Data, GDPR and Security - Information Management Today

Maintaining GDPR and Data Privacy Compliance in 2024

IT Governance

FEBRUARY 16, 2024

Expert tips from Alan Calder Alan is the Group CEO of GRC International Group PLC, the parent company of IT Governance, and is an acknowledged international security guru. In addition, 14 US states now have their own data privacy laws, and GDPR-like legislation has proliferated across the world.

Data Privacy

Data Privacy GDPR Compliance Privacy

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Yet many organizations still struggle to meet compliance requirements, and EU data protection authorities do not hesitate to hand out penalties. Irish regulators hit Meta with a EUR 1.2

GDPR

GDPR Compliance Personal data Privacy

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. Any company operating in the EU or handling EU residents’ data must adhere to GDPR requirements. However, GDPR compliance is not necessarily a straightforward matter.

GDPR

GDPR Compliance Personal data Privacy

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Under GDPR, UK Data Breach Reports Quadruple

Data Breach Today

MAY 29, 2019

After Privacy Law Went Into Full Effect, Data Security Complaints Doubled One year after Europe's tough new GDPR privacy law went into full effect last May, authorities in Britain have seen the number of annual data breach notifications more than quadruple.

Data breaches

Data breaches GDPR Privacy Security

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S.

Data Privacy

Data Privacy Compliance Privacy Security

GDPR Data Security Checklist in the Age of COVID-19 and the Remote Workforce

Security Affairs

MAY 11, 2020

During COVID-19 outbreak data processors have to be extra vigilant to maintain their compliance with data protection authorities like GDPR. It has imposed online learning and earning, which in turn has open new doors of cybersecurity threats and data breaches. COVID-19 Remote Working – GDPR Data Security Checklist.

GDPR

GDPR Security Compliance Encryption

British Airways GDPR Lawsuit: The Potential Impact

Data Breach Today

JANUARY 19, 2021

A Substantial Settlement Could Build Data Security Momentum British Airways could face a substantial compensation payout as a result of an ongoing group lawsuit over its 2018 data breach, the first of its kind under GDPR.

GDPR

GDPR Insurance Data breaches Security

Hamburg’s data protection agency (DPA) states that using Zoom violates GDPR

Security Affairs

AUGUST 18, 2021

The German state’s data protection agency (DPA) warns that the use of the videoconferencing platform Zoom violates the European Union’s GDPR. The DPA is concerned by the transfer of user data to the U.S. The DPA is concerned by the transfer of user data to the U.S. for processing. ” states Yahoo News.

GDPR

GDPR Privacy Compliance Communications

Cisco Studies Global Impact of GDPR

Data Breach Today

JANUARY 24, 2019

Cisco is out with findings from its 2019 Data Privacy Benchmark Study, which shows the impact of GDPR compliance as well as how customers are asking more questions about how their data is secured. Cisco Chief Privacy Officer Michelle Dennedy analyzes the survey.

GDPR

GDPR Data Privacy Compliance Privacy

WhatsApp fined €225M over GDPR issues

Security Affairs

SEPTEMBER 5, 2021

The Irish Data Protection Commission has fined WhatsApp €225 million over data sharing transparency for European Union users’ data with Facebook. The Irish Data Protection Commission has fined WhatsApp €225 million for the lack of transparency on how it shares European Union users’ data with Facebook companies.

GDPR

GDPR Compliance IT Security

Marriott Mega-Breach: Will GDPR Apply?

Data Breach Today

DECEMBER 3, 2018

Legal Experts Suspect So, But Investigation Could Take a Year or More Will Marriott be the first organization that lost control of Europeans' personal data to feel the full force of the EU's General Protection Regulation? With GDPR in full effect since May, organizations with data security practices face the potential of massive fines.

GDPR

GDPR Personal data Security

Changing Attitudes Towards GDPR Enforcement and Compliance: 2018 – 2023

IT Governance

MAY 25, 2023

billion fine for Meta – by far the biggest fine issued under the GDPR since it took effect five years ago – has been taken by many as a sign that the Regulation is at last beginning to be enforced with sufficient vigour. Our EU–US Data Transfer Assessment and Action Plan will help you ensure you stay on the right side of the law.

