Data, GDPR and Government - Information Management Today

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. Any company operating in the EU or handling EU residents’ data must adhere to GDPR requirements. The checklist below covers the core GDPR regulations.

GDPR

GDPR Compliance Personal data Privacy

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Yet many organizations still struggle to meet compliance requirements, and EU data protection authorities do not hesitate to hand out penalties. Irish regulators hit Meta with a EUR 1.2

GDPR

GDPR Compliance Personal data Privacy

Is it still necessary for data protection laws to have particular processing rules for specific types pf personal data?

Data Protector

OCTOBER 16, 2020

European laws have special rules for the processing of “sensitive data” or “special category data” regardless of the context within which the data will be processed. This has been the case in the UK since the coming into force of the first (1984) Data Protection Act. I think not.

Personal data

Personal data GDPR IT Privacy

Webinars

Improving the Accuracy of Generative AI Systems: A Structured Approach

MORE WEBINARS

How to Comply with GDPR, PIPL, and CCPA

eSecurity Planet

DECEMBER 22, 2021

The regulations from GDPR, PIPL, and CCPA are especially prevalent to MSPs and software vendors because they get access to data from so many organizations, but all businesses need to comply with them. PIPL Compliance CCPA Compliance GDPR Compliance How to Stay Up to Date with Changing Compliance Regulations. Compliance Overview.

GDPR

GDPR Compliance Data Privacy Privacy

Data Beyond Borders: The Schrems II Aftermath

Thales Cloud Protection & Licensing

MARCH 1, 2021

Data Beyond Borders: The Schrems II Aftermath. On July 16, 2020 the Court of Justice of the European Union issued the Schrems II decision in the case Data Protection Commission v. That decision invalidates the European Commission’s adequacy decision for the EU-U.S. Tue, 03/02/2021 - 07:06. Facebook Ireland.

GDPR

GDPR Compliance Privacy Cloud

UK Government sets out proposals to shake up UK data protection laws

Data Protection Report

SEPTEMBER 28, 2021

On 10 September 2021, the UK Government published its consultation paper on proposals to reform the UK’s data protection regime. Core elements of the GDPR: legal bases / conditions. The context here is enabling innovative data use involving data sharing by different controllers, rather than clarification.

Government

Government FOIA GDPR Compliance

The UK and the US Build a ‘Data Bridge’ to Facilitate Personal Data Movements

Thales Cloud Protection & Licensing

AUGUST 29, 2023

The UK and the US Build a ‘Data Bridge’ to Facilitate Personal Data Movements andrew.gertz@t… Tue, 08/29/2023 - 13:41 Modern-day business transactions heavily rely on international data transfers. In 2021, 93% of the UK's services exports were data-enabled, resulting in over £79 billion worth of services exported to the US.

Personal data

Personal data Data Privacy Privacy GDPR

Google LLC loses appeal against French Data Protection Authority decision before France highest administrative Court

DLA Piper Privacy Matters

JUNE 23, 2020

Therefore, the Irish Data Protection Authority, acting as Google’s lead authority, had sole jurisdiction to monitor Google’s data processing activities on the European Union territory (1). The fine of EUR 50 million is disproportionate and does not take into account the criteria set forth in article 83-2 of the GDPR (3).

GDPR

GDPR Personal data Access IT

How the CCPA and GDPR Are Different

KnowBe4

SEPTEMBER 10, 2019

The California Consumer Privacy Act (CCPA) was introduced just a month after the European Union instituted the General Data Protection Regulation (GDPR), earning the CCPA the nickname of “California’s GDPR.”. While the CCPA does incorporate several aspects of the GDPR, many key components are different.

GDPR

GDPR Privacy Personal data Passwords

European Commission Publishes Final Version of Updated Standard Contractual Clauses

Hunton Privacy

JUNE 4, 2021

On June 4, 2021, the European Commission published the final version of the implementing decision on standard contractual clauses for transfers of personal data to third countries under the EU General Data Protection Regulation (“GDPR”), as well as the final version of the new standard contractual clauses (the “SCCs”).

