IT Governance

MARCH 28, 2019

At the recent ASCL (Association of School and College Leaders) conference , a guest said to us: “The GDPR ? How was it possible for someone to be so misguided about such a well-publicised regulation, the requirements of which have huge ramifications for the way organisations handle personal data? GDPR compliance in schools.

GDPR 92

GDPR Compliance Data breaches Personal data 92

Hunton Privacy

DECEMBER 18, 2018

On December 13, 2018, the Dutch Data Protection Authority (“ Autoriteit Persoonsgegevens ”) (the “Dutch DPA”) published a report on the complaints it has received since the EU General Data Protection Regulation (“GDPR”) became applicable on May 25, 2018 (the “Report”). Facts and Figures. Most Affected Sectors.

GDPR 59

GDPR Personal data Data collection Business Services 59

ARMA International

APRIL 18, 2022

It is essential that your organization’s records retention schedule is compliant with the data protection requirements in the jurisdictions where your organization operates. Introduction to Data Protection Laws. Personal data protection requirements may be issued by federal, state (provincial), or local governments.

Personal data 100

Personal data GDPR Privacy Records Management 100

IT Governance

DECEMBER 18, 2017

Many organisations are struggling to fill a skills gap created by the EU General Data Protection Regulation (GDPR) and need staff with knowledge of the Regulation. For a short time, we are offering a 10% discount on GDPR courses in Belfast, so book your place before Friday 5 January 2018. Data protection by design.

GDPR 58

GDPR Personal data Compliance Data breaches 58

erwin

NOVEMBER 14, 2019

Data governance tools used to occupy a niche in an organization’s tech stack, but those days are gone. The rise of data-driven business and the complexities that come with it ushered in a soft mandate for data governance and data governance tools. Data Governance Tools for Regulatory Compliance.

Government 40

Government Data breaches Metadata GDPR 40

Hunton Privacy

DECEMBER 1, 2020

On November 26, 2020, the French Data Protection Authority (the “CNIL”) announced that it imposed a fine of €2.25 million on Carrefour France and a fine of €800,000 on Carrefour Banque for various violations of the EU General Data Protection Regulation (“GDPR”) and Article 82 of the French Data Protection Act governing the use of cookies.

GDPR 91

GDPR Personal data Data collection Marketing 91

IT Governance

JUNE 29, 2018

This week, we discuss the apparent leak of 340 million data records, a vulnerability that exposed sensitive BetVictor data, a data breach affecting up to 40,000 Ticketmaster customers, and the number of GDPR complaints since 25 May. Hello and welcome to the IT Governance podcast for Friday, 29 June 2018.

GDPR 76

GDPR Passwords Data breaches Access 76

IT Governance

JULY 23, 2018

The General Data Protection Regulation, which came into force in May 2018, has reformed the laws around processing the personal data of EU residents. It also requires all public bodies and many private entities to appoint a DPO (data protection officer). So, what exactly is a DPO and what do they do?

GDPR 68

GDPR Personal data Compliance Privacy 68

Thales Cloud Protection & Licensing

DECEMBER 22, 2020

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing. Tue, 12/22/2020 - 10:08. New EU restrictions could force companies to change data transfer practices and adopt more advanced data encryption methods. Data privacy is not a check-the-box compliance or security item.

Data Privacy 118

Data Privacy Privacy Security Encryption 118

IT Governance

NOVEMBER 12, 2018

In September, British Airways announced it had suffered a data breach that compromised the personal and financial data of more than 380,000 customers. The potentially impacted customers were only those making reward bookings between April 21 and July 28, 2018, and who used a payment card. Then and now. More than 500,000 victims.

Data breaches 102

Data breaches GDPR Personal data Communications 102

IT Governance

DECEMBER 6, 2018

A recent survey by Ping Identity shows that customers move away from brands that have suffered data breaches. Data breaches are now a common occurrence – big-name brands affected in 2018 include FIFA , British Airways , Vision Direct , Eurostar and Marriott. Of that segment, 34% experienced financial loss. Train your staff.

Data breaches 104

Data breaches GDPR Risk Information Security 104

IT Governance

MAY 29, 2018

Remember when I said last month that “with the GDPR less than a month away I imagine future lists will be even longer thanks to the introduction of mandatory data breach notifications”? Well, May’s list of incidents is very long, and the GDPR only came into effect at the end of the month. Data breach. I’m not, though.