GDPR

GDPR Compliance Personal data Data Privacy

Data privacy examples

IBM Big Data Hub

APRIL 24, 2024

An online retailer always gets users’ explicit consent before sharing customer data with its partners. A navigation app anonymizes activity data before analyzing it for travel trends. One cannot overstate the importance of data privacy for businesses today. The user can accept or reject each use of their data individually.

Data Privacy

Data Privacy Privacy GDPR Personal data

EU Grants Europol Supervised Data Processing Powers

Data Breach Today

MAY 6, 2022

Powers Remove GDPR Restrictions; Independent Authority Will Oversee Use The European Parliament has granted Europol permission to receive and process datasets from private parties and pursue research projects for better handling of security-related cases.

GDPR

GDPR Security

Seven Data Security Challenges You Must Meet to Comply with GDPR

Thales Cloud Protection & Licensing

AUGUST 21, 2018

The enactment of the European Union’s General Data Protection Regulation (GDPR) is a significant milestone for virtually every international business. The following overview touches on some of the most critical elements that are required for GDPR compliance. Encryption for Data in Transit and at Rest.

GDPR

GDPR Security Encryption Cloud

Discord Fined by French CNIL for GDPR Violations

Data Breach Today

NOVEMBER 17, 2022

Video Streamer Pays 800,000 Euros to Settle Probe of Privacy and Security Practices The French data protection authority fined Discord 800,000 euros for privacy and security practices that violate the General Data Protection Regulation.

GDPR

GDPR Personal data Privacy Security

How to Comply with GDPR, PIPL, and CCPA

eSecurity Planet

DECEMBER 22, 2021

But in order for businesses to maintain compliance with major privacy laws , they have to have security measures in place before an attack. The regulations from GDPR, PIPL, and CCPA are especially prevalent to MSPs and software vendors because they get access to data from so many organizations, but all businesses need to comply with them.

GDPR

GDPR Compliance Data Privacy Privacy

Analysis: The Significance of GDPR Fines

Data Breach Today

JULY 12, 2019

The latest edition of the ISMG Security Report analyzes the significance of fines against British Airways and Marriott for violations of the EU's GDPR. Also featured are discussions of California's privacy law as a model for other states and the next generation of deception technologies.

GDPR

GDPR Privacy Security

CJEU Rules That Fear May Constitute Damage Under the GDPR

Hunton Privacy

DECEMBER 19, 2023

Natsionalna agentsia za prihodite (C‑340/21), in which it clarified, among other things, the concept of non-material damage under Article 82 of the EU General Data Protection Regulation (“GDPR”) and the rules governing burden of proof under the GDPR. Read the judgement.

GDPR

GDPR Personal data Data breaches Risk

Germany: No GDPR damages after data breach

DLA Piper Privacy Matters

OCTOBER 13, 2020

One of the many open questions of data protection law in Europe is how compensation for “non-material damage” will be calculated. The decision is in line with the majority of similar restrictive interpretations of Article 82(1) GDPR by other German courts, requiring evidence of objective harm. Background: another open legal question.

GDPR

GDPR Data breaches Personal data Access

The Irish DPC fined WhatsApp €5.5M for violating GDPR

Security Affairs

JANUARY 21, 2023

The Irish Data Protection Commission (DPC) fined Meta’s WhatsApp €5.5 million for violating data protection laws. by the Irish Data Protection Commission (DPC) for violating the General Data Protection Regulation (GDPR). million (for breaches of the GDPR relating to its service).”

GDPR

GDPR Metadata Encryption Communications

France Travail data breach impacted 43 Million people

Security Affairs

MARCH 16, 2024

Unemployment agency France Travail (Pôle Emploi) recently suffered a data breach that could impact 43 million people. On August 2023, the French government employment agency Pôle emploi suffered a data breach and notified 10 million individuals impacted by the security breach. reads the press release published by the agency.

