2019, Data Privacy and Personal data - Information Management Today

Over-Retention of Personal Data

Data Protection Report

SEPTEMBER 23, 2021

The declining cost of electronic data storage may have caused some company executives to conclude that retaining personal data forever is “cheap.” The matter involved one of France’s largest insurers, SGAM AG2R LA MONDIALE, which was subject to an inspection by the French data protection authority (the CNIL), in 2019.

Personal data

Personal data Insurance GDPR Record destruction

Hong Kong’s Reform of the Personal Data (Privacy) Ordinance (the “PDPO”): Bridging Troubled Waters

HL Chronicle of Data Protection

JANUARY 22, 2020

On Monday 20 January, the Constitutional and Mainland Affairs Bureau (“CMAB”), jointly with the Privacy Commissioner for Personal Data (“PCPD”), presented a paper outlining topics for review of the PDPO to the members of the Legislative Council Panel on Constitutional Affairs (“PDPO Review Paper”).

Personal data

Personal data Data Privacy Privacy Paper

The Week in Cyber Security and Data Privacy: 13 – 19 November 2023

IT Governance

NOVEMBER 20, 2023

have notified 330,000 people that their personal data might have been compromised as part of the MOVEit Transfer data breach. Compromised personal data included names, Social Security numbers, driver’s licence/state ID numbers or financial account numbers.

Data Privacy

Data Privacy Privacy Data breaches Security

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

The Week in Cyber Security and Data Privacy: 1 – 7 January 2024

IT Governance

JANUARY 9, 2024

The group has allegedly exfiltrated more than 10 million files. Data breached: >10 million records. million individuals affected HealthEC LLC, a health technology company, has announced that it suffered a data breach in July 2023, in which systems were accessed and files were copied. HealthEC LLC breached, almost 4.5

Data Privacy

Data Privacy Privacy Manufacturing Data breaches

Top 10 IoT Disasters of 2019

Threatpost

DECEMBER 23, 2019

From more widescale, powerful distributed denial of service (DDoS) attacks, to privacy issues in children's connected toys, here are the top IoT disasters in 2019.

IoT

IoT Privacy Personal data Data Privacy

India’s Draft Data Privacy Bill Introduced in Parliament

Hunton Privacy

DECEMBER 19, 2019

On December 11, 2019, an updated version of India’s draft data privacy bill was introduced in the Indian Parliament (the “Draft Bill”) by the Ministry of Electronics and Information Technology (“MeitY”). There also appears to be no specific restrictions on data transfers except for sensitive data and critical personal data.

Data Privacy

Data Privacy Privacy Personal data Government

The Week in Cyber Security and Data Privacy: 22 – 28 January 2024

IT Governance

JANUARY 30, 2024

Data breached: 2 PB. Mobile network database breach exposes 750 million Indians’ personal data The Indian security company CloudSEK claims to have found the personal data of 750 million Indians for sale on an “underground forum”. Data breached: 750 million victims’ personal data.

Data Privacy

Data Privacy Retail Privacy Manufacturing

2019 end-of-year review part 2: July to December

IT Governance

DECEMBER 30, 2019

Welcome to the second part of our round-up of 2019’s information security stories. The second half of the year began with major data privacy news: the UK’s data protection authority, the ICO (Information Commissioner’s Office), announced its intention to fine British Airways and Marriott International a combined £282.6

Data breaches

Data breaches Personal data GDPR Ransomware

Data Privacy Day Exclusive Q&A with IAPP

Collibra

JANUARY 28, 2020

(For comparison a gigabyte is 1,000,000,000 bytes) Let’s just say we create a lot of data every minute of every day. International Data Privacy Day is an effort to raise awareness around respecting, safeguarding and trusting data. A: International Data Privacy Day has come a long way since its inception, back in 1981.

Data Privacy

Data Privacy Privacy GDPR Risk

A Look Back On Five Key Developments in Cybersecurity and Data Protection in Southeast Asia in 2022

Data Protection Report

JANUARY 9, 2023

With the year 2022 firmly in the rear view, and as we look to start the new year in 2023, Norton Rose Fulbright’s Regulatory Compliance and Investigations team looks back and rounds up the five key cyber and data protection developments that took place in Southeast Asia in 2022. . in damages to its customer over data leak.

Cybersecurity

Cybersecurity Personal data Data breaches Ransomware

UK ICO fines hotel chain giant Marriott over data breach

Security Affairs

NOVEMBER 2, 2020

. “The ICO has fined Marriott International Inc £18.4million for failing to keep millions of customers’ personal data secure.” ” In July 2019, the UK’s data privacy regulator announced that the giant hotel chain Marriott International faces a £99 million ($123 million) fines under GDPR over 2014 data breach. .

Data breaches

Data breaches Personal data GDPR Encryption

Nigeria Issues New Data Protection Regulation

Hunton Privacy

APRIL 5, 2019

On January 25, 2019, Nigeria’s National Information Technology Development Agency (“NITDA”) issued the Nigeria Data Protection Regulation 2019 (the “Regulation”). Many concepts of the Regulation mirror the EU General Data Protection Regulation (“GDPR”).

