DLA Piper Privacy Matters

NOVEMBER 29, 2021

On 16 November 2021, the French data protection supervisory authority (the “CNIL”) published a practical guide (“Guide”) on Data Protection Officers (“DPOs”). Among the organizations that have designated a DPO, the most represented sectors are, unsurprisingly, the public administration, education and health sectors.

GDPR 116

GDPR Compliance Personal data Communications 116

HL Chronicle of Data Protection

APRIL 8, 2019

The CCPA will become effective January of 2020 and may impact companies in the education sector, including the larger education technology companies. If an educational entity meets the threshold requirements below or it processes information on behalf of such an entity, it should prepare for CCPA implementation by January 2020.

Education 40

Education Privacy Sales Passwords 40

Hunton Privacy

MARCH 15, 2024

Clarify that, while ADMT includes profiling, it excludes specific technologies, such as web hosting, caching, data storage, firewalls and spam-filtering, provided that the technologies do not execute a decision, replace human decisionmaking or substantially facilitate human decisionmaking.

Risk 61

Risk Artificial Intelligence Compliance Privacy 61

Security Affairs

OCTOBER 17, 2023

With 85% of campaigns targeting victims with phishing emails containing malicious links, another form of a social engineering attack, education and cyber vigiliance remain a high priority. Why should employers educate employees about cyber security? For large businesses, those costs may be a drop in the ocean.

Ransomware 120

Ransomware Phishing Passwords Education 120

IT Governance

DECEMBER 20, 2022

Although there have still been a few surprises, with the death of Queen Elizabeth II and blazing heatwaves across the UK to name but two, it was a familiar year in the cyber security landscape. Cyber criminals continued to wreak havoc, with the likes of Twitter , Uber and Neopets all reporting mammoth data breaches.

Security 132

Security Data breaches Ransomware Military 132

Collibra

NOVEMBER 20, 2020

So your team has identified implementing data governance as a priority for the year. But what happens once you purchase a data governance platform? all your data problems are solved? This article is meant to outline the vital steps for implementing data governance. Why a data governance roadmap is vital.

Government 52

Government Education Communications Metadata 52

eSecurity Planet

NOVEMBER 6, 2023

The past week has been a busy one for cybersecurity vulnerabilities, with 34 vulnerable Windows drivers and four Microsoft Exchange flaws heading a long list of security concerns. The Problem: Three flaws discovered by the Kubernetes security community carry CVSS severity scores of 7.6 vulnerability scoring system released last week.

Ransomware 112

Ransomware Authentication Cybersecurity Education 112

Hunton Privacy

APRIL 18, 2023

The bill also contains a number of exemptions, including exceptions for financial institutions, affiliates, and data subject to Title V of the Gramm-Leach-Bliley Act, covered entities and business associates under the Health Insurance Portability and Accountability Act of 1996, nonprofit organizations and institutions of higher education.

Privacy 132

Privacy Personal data Sales Insurance 132

Data Protection Report

JUNE 21, 2023

The new law has exclusions for Gramm-Leach-Bliley-covered financial institutions, HIPAA-covered covered entities and business associates, non-profits, institutes of higher education, and electric utilities, power generation companies, and retail electric providers.

Privacy 84

Privacy Personal data Sales Retail 84

Security Affairs

NOVEMBER 29, 2022

In today’s technological world, educating people about cybersecurity awareness is an absolute necessity. According to one report , 82% of data breaches involved the human element, from social attacks to misuse of technologies. While cybersecurity awareness training can take many forms, most training programs are computer-based.

Cybersecurity 98

Cybersecurity Data breaches Education Phishing 98

Security Affairs

JANUARY 26, 2023

National Cyber Security Centre (NCSC) warns of a surge in the number of attacks from Russian and Iranian nation-state actors. National Cyber Security Centre (NCSC) is warning of targeted phishing attacks conducted by threat actors based in Russia and Iran. The are increasingly targeting organizations and individuals.

Phishing 87

Phishing Education Authentication Passwords 87

Hunton Privacy

MAY 12, 2023

The Administration is also actively working to address national security concerns raised by AI, especially in critical areas like cybersecurity, biosecurity and safety. The Administration’s new actions include: New investments to power responsible American AI research and development (“R&D”).

Artificial Intelligence 110

Artificial Intelligence Agriculture Cybersecurity Risk 110

IT Governance

JANUARY 30, 2018

Although data breaches as a result of cyber attacks get all the press, it is often negligence or a lack of basic processes, policies and procedures that result in data breaches. The Information Commissioner’s Office (ICO) compiles quarterly statistics about the main causes of reported data security incidents.