Personal data

Personal data GDPR Government Access

The Impact of Data Protection Laws on Your Records Retention Schedule

ARMA International

APRIL 18, 2022

It is essential that your organization’s records retention schedule is compliant with the data protection requirements in the jurisdictions where your organization operates. Introduction to Data Protection Laws. Personal data protection requirements may be issued by federal, state (provincial), or local governments.

Personal data

Personal data GDPR Privacy Records Management

ICO Publishes Draft New Guidance on PETs

Data Matters

OCTOBER 6, 2022

The Guidance is divided into two sections: (i) how can PETs help with data protection compliance; and (ii) what are PETs. The Guidance provides a more practical explanation of what PETs are – explaining that they are “enablers” that extract data value while providing data security. What are PETs and why is the ICO interested?

GDPR

GDPR Privacy Encryption Compliance

GDPR – The Year in Review

HL Chronicle of Data Protection

MAY 29, 2019

Following the one-year anniversary of the coming into effect of the GDPR, Hogan Lovells’ Privacy and Cybersecurity practice has prepared summaries of key GDPR-related developments of the past 12 months. The summaries cover regulatory guidance, enforcement actions, court proceedings, and various reports and materials.

GDPR

GDPR Personal data Privacy Information architecture

What is the NIS2 Directive and How Does It Affect You?

Thales Cloud Protection & Licensing

NOVEMBER 28, 2022

The European Union enacted the Network and Information System (NIS) regulation in July 2016 with the intention of ensuring a specific level of security for networks and information systems belonging to critical and sensitive infrastructures in EU member states. What is the NIS2 Directive and How Does It Affect You?

IT

IT Encryption Compliance Cybersecurity

Europe: New guidelines on the application and setting of fines under GDPR

DLA Piper Privacy Matters

NOVEMBER 7, 2017

Less than 6 months remain for individuals and companies to get ready for the breakthrough regulation in personal data protection envisaged by the Regulation 2016/679 of 27 April 2016 [1] (furthermore as “ GDPR “).

GDPR

GDPR Personal data Privacy Government

Dark Side of the Moon: Extraterritorial Applicability of the UK Data Protection Act 2018 After Brexit

HL Chronicle of Data Protection

MARCH 4, 2019

Subject to the deadlock in parliament being broken, or an extension of the Article 50 Brexit process, the UK’s 46-year European Union membership will cease in a matter of days. For more information on this and other requirements, see our Brexit Data Protection Action Plan. However, the DP Exit Regs are set to amend this.

GDPR

GDPR Personal data Privacy Communications

Germany: Schrems II: And now? First German supervisory authority provides guidance on data transfers

DLA Piper Privacy Matters

AUGUST 27, 2020

The Commissioner for Data Protection and Freedom of Information for the German State of Baden-Württemberg ( Landesbeauftragter für Datenschutz und Informationsfreiheit Baden-Württemberg – “LfDI BW”) recently published guidance for international transfers of personal data in the post- Schrems II era. Background. The LfDI BW guidance.

Personal data

Personal data GDPR Encryption Privacy

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

2020 could well be a year of data export turmoil – so brace yourself! Although the AG’s view was that the SCCs are valid, he suggested that those using them would need to examine the national security laws of the data importer’s jurisdiction to determine whether they can in fact comply with the terms of the SCCs.

Privacy

Privacy GDPR Data breaches Risk

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Last Watchdog

JANUARY 30, 2019

Late last year, Atrium Health disclosed it lost sensitive data for some 2.65 The culprit: lax practices of a third-party data and analytics contractor. Individuals can even be affected by parties with whom they have no explicit relationships, such as credit bureaus and data brokers.”. Uphill battle.

Risk

Risk Financial Services Insurance Cybersecurity

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

2020 could well be a year of data export turmoil – so brace yourself! Although the AG’s view was that the SCCs are valid, he suggested that those using them would need to examine the national security laws of the data importer’s jurisdiction to determine whether they can in fact comply with the terms of the SCCs.

Privacy

Privacy GDPR Data breaches Risk

EU: Europe’s toolbox for building compliant Corona tracking apps

DLA Piper Privacy Matters

APRIL 27, 2020

On the 8 th of April 2020, the European Commission adopted Recommendation 2020/518 to address the need of a common toolbox (the “ Toolbox ”) for the use of technology and data in order to fight and exit the Covid-19 crisis, with a particular focus on the use of mobile applications. Governance and role of the public health authorities.