Personal data

Personal data Privacy Compliance GDPR

The Not-so-True People-Search Network from China

Krebs on Security

MARCH 20, 2024

It’s not unusual for the data brokers behind people-search websites to use pseudonyms in their day-to-day lives (you would, too). Some of these personal data purveyors even try to reinvent their online identities in a bid to hide their conflicts of interest. 2019, through Alibaba in China. Cocofinder[.]com

Marketing

Marketing Cloud Privacy Data Privacy

ICO’s draft Age Appropriate Design Code could seriously impact processing of under 18’s personal data

Data Protection Report

MAY 16, 2019

On 15 April 2019, the ICO opened a public consultation on a draft code of practice titled Age Appropriate Design (the “Code” ). The Code will remain open for public consultation until 31 May 2019. 10-12: transition years. Default settings the Code requires that settings must be “high privacy” by default.

Personal data

Personal data Privacy GDPR Access

Privacy and Cybersecurity Top 10 for 2018

Data Matters

JANUARY 2, 2018

As we begin this New Year, here is list of the top 10 privacy and cybersecurity issues for 2018: EU GDPR. The May 25, 2018 effective date for the EU’s General Data Protection Regulation (GDPR) will no doubt be a central focus of 2018. 2018 could see the CJEU’s decision on the Privacy Shield for transfer of data to the U.S

Cybersecurity

Cybersecurity Privacy Data breaches GDPR

Collibra study shows why privacy by design is critical

Collibra

NOVEMBER 5, 2019

The importance of getting privacy by design right – and the damage that getting it wrong can do – is illustrated by a new study which looked at how 120 of the most used Android apps in Belgium handle the personal data of their users. . Breaking the personal data rules. Adopting a privacy by design approach.

Privacy

Privacy Data Privacy Personal data Compliance

Consultation paper published on Hong Kong’s data protection law

Data Protection Report

JANUARY 16, 2020

CB(2) 512/19-20(03 ) (the Paper ) seeking views on changes to Personal Data (Privacy) Ordinance (Cap.486) The Paper recognises that it is not practicable to set a uniform retention period applicable to all types of personal data held by various organisations for different purposes. 486) (the PDPO ).

Paper

Paper Personal data Data breaches Privacy

Collibra study shows why privacy by design is critical

Collibra

NOVEMBER 5, 2019

The importance of getting privacy by design right – and the damage that getting it wrong can do – is illustrated by a new study which looked at how 120 of the most used Android apps in Belgium handle the personal data of their users. . Breaking the personal data rules. Adopting a privacy by design approach.

Privacy

Privacy Data Privacy Personal data Compliance

GPEN and National DPAs Publish Sweep Results on Privacy Accountability

Hunton Privacy

MARCH 11, 2019

On March 5, 2019, the Global Privacy Enforcement Network (“GPEN”), a global network of more than 60 data protection authorities (“DPAs”) around the world, published the results of its 2018 intelligence gathering operation on organizations’ data privacy accountability practices (the “Sweep”).

Privacy

Privacy Data Privacy GDPR Personal data

Consultation paper published on Hong Kong’s data protection law

Data Protection Report

JANUARY 16, 2020

CB(2) 512/19-20(03 ) (the Paper ) seeking views on changes to Personal Data (Privacy) Ordinance (Cap.486) The Paper recognises that it is not practicable to set a uniform retention period applicable to all types of personal data held by various organisations for different purposes. 486) (the PDPO ).

Paper

Paper Personal data Data breaches Privacy

How Ireland became Europe’s data protection watchdog

IT Governance

JUNE 14, 2019

That’s the lowest in Western Europe and 10 percentage points lower than the EU average. The organisation, which is responsible for about half of the tech jobs created in Ireland over the past two years, is currently being investigated by the DPC over claims that its use of personal data to target online advertising violates the GDPR.

GDPR

GDPR Personal data Compliance Privacy

Got Data Across Borders? The Sedona Conference Has a Commentary for You: eDiscovery Best Practices

eDiscovery Daily

JUNE 16, 2019

Last week, TSC and its Working Group 6 on International Electronic Information Management, Discovery, and Disclosure (WG6) announced that The Sedona Conference Commentary and Principles on Jurisdictional Conflicts over Transfers of Personal Data Across Borders (“Commentary”) has been published for public comment.

Personal data

Personal data Privacy Data Privacy Education

2020 in review: January to June

IT Governance

DECEMBER 15, 2020

Lawyers are the real winners in the Yahoo data breach compensation case. million (about £91 million at the time) in compensation to users whose personal data was leaked. You can see more incidents from March in our list of data breaches and cyber attacks. The company, now owned by Verizon, agreed to pay $117.5

Data breaches

Data breaches Government Personal data Data Privacy

The Burden of Privacy In Discovery

Data Matters

SEPTEMBER 29, 2021

This emphasis on proportionality in discovery is particularly relevant at a time when the protection of privacy is of increasing concern in the United States and abroad. With the rise of Big Data, however, there has been a growing and well-founded concern that personal information might be used unethically or exposed improperly.