Data breaches 69

Data breaches Security awareness Education Security 69

Security Affairs

APRIL 28, 2023

OpenAI restored access to ChatGPT in Italy after the company met the demands of the Italian Data Protection Authority, Garante Privacy. In early April, the Italian Data Protection Authority, c, temporarily banned ChatGPT due to the illegal collection of personal data and the absence of systems for verifying the age of minors.

Personal data 95

Personal data Privacy Access Education 95

Hunton Privacy

SEPTEMBER 1, 2020

Not disclosing, subject to specified exceptions, a consumer’s genetic data to certain entities ( e.g. , those responsible for making decisions regarding health insurance, life insurance or employment). The bill is pending California Governor Gavin Newsom’s signature. Violations of the Act are subject to civil penalties.

Privacy 85

Privacy Insurance Marketing Information governance 85

Thales Cloud Protection & Licensing

MAY 29, 2018

According to Thales eSecurity’s latest Data Threat Report, European Edition , almost three in four businesses have now fallen victim to some of the world’s most significant data breaches, resulting in a loss of sensitive data and diminished customer trust. However, it’s not all doom and gloom.

Data breaches 70

Data breaches Risk GDPR Education 70

IBM Big Data Hub

AUGUST 9, 2023

A phishing simulation is a cybersecurity exercise that tests an organization’s ability to recognize and respond to a phishing attack. Because even the best email gateways and security tools can’t protect organizations from every phishing campaign, organizations increasingly turn to phishing simulations.

Phishing 84

Phishing Security awareness Analytics Cybersecurity 84

Security Affairs

APRIL 2, 2023

These projects include tools, training programs, and a red team platform for exercising various types of offensive cyber operations, including cyber espionage, IO, and operational technology (OT) attacks.” ” reads the report published by Mandiant.

Energy and Utilities 94

Energy and Utilities Education Ransomware IT 94

DLA Piper Privacy Matters

NOVEMBER 21, 2018

After a very long delay and amidst rumors that the Spanish Parliament could be dissolved and early elections called, the Spanish Senate speedily dismissed all the proposals for further changes and approved the new GDPR-compliant Spanish Data Protection Act on Wednesday 21 November 2018.

GDPR 63

GDPR Personal data Access Education 63

Hunton Privacy

OCTOBER 31, 2023

President Biden issued an Executive Order on Safe, Secure, and Trustworthy Artificial Intelligence. Standards for AI Safety and Security Red-teaming requirements. Developers must also share the results of “red-team” exercises with the government. Developers must also share the results of “red-team” exercises with the government.

Risk 69

Risk Artificial Intelligence Privacy Military 69

Hunton Privacy

OCTOBER 27, 2020

China’s Cybersecurity Law, Data Security Law (draft) and Draft PIPL constitute three fundamental laws on cybersecurity and data protection. The definition includes information that can identify data subjects as well as information that is related to the data subjects. Seven Principles for Data Processing.

Cybersecurity 111

Cybersecurity Data breaches Personal data Government 111

Security Affairs

APRIL 15, 2022

Cybersecurity experts would have you believe that your organization’s employees have a crucial role in bolstering or damaging your company’s security initiatives. According to another study by CybSafe, human errors have been responsible for over 90% of data breaches in 2020. Customize Your Security Training.

Cybersecurity 82

Cybersecurity Data Privacy Data breaches Privacy 82

Data Protection Report

AUGUST 24, 2021

This is China’s first omnibus data protection law, and will take effect from 1 November 2021 allowing companies just over two months to prepare themselves. The PIPL is a game changer for any company with data or business in China. the methods and procedures for exercising the rights provided in the PIPL with the overseas recipient.

GDPR 110

GDPR Compliance Analytics Education 110

Thales Cloud Protection & Licensing

AUGUST 15, 2019

state to pass its own data privacy law. For example, data collected by an entity may not be associated with an individual but could identify a household. Also, entities under the CCPA must post a “Do Not Sell My Personal Information” link on their websites allowing consumers to easily exercise their right of opting-out. (4)

Privacy 92

Privacy GDPR Digital transformation Sales 92

IT Governance

OCTOBER 7, 2019

HR plays a crucial role in an organisation’s GDPR (General Data Protection Regulation) compliance. The department is full of personal data, whether it’s of employees, their next of kin or candidates responding to job adverts. Let’s take a look at five issues that HR must address when handling personal data. Data subject rights.