Personal data

Personal data Privacy Cybersecurity Access

The NIS Directive (NIS Regulations) – the UK law businesses need to know about

IT Governance

JULY 20, 2018

Although much of the focus in 2018 has been on ensuring compliance with the EU GDPR (General Data Protection Regulation) , another EU directive became UK law in May – the NIS Regulations (Network and Information Systems Regulations 2018). What are the NIS Regulations? The NIS Regulations aim to minimise this sort of chaos.

Compliance

Compliance GDPR Personal data Cloud

California passes major legislation, expanding consumer privacy rights and legal exposure for US and global companies

Data Protection Report

JUNE 29, 2018

On June 28, 2018, California lawmakers enacted the California Consumer Privacy Act of 2018 (the “CCPA”) a sweeping, GDPR-like privacy law which is intended to give California consumers more control over how businesses collect and use their data. Consumer access and data portability rights. Right to opt-out of data sharing.

Privacy

Privacy GDPR Personal data Risk

California Passes Major Legislation, Expanding Consumer Privacy Rights and Legal Exposure for US and Global Companies

Data Protection Report

JUNE 29, 2018

On June 28, 2018, California lawmakers enacted the California Consumer Privacy Act of 2018 (the “CCPA”) a sweeping, GDPR-like privacy law which is intended to give California consumers more control over how businesses collect and use their data. Consumer Access and Data Portability Rights. Right to Opt-Out of Data Sharing.

Privacy

Privacy GDPR Personal data Risk

European Parliament Agrees on Position on the AI Act

Hunton Privacy

JUNE 15, 2023

On June 14, 2023, the European Parliament (“EP”) approved its negotiating mandate (the “EP’s Position”) regarding the EU’s Proposal for a Regulation laying down harmonized rules on Artificial Intelligence (the “AI Act”). Providers of foundation models are now subject to a number of specific obligations under the AI Act.

Risk

Risk Artificial Intelligence Compliance GDPR

New to the Role of Data Protection Officer? We’ve Put Together a Few Points to Help You Get Started

Managing Your Information

JULY 22, 2019

Some of the hype about the General Data Protection Regulation (the GDPR) has been given renewed focus over the last couple of weeks by the issuing of two Notices of Intent by the Information Commissioner’s Office (ICO) with a nominal value of over £283m. What is a Data Protection Officer?

GDPR

GDPR Personal data Compliance Information governance

New to the Role of Data Protection Officer? We’ve Put Together a Few Points to Help You Get Started

Managing Your Information

JULY 22, 2019

Some of the hype about the General Data Protection Regulation (the GDPR) has been given renewed focus over the last couple of weeks by the issuing of two Notices of Intent by the Information Commissioner’s Office (ICO) with a nominal value of over £283m. What is a Data Protection Officer?

GDPR

GDPR Personal data Compliance Information governance

European Commission proposes reinforcement of EU Cybersecurity rules

DLA Piper Privacy Matters

JANUARY 11, 2021

On 16 December 2020, the European Commission adopted a proposal for a Directive on measures for a high common level of cybersecurity across the Union (“NIS II Directive”) that revises the current Directive on Security of Network and Information Systems (“NIS Directive”). Cybersecurity risk management and reporting obligations.

Cybersecurity

Cybersecurity Computer and Electronics Cloud Manufacturing

EU data governance regulation – A wave of digital, regulatory and antitrust reform begins – Part Two

Data Protection Report

DECEMBER 17, 2020

On 25 November 2020, the European Commission ( EC ) published its proposed Data Governance Regulation (the DGR ), which will create a new legal framework to encourage the development of a European single market for data. New regime for data sharing service providers. Requirement to notify.

Government

Government Personal data GDPR Access

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

What follows below is an edited version of the debate in the House of Lords of the Second Reading of the Data Protection Bill, held on 10 October. Data is not just a resource for better marketing, better service and delivery. Data is used to build products themselves. It has become a cliché that data is the new oil.