Data breaches 89

Data breaches GDPR Ransomware Passwords 89

Data Protection Report

JANUARY 20, 2020

2019 saw continued growth and change in data protection and cyber-security across the Asia-Pacific. Following the implementation of the GDPR in May, 2018, many jurisdictions moved to review and strengthen existing data privacy and cyber-security laws. million patients.

Personal data 128

Personal data Security Data Privacy GDPR 128

DLA Piper Privacy Matters

JUNE 23, 2020

Therefore, the Irish Data Protection Authority, acting as Google’s lead authority, had sole jurisdiction to monitor Google’s data processing activities on the European Union territory (1). The fine of EUR 50 million is disproportionate and does not take into account the criteria set forth in article 83-2 of the GDPR (3).

GDPR 86

GDPR Personal data Access IT 86

HL Chronicle of Data Protection

MAY 29, 2019

Following the one-year anniversary of the coming into effect of the GDPR, Hogan Lovells’ Privacy and Cybersecurity practice has prepared summaries of key GDPR-related developments of the past 12 months. The summaries cover regulatory guidance, enforcement actions, court proceedings, and various reports and materials.

GDPR 40

GDPR Personal data Privacy Information architecture 40

Managing Your Information

SEPTEMBER 10, 2022

If you are considering taking our BCS Practitioner Certificate in Data Protection, you might have some questions about whether this is the right course for you. Candidates will need a basic understanding of UK GDPR and the Data Protection Act 2018 and some previous experience of working within the realm of data protection. .

GDPR 36

GDPR Information governance Compliance Paper 36

IT Governance

APRIL 3, 2018

For more than a decade, the Information Governance (IG) Toolkit has been the all too familiar – although not always welcome – annual obligation for healthcare organisations to demonstrate their accord compliance with the Department of Health (DoH) standards for data security. The GDPR comes into effect on 25 May 2018.

GDPR 68

GDPR Security Compliance Information governance 68

IT Governance

MAY 30, 2019

Just when you thought you were getting the hang of the GDPR (General Data Protection Regulation) , you learn that things are even more complicated. That’s been the reaction of many law enforcement bodies that have recently learned about their compliance requirements under the DPA (Data Protection Act) 2018.

GDPR 49

GDPR Personal data Government Compliance 49

IT Governance

JUNE 27, 2019

After a rampant start to the year for data breaches and cyber attacks, it’s about time we went one month without at least one massive security incident. June 2019’s total of 39,713,046 breached records is the lowest since May last year – the month that the GDPR (General Data Protection Regulation) came into effect. Ransomware.

Data breaches 111

Data breaches Personal data Ransomware GDPR 111

IT Governance

DECEMBER 13, 2018

This week, in our last podcast of the year, we revisit some of the biggest information security stories from the past 12 months. Hello and welcome to the final IT Governance podcast of 2018. Equifax issued its financial report for the first quarter of 2018, revealing that its huge 2017 data breach had so far cost it $242.7

Data breaches 71

Data breaches Personal data Access GDPR 71

DLA Piper Privacy Matters

JANUARY 21, 2019

On 12 December 2018, the French Government issued an ordinance [1] finalizing, at the legislative level [2] , the alignment of the French Data Protection Law (“FDPL”) with the General Data Protection Regulation [3] (“GDPR”) and the Directive 2016/680 [4].

GDPR 49

GDPR Personal data Communications Government 49

DLA Piper Privacy Matters

MAY 14, 2018

When the General Data Protection Regulation (GDPR) takes effect across the EU on 25 May 2018, large amounts of WHOIS data will no longer be publicly available. However, ICANN has estimated this might not be operational until December 2018. By John Wilks , Ruth Hoy , Claire Sng, and Kelsey Rose.

GDPR 53

GDPR Access Government Archiving 53

Data Matters

JUNE 29, 2018

On June 28, 2018, California Gov. Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375). However, unlike the European Union’s GDPR, AB 375 generally permits opt-out rather than opt-in consent as a basis for collection, use or sale of personal information and does not prohibit specific practices.

GDPR 79

GDPR Privacy Sales Data breaches 79

IT Governance

JANUARY 23, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. The data set is a collection of 1 billion credentials sourced from stealer logs and hosted on the illicit.services website. Data breached: 70,840,771 email addresses.

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

Data Protector

OCTOBER 11, 2017

What follows below is an edited version of the debate in the House of Lords of the Second Reading of the Data Protection Bill, held on 10 October. Data is not just a resource for better marketing, better service and delivery. Data is used to build products themselves. It has become a cliché that data is the new oil.

