DLA Piper Privacy Matters

JANUARY 21, 2019

On 12 December 2018, the French Government issued an ordinance [1] finalizing, at the legislative level [2] , the alignment of the French Data Protection Law (“FDPL”) with the General Data Protection Regulation [3] (“GDPR”) and the Directive 2016/680 [4].

GDPR 49

GDPR Personal data Communications Government 49

Hunton Privacy

OCTOBER 5, 2016

In September, the Centre for Information Policy Leadership (“CIPL”) held its second GDPR Workshop in Paris as part of its two-year GDPR Implementation Project. Since the inaugural workshop in March 2016 in Amsterdam, participation in the project has grown significantly. Forthcoming Working Party GDPR Guidance.

GDPR 49

GDPR Risk IT Compliance 49

Hunton Privacy

DECEMBER 20, 2017

On December 12, 2017, the Article 29 Working Party (“Working Party”) published its guidelines on transparency under Regulation 2016/679 (the “Guidelines”). The Guidelines aim to provide practical guidance and clarification on the transparency obligations introduced by the EU General Data Protection Regulation (“GDPR”).

GDPR 62

GDPR Personal data Privacy Communications 62

IT Governance

MAY 30, 2019

Just when you thought you were getting the hang of the GDPR (General Data Protection Regulation) , you learn that things are even more complicated. That’s been the reaction of many law enforcement bodies that have recently learned about their compliance requirements under the DPA (Data Protection Act) 2018.

GDPR 49

GDPR Personal data Government Compliance 49

Data Matters

APRIL 20, 2020

Case: WM Morrison Supermarkets plc v Various Claimants [2020] UKSC 12. The fact that the employer had given the employee access to the payroll data, as an internal IT auditor, was not sufficient in itself to impose vicarious liability on the employer under the Data Protection Act 1998 (DPA) (now repealed).

Data breaches 68

Data breaches GDPR Privacy IT 68

DLA Piper Privacy Matters

APRIL 1, 2020

Today the Supreme Court allowed an appeal in Morrisons v Various Claimants1, a significant judgment addressing the extent of an employers’ liability for data breaches maliciously committed by an employee. The Data Protection Act 1998 does not exclude the imposition of vicarious liability for statutory or common law wrongs. Background.

Data breaches 59

Data breaches GDPR Personal data Information governance 59

Hunton Privacy

MARCH 21, 2016

On March 17, 2016, the Council of the European Union (the “Council”) published a Draft Statement (the “Statement”) regarding the Council’s position at first reading with respect to the adoption of the EU General Data Protection Regulation (“GDPR”). The GDPR will be published in the Official Journal shortly after the signing.

GDPR 40

GDPR Personal data IT Information Security 40

Data Matters

MARCH 10, 2021

It tackles a number of important issues such as the confidentiality of communications, the processing of traffic and location data, unsolicited communications and direct marketing, and cookie requirements. The GDPR also supplements the ePrivacy rules on the protection of personal data.

GDPR 68

GDPR Metadata Communications Privacy 68

IT Governance

NOVEMBER 22, 2018

This week, we discuss Amazon’s exposure of customer names and addresses, jail sentences for two TalkTalk hackers, and a data breach affecting a City of York rubbish app. Hello and welcome to the IT Governance podcast for Friday, 23 November. Here are this week’s stories.

Data breaches 96

Data breaches Personal data Passwords Encryption 96

Hunton Privacy

MARCH 18, 2016

On March 14, 2016, the UK Information Commissioner’s Office (“ICO”) published a guide, Preparing for the General Data Protection Regulation (GDPR) – 12 Steps to Take Now. Document what personal data is held, where it came from and with whom it is shared, and consider undertaking an information audit. Data Breaches.

GDPR 53

GDPR Compliance Data breaches Privacy 53

IT Governance

JULY 19, 2018

This week, we discuss a £200,000 fine for the IICSA, a move to suspend the EU-US Privacy Shield, how much a data breach might cost your organisation, and the sentencing of two National Lottery hackers. The IICSA has apologised to the affected individuals and amended its processes for handling personal data.

Data breaches 66

Data breaches Privacy Personal data Compliance 66

IT Governance

JANUARY 4, 2018

This week, we look back at the big news from last year, and consider what the next 12 months have in store. As it’s the first one, let’s have a brief recap of some of last year’s biggest stories, and then look ahead to what we can expect from the next 12 months. Hello and welcome to the first IT Governance podcast of 2018.

Passwords 67

Passwords Data breaches GDPR Encryption 67

Hunton Privacy

APRIL 13, 2016

On April 11, 2016, the European Commission launched a public consultation to evaluate and review Directive 2002/58/EC on the processing of personal data and the protection of privacy in the electronic communications sector, also known as the e-Privacy Directive. The consultation will be open through July 5, 2016.

Privacy 40

Privacy GDPR Communications Personal data 40

Privacy and Cybersecurity Law

AUGUST 1, 2018

The ICO has been involved in producing significant GDPR guidance in the last 12 months and has also run an internal change management process to ensure it is up to the demands placed upon it by GDPR (think: extra staff, new breach reporting functions and helplines). The ICO has produced a Guide to GDPR – definitely worth a read.