Data breaches

Data breaches Personal data Ransomware GDPR

Dutch DPA Issues Record Fine for Violating GDPR Data Subject Rights

HL Chronicle of Data Protection

JULY 7, 2020

The Dutch Data Protection Authority (DPA) issued a EUR 830,000 (approximately USD 937,000) fine against the Dutch Credit Registration Bureau (BKR) for violating data subject rights. The fine stems from BKR’s practice of charging fees and discouraging individuals who wanted to access their personal data.

GDPR

GDPR Personal data Data collection Access

Dear BA and Marriott: Your GDPR Fines Are Important to Us

Data Breach Today

JULY 10, 2019

Privacy Regulator's Clear Security Message: Act Now to Avoid 'Disappointment' The data protection gloves have finally come off in Europe after GDPR enforcement began last May - the U.K.'s Consider the tables now turned on firms that fail to properly safeguard personal data.

GDPR

GDPR Personal data Privacy Security

GDPR compliance and information security: reducing data breach risks

IT Governance

MARCH 6, 2019

The GDPR (General Data Protection Regulation) isn’t only about preventing data breaches (it’s equally focused on strengthening data subjects’ rights), but organisations have understandably honed in on the importance of effective data protection. What the GDPR says about reducing risk. ISO 27001 and the GDPR.

Information Security

Information Security GDPR Data breaches Compliance

Using Strategic Data Governance to Manage GDPR/CCPA Complexity

erwin

JULY 12, 2019

In light of recent, high-profile data breaches, it’s past-time we re-examined strategic data governance and its role in managing regulatory requirements. for alleged violations of the European Union’s General Data Protection Regulation (GDPR). Given this, Oppenheimer & Co. Complexity.

GDPR

GDPR Government Metadata Compliance

GDPR and The Data Governance Imperative

AIIM

SEPTEMBER 12, 2018

You might also be interested in: The Re-Permissioning Dilemma Under GDPR. Data Privacy and Open Data: Secondary Uses under GDPR. Three Critical Steps for GDPR Compliance. Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy.

GDPR

GDPR Government Information governance Compliance

DLA Piper GDPR fines and data breach survey: January 2021

DLA Piper Privacy Matters

JANUARY 19, 2021

The third annual DLA Piper GDPR fines and data breach survey which we launched today reflects how the current circumstances have affected the privacy landscape across the 31 European countries surveyed. The report includes key GDPR metrics compiled from data from the 27 EU Member States plus the UK, Norway, Iceland and Liechtenstein.

Data breaches

Data breaches GDPR Personal data Privacy

Facebook Fined $276M under GDPR

Schneier on Security

NOVEMBER 30, 2022

Facebook—Meta—was just fined $276 million (USD) for a data leak that included full names, birth dates, phone numbers, and location. Meta’s total fine by the Data Protection Commission is over $700 million. Total GDPR fines are over €2 billion (EUR) since 2018.

GDPR

Securing Containers for GDPR Compliance

Thales Cloud Protection & Licensing

MARCH 1, 2018

Around the world, enterprises are anxious about May 25, 2018, the day enforcement begins for the European Union’s General Data Protection Regulation (GDPR). And, with potential fines of up to four percent of global revenues or 20 million EUR (whichever is higher), the GDPR has the attention of CEOs and Boards of Directors.

GDPR

GDPR Compliance Security Encryption

Italian Garante Fines Bank 600,000 Euros for Pre-GDPR Data Breach

Hunton Privacy

JULY 1, 2020

The Italian Data Protection Authority ( Garante per la protezione dei dati personali , “Garante”) recently announced that it levied a €600,000 fine on banking institution UniCredit for several violations of the Italian Personal Data Protection Code, in its pre-General Data Protection Regulation (“GDPR”) form.

Data breaches

Data breaches GDPR Personal data Education

What Is Data Minimisation? Definition & Examples

IT Governance

APRIL 18, 2023

Data minimisation is a key part of information security and the GDPR (General Data Protection Regulation) in particular. Its principles are at the heart of effective data protection practices, and are intended to prevent privacy breaches and minimise the damage when security incidents occur.