GDPR

GDPR Personal data Government IT

Join Our Webinar on November 16th: IGI & Preservica Address the Governance of Long-Term Digital Information

IGI

NOVEMBER 10, 2017

Please join the IGI and Preservica on November 16th at 11am ET for a webinar addressing The Governance & Preservation of Long-Term Digital Information. Barclay Blair, Founder and Executive Director, Information Governance Initiative (IGI). CLICK HERE TO REGISTER. Lori Ashley, Industry Market Development Manager, Preservica.

Digital preservation

Digital preservation Government Digital transformation Access

Schrems II: AG deems SCCs valid but comes up with difficult new obligations and expresses “doubts” over privacy shield

Data Protection Report

DECEMBER 20, 2019

Yesterday, the Advocate General (“ AG ”) concluded that, in his opinion, the EU Standard Contractual Clauses (“ SCCs ”) are a valid mechanism to transfer personal data outside of the European Economic Area (“ EEA ”). But, for the time-being, data flows can continue as usual. The AG’s opinion is not binding.

Privacy

Privacy Personal data Risk Access

Schrems II: AG deems SCCs valid but comes up with difficult new obligations and expresses “doubts” over privacy shield

Data Protection Report

DECEMBER 20, 2019

Yesterday, the Advocate General (“ AG ”) concluded that, in his opinion, the EU Standard Contractual Clauses (“ SCCs ”) are a valid mechanism to transfer personal data outside of the European Economic Area (“ EEA ”). But, for the time-being, data flows can continue as usual. The AG’s opinion is not binding.

Privacy

Privacy Personal data Risk Access

Security Considerations for Data Lakes

eSecurity Planet

AUGUST 11, 2022

Many of the basic principles for securing a data lake will be familiar to anyone who has secured a cloud security storage container. Of course, since most commercial data lakes build off of existing cloud infrastructure, this should be the case. Data Lake Security Scope. See the Best Zero Trust Security Solutions.

Security

Security Encryption Cloud Access

A Guide to CCPA Compliance and How the California Consumer Privacy Act Compares to GDPR

erwin

APRIL 18, 2019

California Consumer Privacy Act (CCPA) compliance shares many of the same requirements in the European Unions’ General Data Protection Regulation (GDPR). Luckily, many organizations have already laid the regulatory groundwork for it because of their efforts to comply with GDPR. Clinical trial data.

GDPR

GDPR Compliance Privacy Personal data

EU: New EDPB Guidelines on the territorial scope of the GDPR

DLA Piper Privacy Matters

NOVEMBER 28, 2018

By the DLA Piper EU Data Protection Team. On 26 November 2018, the WP29’s successor, the European Data Protection Board (EDPB) published, Guidelines on the territorial scope of the GDPR (Art. It uses a data processor established in the EU. subsidiary, branch, office, etc.), in the territory of a Member State.

GDPR

GDPR Personal data Sales Communications

What is a Data Catalog?

erwin

APRIL 21, 2020

The easiest way to understand a data catalog is to look at how libraries catalog books and manuals in a hierarchical structure, making it easy for anyone to find exactly what they need. Similarly, a data catalog enables businesses to create a seamless way for employees to access and consume data and business assets in an organized manner.

Government

Government Analytics Sales Privacy

Ethical Use of Data for Training Machine Learning Technology - Part 2

AIIM

JANUARY 28, 2020

This is the second part of a 3-part series on the Ethical Use of Data for Training Machine Learning Technology by guest authors Andrew Pery and Michael Simon. Generally, these processes require large data sets to “train” the computer. What happens when we use a data set that contains biases? Part 1 is available here.

Artificial Intelligence

Artificial Intelligence GDPR Personal data Privacy

Using a Data Catalog to Crisis-Proof Your Business

erwin

APRIL 21, 2020

One of the biggest lessons we’re learning from the global COVID-19 pandemic is the importance of data, specifically using a data catalog to comply, collaborate and innovate to crisis-proof our businesses. Give guidance to governments, health professionals and the public. What Is a Data Catalog?

Government

Government Analytics Sales Privacy

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

Data Protection Report

DECEMBER 17, 2020

On 25 November 2020, the European Commission ( EC ) published its proposed Data Governance Regulation (the DGR ), which will create a new legal framework to encourage the development of a European single market for data. What are the objectives of the Data Governance Regulation?

