driven and driving style is personal data to the extent that this information may be attributed to an individual.

Compliance

Compliance Personal data Data collection Insurance

Data Innovator Spotlight - Interview with Charles Joseph, DataZed

Reltio

JUNE 12, 2020

1 sentence company description: DataZed is a consultancy that works with organizations to improve their data quality, data governance and data strategy. 1-2 Previous Roles & Companies: Worked as a consultant with general insurers, Lloyd’s market firms, brokers and reinsurers, including Beazley Group and RSA.

Insurance

Insurance Customer Experience B2B MDM

FINLAND: PARLIAMENT APPROVES NEW ACT ON THE SECONDARY USE OF SOCIAL AND HEALTH CARE PERSONAL DATA

DLA Piper Privacy Matters

APRIL 8, 2019

The new Act codifies the relevant legislation and broadens the possibilities to, under certain conditions, utilize and combine for secondary purposes personal data collected in relation to public or private social and health care operations. This way, the principle of publicity and privacy shall be balanced on case-by-case basis.

Personal data

Personal data GDPR Healthcare Compliance

The Hacker Mind Podcast: The Internet As A Pen Test

ForAllSecure

MAY 17, 2023

Chris Gray of Deep Watch talks about the view from the inside of a virtual SOC, the ability to see threats against a large number of SMB organizations, and the changes to cyber insurance we’re seeing as a result. VAMOSI: Cybersecurity insurance. cyber insurance as a whole was changing heavily. And why is that?

Insurance

Insurance Privacy Ransomware GDPR

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

However, as with all China laws, the PIPL is drafted as high level principles, and we anticipate additional guidelines will be published in the coming months outlining the practical compliance steps organisations will need to take when updating their China data protection compliance programmes. To be clear, this is not China’s own GDPR.

Data Privacy

Data Privacy Privacy Compliance Analytics

Knock, Knock; Who’s There? – IoT Device Identification & Data Integrity Is No Joke

Thales Cloud Protection & Licensing

JULY 12, 2018

As I often highlight in my blogs, data breaches have become all too common, and these continue to have a negative influence on corporate reputation and brand image, resulting in reduced market value and revenues. Protecting the integrity and confidentiality of data collected by all connected devices.

IoT

IoT Encryption Agriculture Data collection

What IG Professionals Should Know About the Internet of Bodies

ARMA International

FEBRUARY 21, 2020

There are serious questions of whether tech companies can effectively protect data, the users, and IoB “nodes” from malicious hacking, and whether insurance companies should be able to increase premiums or even deny health coverage based on information generated by IoB data. It has never been able to do so. For More Information.

Computer and Electronics

Computer and Electronics Privacy Artificial Intelligence IoT

FRANCE: THE CNIL PUBLISHES ITS DATA PRIVACY IMPACT ASSESSMENT (DPIA) GUIDELINES AND A LIST OF PROCESSING OPERATIONS SUBJECT TO A DPIA

DLA Piper Privacy Matters

NOVEMBER 19, 2018

The CNIL stresses that there is no need for a DPIA when : the processing does not present a high risk to the rights and freedoms of data subjects; or. the processing is already covered by a record of processing held by the data protection officer, where applicable. in the automotive insurance sector); Monitoring.

Data Privacy

Data Privacy IT GDPR Privacy

A Guide to CCPA Compliance and How the California Consumer Privacy Act Compares to GDPR

erwin

APRIL 18, 2019

California Consumer Privacy Act (CCPA) compliance shares many of the same requirements in the European Unions’ General Data Protection Regulation (GDPR). Luckily, many organizations have already laid the regulatory groundwork for it because of their efforts to comply with GDPR. CCPA Compliance Requirements vs. GDPR FAQ.

GDPR

GDPR Compliance Privacy Personal data

NHS’ Plans to Share Patient Records with Third Parties

Data Matters

JUNE 9, 2021

NHS Digital (the national custodian for health and care data in England) in May 2021, announced a new data sharing initiative called the General Practice Data for Planning and Research (GPDPR) service. Once collected, the data will be combined to create a single, national data lake.

Healthcare

Healthcare Data collection Personal data GDPR

Top MDR Services for 2021

eSecurity Planet

MAY 5, 2021

Its audit-ready compliance capabilities ensure that an organization’s security meets key standards for compliance frameworks , including Payment Card Industry Data Security Standard (PCI DSS), Health Insurance Portability and Accountability Act (HIPAA), General Data Protection Regulation (GDPR) and HITRUST.

Cloud

Cloud Compliance Artificial Intelligence Analytics

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Data Matters

MARCH 4, 2021

The VCDPA, which will not enter into effect until January 1, 2023, borrows heavily from the California Consumer Privacy Act (CCPA) and the European Union (EU) General Data Protection Regulation (GDPR). First, we lay out the VCDPA’s scope, providing preliminary insight into which businesses the law will cover.

Personal data

Personal data GDPR Sales Privacy

Information Management Today

A guide to the GDPR for insurance companies

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Webinars

Trending Sources

These 3 GDPR Requirements You Must Support Today are Nothing Compared With What’s Coming

Webinars

What is progressive profiling and how can it benefit your business?

Data privacy examples

India: New Digital Personal Data Protection Act, Start Planning Now.

CNIL Publishes Guidance on Web Scraping and Re-Use of Publicly Available Online Data for Direct Marketing

Berlin Commissioner Issues Fine to Deutsche Wohnen SE

California Enacts Broad Privacy Laws Modeled on GDPR

EUROPE: New privacy rules for connected vehicles in Europe?

GDPR is upon us: are you ready for what comes next?

California Enacts Broad Privacy Protections Modeled on GDPR

U.S. states pass data protection laws on the heels of the GDPR

French DPA Publishes a Compliance Pack Regarding Connected Vehicles

Spanish DPA Publishes Report on Data Processing Activities in Relation to COVID-19

CNIL Provides Update on Compliance Pack Regarding Connected Vehicles

Data Innovator Spotlight - Interview with Charles Joseph, DataZed

FINLAND: PARLIAMENT APPROVES NEW ACT ON THE SECONDARY USE OF SOCIAL AND HEALTH CARE PERSONAL DATA

The Hacker Mind Podcast: The Internet As A Pen Test

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

Knock, Knock; Who’s There? – IoT Device Identification & Data Integrity Is No Joke

What IG Professionals Should Know About the Internet of Bodies

FRANCE: THE CNIL PUBLISHES ITS DATA PRIVACY IMPACT ASSESSMENT (DPIA) GUIDELINES AND A LIST OF PROCESSING OPERATIONS SUBJECT TO A DPIA

A Guide to CCPA Compliance and How the California Consumer Privacy Act Compares to GDPR

NHS’ Plans to Share Patient Records with Third Parties

Top MDR Services for 2021

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Stay Connected