GDPR

GDPR Personal data Data breaches Marketing

GDPR for small business: the ultimate guide

IT Governance

JULY 2, 2020

What is the GDPR? The Regulation came into effect on 25 May 2018, and was designed to strengthen the rights of EU residents regarding the way organisations process and use their personal data. First, the UK has implemented the UK DPA (Data Protection Act) 2018 , which adopts the GDPR into national law. A quick overview.

GDPR

GDPR Personal data Data breaches Compliance

Organisations received £155 million in GDPR fines in 2020

IT Governance

MARCH 28, 2021

In 2020, organisations received €182 million (about £155 million) in fines for violating the GDPR (General Data Protection Regulation) , according to an IT Governance report. Our GDPR Fines Quarterly Report revealed that more than two thirds of that total – €110 million (£94 million) – came in the final quarter of the year.

GDPR

GDPR Personal data Government Compliance

The European Commission’s GDPR review in short

Privacy and Cybersecurity Law

JULY 22, 2020

Two years after the GDPR entered into force, the European Commission ( EC ) issued its first evaluation of the GDPR. Individuals are increasingly aware of the GDPR and their GDPR rights. However, the right to data portability is still not used to its full potential. The GDPR’s international data transfer toolbox.

GDPR

GDPR Privacy Personal data Compliance

UK ICO Approves the First UK GDPR Certification Scheme Criteria

Hunton Privacy

AUGUST 27, 2021

On August 19, 2021, the UK Information Commissioner’s Office (“ICO”) approved the criteria for three certification schemes, as required under Article 42(5) of the UK General Data Protection Regulation (“UK GDPR”). Certification schemes are one method for organizations to demonstrate compliance with the UK GDPR.

GDPR

GDPR Compliance Personal data Privacy

Meta Hit with £14 Million Fine for a Dozen GDPR Breaches

IT Governance

MARCH 17, 2022

million) for twelve breaches of EU data protection rules. The tech giant, formerly known as Facebook, violated several GDPR (General Data Protection Regulation) requirements, and more than 30 million people have been affected. Facebook’s failure to adopt these measures doesn’t necessarily mean that personal data was breached.

GDPR

GDPR Personal data Encryption Compliance

Securing the Cloud Frontier: Navigating the Complexities of SaaS Data Protection in the Multi-Cloud Era

Thales Cloud Protection & Licensing

DECEMBER 6, 2023

Securing the Cloud Frontier: Navigating the Complexities of SaaS Data Protection in the Multi-Cloud Era madhav Thu, 12/07/2023 - 05:34 In the rapidly evolving digital landscape, Software as a Service (SaaS) has emerged as a cornerstone of modern business operations. cloud platforms and 97 SaaS applications.

Cloud

Cloud Encryption Security Data Privacy

German laptop retailer fined €10.4m under GDPR for video-monitoring employees

Security Affairs

JANUARY 18, 2021

German data regulator LfD announced a €10.4M fine under GDPR against the online laptop and electronic goods retailer NBB for video-monitoring employees. The State Commissioner for Data Protection (LfD) Lower Saxony announced a €10.4 The State Commissioner for Data Protection (LfD) Lower Saxony announced a €10.4

Retail

Retail GDPR Sales Privacy

The GDPR: Everything you need to know about data controllers and data processors

IT Governance

NOVEMBER 14, 2018

Data controllers and data processors are an integral part of the GDPR. The terms ‘data controller’ and ‘data processor’ have been around for years, but it’s only since the EU GDPR (General Data Protection Regulation) took effect that they’ve been scrutinised. Responsibilities of the data controller.

GDPR

GDPR Retail Data collection Personal data

Italian data protection authority said that ChatGPT violated EU privacy laws

Security Affairs

JANUARY 30, 2024

Italian data protection authority regulator authority Garante said that ChatGPT violated European Union data privacy regulations. In early April 2023, the Italian Data Protection Authority temporarily banned ChatGPT due to the illegal collection of personal data and the absence of systems for verifying the age of minors.