GDPR 120

GDPR Personal data Government IT 120

HL Chronicle of Data Protection

SEPTEMBER 27, 2017

government introduced in Parliament the Data Protection Bill. The main aim of the bill is to implement the General Data Protection Regulation (EU) 2016/679 into U.K. Ensuring that the GDPR, as implemented by the bill, will continue to apply to the U.K. First and foremost, the bill applies the GDPR to U.K.

GDPR 40

GDPR Personal data Government Privacy 40

DLA Piper Privacy Matters

APRIL 1, 2020

Today the Supreme Court allowed an appeal in Morrisons v Various Claimants1, a significant judgment addressing the extent of an employers’ liability for data breaches maliciously committed by an employee. The Data Protection Act 1998 does not exclude the imposition of vicarious liability for statutory or common law wrongs. Background.

Data breaches 59

Data breaches GDPR Personal data Information governance 59

IT Governance

AUGUST 21, 2018

Data breaches. What steps will the ICO (Information Commissioner’s Office) take to ensure organisations comply with the recently enforced GDPR (General Data Protection Regulation)? Customers of the Adidas.com website may have been affected by a breach after an unauthorised party gained access to customer data.

Retail 66

Retail Data breaches GDPR Compliance 66

Data Matters

FEBRUARY 19, 2021

which addresses UK government surveillance activities). What transfers are restricted under the GDPR? Standard Contractual Clauses) or a derogation under the GDPR can be relied on (e.g., consent of the data subject). Standard Contractual Clauses) or a derogation under the GDPR can be relied on (e.g.,

GDPR 68

GDPR Personal data Privacy Access 68

IT Governance

JANUARY 4, 2018

This week, we look back at the big news from last year, and consider what the next 12 months have in store. Hello and welcome to the first IT Governance podcast of 2018. As it’s the first one, let’s have a brief recap of some of last year’s biggest stories, and then look ahead to what we can expect from the next 12 months.

Passwords 67

Passwords Data breaches GDPR Encryption 67

Preservica

JULY 11, 2018

Preservica’s cloud-hosted active digital preservation platform enables government organisations to protect long-term digital records, increase transparency with greater public access and meet GDPR compliance. Join a demonstration of latest version of Preservica (v5.10) on Thursday 12 th July at 3pm UK. About Preservica.

Digital preservation 40

Digital preservation Cloud Government Archiving 40

Hunton Privacy

OCTOBER 5, 2016

In September, the Centre for Information Policy Leadership (“CIPL”) held its second GDPR Workshop in Paris as part of its two-year GDPR Implementation Project. There was a sense of shared responsibility for the successful and timely implementation of the GDPR between industry, DPAs, national governments and the EU Commission.

GDPR 49

GDPR Risk IT Compliance 49

Data Matters

JUNE 29, 2018

On June 28, 2018, California Gov. Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375). However, unlike the European Union’s GDPR, AB 375 generally permits opt-out rather than opt-in consent as a basis for collection, use or sale of personal information and does not prohibit specific practices.

GDPR 60

GDPR Privacy Sales Data breaches 60

IT Governance

JANUARY 10, 2019

This week, we discuss a high-profile German data breach, the top worst passwords of 2018, the resignation of NHS Digital’s CISO, and Microsoft’s latest patches. Hello and welcome to the first IT Governance podcast of 2019 – for Friday, 11 January. The top ten worst passwords of 2018 were, counting down from ten to one: 10.

Data breaches 77

Data breaches Passwords GDPR Personal data 77

IT Governance

NOVEMBER 23, 2017

The Payment Card Industry Data Security Standard (PCI DSS) was created to enhance cardholder data security. Any merchant or service provider that processes, transmits or stores cardholder data is required to comply with the Standard. 12 December 2017, 3:00 – 4:00 pm (GMT). 17 January 2018, 3:00 – 4:00 pm (GMT).

GDPR 65

GDPR Compliance Personal data Risk 65

IT Governance

APRIL 17, 2018

As most health and social care organisations will be aware, the Data Security and Protection (DSP) Toolkit replaced the Information Governance (IG) Toolkit from April 2018 as the compliance standard for any organisation looking to access NHS networks. 25–26 April 2018, NEC Birmingham. DSP Toolkit Gap Analysis.

Compliance 64

Compliance GDPR Paper Information governance 64

Hunton Privacy

MARCH 18, 2016

On March 14, 2016, the UK Information Commissioner’s Office (“ICO”) published a guide, Preparing for the General Data Protection Regulation (GDPR) – 12 Steps to Take Now. Document what personal data is held, where it came from and with whom it is shared, and consider undertaking an information audit. Data Breaches.

GDPR 53

GDPR Compliance Data breaches Privacy 53