GDPR 40

GDPR Data breaches Personal data Privacy 40

IT Governance

NOVEMBER 24, 2017

This week, we discuss Uber’s cover-up of a 2016 breach that compromised 57 million drivers’ and customers’ personal information, the theft of almost $31 million worth of USDT and more than €100,000 worth of Bitcoin, and good news for victims of Western Union transfer scams. Here are this week’s stories.

Data breaches 65

Data breaches Access Blockchain Cloud 65

IT Governance

DECEMBER 13, 2018

This week, in our last podcast of the year, we revisit some of the biggest information security stories from the past 12 months. As is now traditional, I’ve installed myself in the porter’s chair next to the fire in the library, ready to recap some of the year’s more newsworthy information security events.

Data breaches 71

Data breaches Personal data Access GDPR 71

DLA Piper Privacy Matters

NOVEMBER 6, 2018

In the run up to the implementation of the EU General Data Protection Regulation 2016/679, there were various dystopian predictions of huge fines and the rise of US style class action. He also sent copies of the data to three UK newspapers anonymously, one of which notified Morrisons of the issue. Morrisons #2 Court of Appeal.

Insurance 45

Insurance Data breaches Personal data GDPR 45

eDiscovery Daily

OCTOBER 21, 2019

In the increasingly non-linear and fast-moving legal technology world in which we now live and work, where cloud-based solutions, analytics, machine learning, and AI are impacting the data-driven decisions being made, is it time to rethink the EDRM? 11:10 AM – 12:10 PM: Data Subject Access Requests in the Americas and Beyond.

e-Discovery 45

e-Discovery e-Delivery GDPR Education 45

Data Matters

SEPTEMBER 29, 2021

Most of that focus has centered on data collection, storage, sharing, and, in particular, third-party transactions in which customer information is harnessed for advertising purposes. Could a party, for instance, decline to produce, review, or even collect certain types of data due to privacy concerns? But what about other contexts?

Privacy 97

Privacy e-Discovery Computer and Electronics e-Delivery 97

Data Matters

FEBRUARY 19, 2021

What transfers are restricted under the GDPR? The EU GDPR prohibits the transfer of personal data to a country outside the European Economic Area ( EEA ) (otherwise known as a third country ) that is not considered to provide an ‘adequate level’ of data protection by the EC unless ‘appropriate safeguards’ are implemented (e.g.,

GDPR 68

GDPR Personal data Privacy Access 68

Troy Hunt

DECEMBER 3, 2023

” Anyone can type in an email address into the site to check if their personal data has been compromised in a security breach. Inevitably, "because data breaches", and it's nuts just how much exposure this project has had because of them. Or the UK's NCA to be feeding data in.

Data breaches 145

Data breaches Passwords Sales IT 145

CGI

JUNE 15, 2016

Wed, 06/15/2016 - 08:45. These businesses estimate that if their most valuable data were lost or corrupted, the average total cost over a one year period would be £1.2 Other findings include: Over 1/3 rd of UK C-suite executives believe a cybersecurity breach will affect their organization in the next 12 months.

Cybersecurity 40

Cybersecurity Government Retail Insurance 40

CGI

JUNE 14, 2016

Tue, 06/14/2016 - 08:00. These businesses estimate that if their most valuable data were lost or corrupted, the average total cost over a one year period would be £1.2 Other findings include: Over 1/3 rd of UK C-suite executives believe a cybersecurity breach will affect their organization in the next 12 months. kathy.jacquay@….

Cybersecurity 40

Cybersecurity Government Retail Insurance 40

eSecurity Planet

AUGUST 13, 2021

As the demand for robust security defense grows by the day, the market for cybersecurity technology has exploded, as well as the number of available solutions. Syxsense Secure. Stop breaches with one endpoint security solution. Pre-built templates keep organizations secure without needing large teams and specialists.

Cybersecurity 145

Cybersecurity Cloud Encryption Marketing 145

eSecurity Planet

JANUARY 11, 2022

Information security products , services, and professionals have never been in higher demand, making for a world of opportunities for cybersecurity startups. With evolving attack methodologies due to machine learning, quantum computing, and sophisticated nation-state hackers, security startups are receiving record funding.

Cybersecurity 142

Cybersecurity Cloud Compliance Analytics 142

Data Matters

JULY 16, 2018

*Originally Published July 12, 2018 by Chambers and Partners Data Protection & Cyber Security 2018. Regulation is also appropriate to discipline abusive data practices that discriminate, defame or embarrass on the basis of race or other sensitive category, or to tame practices that egregiously insult human dignity.

Privacy 74

Privacy Cloud Artificial Intelligence Data Privacy 74

DLA Piper Privacy Matters

JANUARY 18, 2021

The right to respect of private life and to protection of personal data, however, is not an absolute right. The right to respect of private life and to protection of personal data, however, is not an absolute right. Assessment of the Constitutional Court.

Privacy 98

Privacy GDPR Risk Personal data 98