Privacy

Privacy GDPR Personal data Data Privacy

GDPR: How the definition of personal data has changed

IT Governance

APRIL 10, 2019

On 25 May 2018, the EU’s GDPR (General Data Protection Regulation) superseded the UK’s DPA (Data Protection Act) 1998. With the Regulation expanding the definition of personal data, many organisations were uncertain as to what the new definition includes. The scope of personal data. What constitutes personal data?

Personal data

Personal data GDPR Education Government

Germany: First data protection authority issues GDPR fine

DLA Piper Privacy Matters

NOVEMBER 22, 2018

The State Commissioner for Data Protection and Freedom of Information Baden-Wuerttemberg (LfDI) was the first German data protection authority to impose a fine under the GDPR. 32 (1) (a) GDPR (obligation to pseudonymise and encrypt personal data). 83 (4) (a) GDPR). 83 (4) (a) GDPR).

GDPR

GDPR Data breaches Personal data Passwords

ISO 27701 unlocks the path to GDPR compliance and better data privacy

IT Governance

SEPTEMBER 17, 2019

We have good news for those looking for help complying with the GDPR (General Data Protection Regulation) : new guidance has been released on how to create effective data privacy controls. ISO 27701 and ISO 27001: privacy vs security. The same is true if an unauthorised employee or cyber criminal gets hold of the data.

Data Privacy

Data Privacy GDPR Compliance Privacy

Maintaining GDPR and Data Privacy Compliance in 2024

How to implement the General Data Protection Regulation (GDPR)

Webinars

Trending Sources

GDPR compliance checklist

Webinars

Under GDPR, UK Data Breach Reports Quadruple

Security Compliance & Data Privacy Regulations

GDPR Data Security Checklist in the Age of COVID-19 and the Remote Workforce

British Airways GDPR Lawsuit: The Potential Impact

Hamburg’s data protection agency (DPA) states that using Zoom violates GDPR

Cisco Studies Global Impact of GDPR

WhatsApp fined €225M over GDPR issues

Marriott Mega-Breach: Will GDPR Apply?

Changing Attitudes Towards GDPR Enforcement and Compliance: 2018 – 2023

Data privacy examples

EU Grants Europol Supervised Data Processing Powers

Seven Data Security Challenges You Must Meet to Comply with GDPR

Discord Fined by French CNIL for GDPR Violations

How to Comply with GDPR, PIPL, and CCPA

Analysis: The Significance of GDPR Fines

CJEU Rules That Fear May Constitute Damage Under the GDPR

Germany: No GDPR damages after data breach

The Irish DPC fined WhatsApp €5.5M for violating GDPR

France Travail data breach impacted 43 Million people

Dutch DPA Issues Record Fine for Violating GDPR Data Subject Rights

Dear BA and Marriott: Your GDPR Fines Are Important to Us

GDPR compliance and information security: reducing data breach risks

Using Strategic Data Governance to Manage GDPR/CCPA Complexity

GDPR and The Data Governance Imperative

DLA Piper GDPR fines and data breach survey: January 2021

Facebook Fined $276M under GDPR

Securing Containers for GDPR Compliance

Italian Garante Fines Bank 600,000 Euros for Pre-GDPR Data Breach

What Is Data Minimisation? Definition & Examples

GDPR for small business: the ultimate guide

Organisations received £155 million in GDPR fines in 2020

The European Commission’s GDPR review in short

UK ICO Approves the First UK GDPR Certification Scheme Criteria

Meta Hit with £14 Million Fine for a Dozen GDPR Breaches

Securing the Cloud Frontier: Navigating the Complexities of SaaS Data Protection in the Multi-Cloud Era

German laptop retailer fined €10.4m under GDPR for video-monitoring employees

The GDPR: Everything you need to know about data controllers and data processors

Italian data protection authority said that ChatGPT violated EU privacy laws

GDPR: How the definition of personal data has changed

Germany: First data protection authority issues GDPR fine

ISO 27701 unlocks the path to GDPR compliance and better data privacy

Stay Connected