Privacy

Privacy e-Discovery Computer and Electronics e-Delivery

UK: Important judgment on de minimis threshold in data protection compensation claims – Wolfe -v- Veale

DLA Piper Privacy Matters

OCTOBER 27, 2021

The claim related to a single email with attachments sent by the Defendant law firm on 17 July 2019. It was common ground that damages can, in principle, be recovered and other remedies obtained for breaches of data protection law and common law privacy torts, including simply for the distress caused, without specific pecuniary loss 3.

Retail

Retail Data breaches Personal data Privacy

Brexit and data protection

Privacy and Cybersecurity Law

OCTOBER 22, 2018

Less than 6 months away from “Brexit Day”, two questions asked daily by our global clients are: How will Brexit affect data transfers to and from the UK? If anyone is able to solve what I will euphemistically call the “Article 10” dilemma, I welcome answers on a (non-literal) postcard! A Better Alternative for Data Privacy in the UK?

GDPR

GDPR Privacy Data Privacy Personal data

Brexit and data protection

Privacy and Cybersecurity Law

OCTOBER 22, 2018

Less than 6 months away from “Brexit Day”, two questions asked daily by our global clients are: How will Brexit affect data transfers to and from the UK? If anyone is able to solve what I will euphemistically call the “Article 10” dilemma, I welcome answers on a (non-literal) postcard! A Better Alternative for Data Privacy in the UK?

GDPR

GDPR Privacy Data Privacy Personal data

FRANCE: THE FIRST CNIL STANDARD REGULATION FOR BIOMETRIC SYSTEMS IN THE WORKPLACE

DLA Piper Privacy Matters

APRIL 11, 2019

The Regulation has been published by the CNIL on 28 March 2019 and is accompanied by a FAQ which provides practical guidance to companies on how to comply with these requirements. What is the exact scope of such Regulation? employees, agents, interns and contractors). What are the requirements set forth by the Regulation?

Personal data

Personal data GDPR Access Compliance

Nevada, New York and other states follow California’s CCPA

Data Protection Report

JUNE 6, 2019

While CCPA-like bills in Washington and Texas failed to pass, Nevada passed its online privacy amendment and proposals in New York and Washington, DC appear to be gaining momentum. While it has some similarities to the California Consumer Privacy Act (CCPA), it contains notable differences. 10-word summary. 10-word summary.

Sales

Sales Privacy Insurance Manufacturing

The right to be forgotten: the CJEU sides with Google in two landmark cases

Data Protection Report

OCTOBER 9, 2019

In its decision of 10 March 2016 the CNIL had imposed a fine of €100,000 on Google Inc. the right to the protection of personal data, not being an absolute right, must be balanced against other fundamental rights in line with the principle of proportionality. The CJEU has ruled in Google’s favour. The Court found that it did.

Personal data

Personal data Privacy GDPR Access

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

What follows below is an edited version of the debate in the House of Lords of the Second Reading of the Data Protection Bill, held on 10 October. The Bill provides for her to continue to provide independent oversight, supervising our systems of data protection, but we are also significantly enhancing her powers.

GDPR

GDPR Personal data Government IT

Information Management Today

Over-Retention of Personal Data

Hong Kong’s Reform of the Personal Data (Privacy) Ordinance (the “PDPO”): Bridging Troubled Waters

Webinars

Trending Sources

The Week in Cyber Security and Data Privacy: 13 – 19 November 2023

Webinars

The Week in Cyber Security and Data Privacy: 1 – 7 January 2024

Top 10 IoT Disasters of 2019

India’s Draft Data Privacy Bill Introduced in Parliament

The Week in Cyber Security and Data Privacy: 22 – 28 January 2024

2019 end-of-year review part 2: July to December

Data Privacy Day Exclusive Q&A with IAPP

A Look Back On Five Key Developments in Cybersecurity and Data Protection in Southeast Asia in 2022

UK ICO fines hotel chain giant Marriott over data breach

Nigeria Issues New Data Protection Regulation

The Not-so-True People-Search Network from China

ICO’s draft Age Appropriate Design Code could seriously impact processing of under 18’s personal data

Privacy and Cybersecurity Top 10 for 2018

Collibra study shows why privacy by design is critical

Consultation paper published on Hong Kong’s data protection law

Collibra study shows why privacy by design is critical

GPEN and National DPAs Publish Sweep Results on Privacy Accountability

Consultation paper published on Hong Kong’s data protection law

How Ireland became Europe’s data protection watchdog

Got Data Across Borders? The Sedona Conference Has a Commentary for You: eDiscovery Best Practices

2020 in review: January to June

The Burden of Privacy In Discovery

UK: Important judgment on de minimis threshold in data protection compensation claims – Wolfe -v- Veale

Brexit and data protection

Brexit and data protection

FRANCE: THE FIRST CNIL STANDARD REGULATION FOR BIOMETRIC SYSTEMS IN THE WORKPLACE

Nevada, New York and other states follow California’s CCPA

The right to be forgotten: the CJEU sides with Google in two landmark cases

The debate on the Data Protection Bill in the House of Lords

Stay Connected