GDPR 68

GDPR Personal data Compliance Communications 68

Hunton Privacy

OCTOBER 18, 2016

and Telefónica, one of the largest telecommunications company in the world, issued a joint white paper on Reframing Data Transparency (the “white paper”). The roundtable and white paper build upon a number of current initiatives, including the work of the Data Transparency Lab; the 2015 EU-U.S. The impact of the transparency deficit.

Paper 49

Paper Education Privacy Personal data 49

eSecurity Planet

SEPTEMBER 23, 2022

Securities and Exchange Commission (SEC) strongly advised public companies to improve their cybersecurity. While the new security proposals have not yet become law, cybersecurity managers can begin to prepare metrics and audits that will not only help comply with those laws, but can also help create positive change now.

Cybersecurity 131

Cybersecurity Compliance Risk Communications 131

IT Governance

FEBRUARY 19, 2019

Less than two months remain for healthcare organisations to demonstrate compliance with NHS Digital’s DSP (Data Security and Protection) Toolkit. Ask a healthcare expert >> Data security standards and the GDPR. Ask a healthcare expert >> Data security standards and the GDPR.

GDPR 71

GDPR Compliance Government Information Security 71

KnowBe4

APRIL 4, 2023

But, according to security researchers at Abnormal Security, cybercriminals are becoming brazen and are taking their shots at very large prizes. According to Abnormal Security, nearly every aspect of the request looked legitimate. This attack begins with a case of VEC – where a domain is impersonated.

Phishing 83

Phishing Security awareness Cybersecurity Education 83

Armstrong Archives

AUGUST 25, 2023

The Health Insurance Portability and Accountability Act (HIPAA) ensures individuals’ health data protection and privacy. Understanding HIPAA The entire goal of the HIPAA is to make sure that healthcare providers, insurers, and everyone else handling sensitive patient data do it the right way. What are the Most Common HIPAA Violations?

Computer and Electronics 52

Computer and Electronics Insurance Compliance Risk 52

eSecurity Planet

OCTOBER 6, 2023

That makes email security software a worthwhile investment for organizations of all sizes. We analyzed the market for email security tools and software to arrive at this list of 7 top email security solutions, including their standout features, limitations and ideal use cases, followed by issues prospective buyers should consider.

Security 131

Security Phishing Compliance Cybersecurity 131

Data Matters

SEPTEMBER 24, 2019

Today, more than 120 countries have privacy and data protection laws or regulations in place. Many of the new or modernized laws tend to be based on comprehensive legislation, rather than sectoral rules, as data needs to move across industry groups and borders. An Overview of the BDPA.

Personal data 68

Personal data GDPR Data Privacy Privacy 68

eSecurity Planet

AUGUST 23, 2023

This method involves using emails, social media, instant messaging, and other platforms to manipulate users into revealing personal information or performing actions that can lead to network compromise, data loss, or financial harm. Introducing Malicious Content A malicious element (e.g.,

Phishing 98

Phishing Authentication Security awareness Passwords 98

IT Governance

OCTOBER 23, 2019

Scammers and attackers are using attention-grabbing headlines about Brexit to try to trick users into handing over personal data or downloading malware. Brexit is clearly a pressing issue for many organisations, but we urge you to exercise caution whenever you receive communications out of the blue relating to the UK’s departure from the EU.

Phishing 61

Phishing Security awareness Education Personal data 61

DLA Piper Privacy Matters

FEBRUARY 11, 2020

The Belgian Data Protection Authority published its strategic plan setting out its policy priorities and strategic objectives for the next five years. The DPA will be especially focussing on enhancing GDPR compliance in the following industry sectors: Telecom and media sector , due to the large amount of data they process.

IT 81

IT GDPR Compliance Personal data 81

ARMA International

JULY 17, 2023

The former cohort will have found that they’re now practicing at a time when talent is well recognized and remunerated, firms are jostling to secure the best people, and there are lots of attractive opportunities to move firms. So, caution should be exercised.

Information governance 52

Information governance Government Risk IT 52

Hunton Privacy

MARCH 14, 2018

On March 14, 2018, the Department of Justice and the Securities and Exchange Commission (“SEC”) announced insider trading charges against a former chief information officer (“CIO”) of a business unit of Equifax, Inc.

Cybersecurity 45

Cybersecurity Data breaches Sales Education 45