Government

Government Personal data Marketing Artificial Intelligence

Data integrity vs. data quality: Is there a difference?

IBM Big Data Hub

JULY 13, 2023

When we talk about data integrity, we’re referring to the overarching completeness, accuracy, consistency, accessibility, and security of an organization’s data. Together, these factors determine the reliability of the organization’s data. In short, yes.

Metadata

Metadata Analytics MDM Compliance

AUSTRALIA: One month to go – EU GDPR implications for Australian businesses

DLA Piper Privacy Matters

APRIL 26, 2018

We are now one month away from the historic enforcement of the EU General Data Protection Regulation ( GDPR ) and it is clear that there is still much to do by many Australian organisations to ensure compliance by the 25 May 2018 deadline.

GDPR

GDPR Compliance Personal data Privacy

Consumer privacy reaches the U.S. with the California Consumer Privacy Act

Thales Cloud Protection & Licensing

AUGUST 30, 2018

This time, California is the first to take a page from the European Union. On the heels of the sweeping Global Data Protection Regulation (GDPR) that took effect on May 25, 2018, the state of California moved quickly, passing its version of a consumer privacy law a month later, on June 28th. Right to DELETE your data.

Privacy

Privacy GDPR Data breaches Sales

GDPR compliance checklist

How to implement the General Data Protection Regulation (GDPR)

Webinars

Trending Sources

Is it still necessary for data protection laws to have particular processing rules for specific types pf personal data?

Webinars

How to Comply with GDPR, PIPL, and CCPA

Data Beyond Borders: The Schrems II Aftermath

UK Government sets out proposals to shake up UK data protection laws

The UK and the US Build a ‘Data Bridge’ to Facilitate Personal Data Movements

Google LLC loses appeal against French Data Protection Authority decision before France highest administrative Court

How the CCPA and GDPR Are Different

Top 7 Data Governance Blog Posts of 2018

European Commission Publishes Final Version of Updated Standard Contractual Clauses

The Impact of Data Protection Laws on Your Records Retention Schedule

ICO Publishes Draft New Guidance on PETs

GDPR – The Year in Review

What is the NIS2 Directive and How Does It Affect You?

Europe: New guidelines on the application and setting of fines under GDPR

Dark Side of the Moon: Extraterritorial Applicability of the UK Data Protection Act 2018 After Brexit

Germany: Schrems II: And now? First German supervisory authority provides guidance on data transfers

The Privacy Officers’ New Year’s Resolutions

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Privacy Officers’ New Year’s Resolutions

EU: Europe’s toolbox for building compliant Corona tracking apps

The NIS Directive (NIS Regulations) – the UK law businesses need to know about

California passes major legislation, expanding consumer privacy rights and legal exposure for US and global companies

California Passes Major Legislation, Expanding Consumer Privacy Rights and Legal Exposure for US and Global Companies

European Parliament Agrees on Position on the AI Act

New to the Role of Data Protection Officer? We’ve Put Together a Few Points to Help You Get Started

New to the Role of Data Protection Officer? We’ve Put Together a Few Points to Help You Get Started

European Commission proposes reinforcement of EU Cybersecurity rules

EU data governance regulation – A wave of digital, regulatory and antitrust reform begins – Part Two

The debate on the Data Protection Bill in the House of Lords

Join Our Webinar on November 16th: IGI & Preservica Address the Governance of Long-Term Digital Information

Schrems II: AG deems SCCs valid but comes up with difficult new obligations and expresses “doubts” over privacy shield

Schrems II: AG deems SCCs valid but comes up with difficult new obligations and expresses “doubts” over privacy shield

Security Considerations for Data Lakes

A Guide to CCPA Compliance and How the California Consumer Privacy Act Compares to GDPR

EU: New EDPB Guidelines on the territorial scope of the GDPR

What is a Data Catalog?

Ethical Use of Data for Training Machine Learning Technology - Part 2

Using a Data Catalog to Crisis-Proof Your Business

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

Data integrity vs. data quality: Is there a difference?

AUSTRALIA: One month to go – EU GDPR implications for Australian businesses

Consumer privacy reaches the U.S. with the California Consumer Privacy Act

Stay Connected