2018, Data, GDPR and Security - Information Management Today

WhatsApp fined €225M over GDPR issues

Security Affairs

SEPTEMBER 5, 2021

The Irish Data Protection Commission has fined WhatsApp €225 million over data sharing transparency for European Union users’ data with Facebook. The Irish Data Protection Commission has fined WhatsApp €225 million for the lack of transparency on how it shares European Union users’ data with Facebook companies.

GDPR

GDPR Compliance IT Security

How to Comply with GDPR, PIPL, and CCPA

eSecurity Planet

DECEMBER 22, 2021

But in order for businesses to maintain compliance with major privacy laws , they have to have security measures in place before an attack. The regulations from GDPR, PIPL, and CCPA are especially prevalent to MSPs and software vendors because they get access to data from so many organizations, but all businesses need to comply with them.

GDPR

GDPR Compliance Data Privacy Privacy

GDPR Training in Belfast – save 10%

IT Governance

DECEMBER 18, 2017

Many organisations are struggling to fill a skills gap created by the EU General Data Protection Regulation (GDPR) and need staff with knowledge of the Regulation. For a short time, we are offering a 10% discount on GDPR courses in Belfast, so book your place before Friday 5 January 2018. Securing personal data.

GDPR

GDPR Personal data Compliance Data breaches

Privacy and Cybersecurity Top 10 for 2018

Data Matters

JANUARY 2, 2018

This past year was marked by ever more significant data breaches, growing cybersecurity regulatory requirements at the state and federal levels and continued challenges in harmonizing international privacy and cybersecurity regulations. We expect each of these trends to continue in 2018. Data breach litigation risks.

Cybersecurity

Cybersecurity Privacy Data breaches GDPR

Guest Post -- GDPR Compliance starts with Data Discovery

AIIM

NOVEMBER 16, 2017

You might also be interested in: Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. What Do the GDPR and new Privacy Laws Mean for U.S. Compliance starts with data discovery.

GDPR

GDPR Compliance Privacy Paper

UK ICO fines hotel chain giant Marriott over data breach

Security Affairs

NOVEMBER 2, 2020

The UK Information Commissioner’s Office fined US hotels group Marriott over the 2018 data breach that affected millions of customers worldwide. million) for multiple data breaches suffered by the company since 2018 that exposed the personal information of its customers. million ($23.5 According to the U.K.’s

Data breaches

Data breaches Personal data GDPR Encryption

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing

Thales Cloud Protection & Licensing

DECEMBER 22, 2020

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing. Tue, 12/22/2020 - 10:08. New EU restrictions could force companies to change data transfer practices and adopt more advanced data encryption methods. Data privacy is not a check-the-box compliance or security item.

Data Privacy

Data Privacy Privacy Security Encryption

Where to start with GDPR compliance

IT Governance

MARCH 15, 2018

The first few steps of your EU General Data Protection Regulation (GDPR) compliance project can be the most confusing. What is the GDPR and does your organisation need to comply? The GDPR demands greater accountability and transparency from organisations in how they collect, process and store personal information.

GDPR

GDPR Compliance Privacy Data Privacy

Essential guidance on achieving and prioritising GDPR compliance

IT Governance

MARCH 7, 2018

As the 25 May 2018 deadline for EU General Data Protection Regulation (GDPR) compliance draws near, it is becoming clear that the vast majority of UK businesses will not be ready. Of those aware of the Regulation, just over 25% of businesses and charities have made a start on their GDPR compliance project.

GDPR

GDPR Compliance Personal data Information Security

Germany: First court decision on GDPR

DLA Piper Privacy Matters

JUNE 6, 2018

Only five days after the GDPR became applicable, the first German court, the Regional Court ( Landgericht ) Bonn (in a decision dated 29 May 2018, case number 10 O 171/18 – in German only), issued a ruling on the practical application of the GDPR. 5 (1) lit.

GDPR

GDPR Compliance Personal data Security

Spanish Senate signs-off new GDPR-compliant Data Protection Act

DLA Piper Privacy Matters

NOVEMBER 21, 2018

After a very long delay and amidst rumors that the Spanish Parliament could be dissolved and early elections called, the Spanish Senate speedily dismissed all the proposals for further changes and approved the new GDPR-compliant Spanish Data Protection Act on Wednesday 21 November 2018.

GDPR

GDPR Personal data Access Education

GDPR After the Deadline — Part 2 of 3 — Where are organizations in their GDPR journey and how much did they spend to get there?

AIIM

AUGUST 1, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. While 11% of organizations are completely prepared for GDPR (i.e.,

GDPR

GDPR Compliance Privacy Marketing

GDPR After the Deadline — Part 2 of 3 — Where are organizations in their GDPR journey and how much did they spend to get there?

AIIM

AUGUST 1, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. While 11% of organizations are completely prepared for GDPR (i.e.,

GDPR

GDPR Compliance Privacy Marketing

DCMS Consults on National Data Strategy

Hunton Privacy

SEPTEMBER 15, 2021

On September 10, 2021, the UK Government Department for Digital, Culture, Media & Sport (“DCMS”) launched a consultation on its proposed reforms to the UK data protection regime. Organizations are encouraged to provide input on a range of data protection proposals, some of which are outlined below.

GDPR

GDPR Personal data Risk Communications

The GDPR: A guide for small businesses

IT Governance

MARCH 27, 2018

Businesses are starting to panic as they try to comply with the General Data Protection Regulation (GDPR) before the May 2018 deadline. Many even believe that the GDPR won’t apply to them because they have fewer than 250 employees. Data protection officers. Does it apply to me?

GDPR

GDPR Compliance Personal data Information Security

Government survey reveals GDPR awareness is falling short

IT Governance

FEBRUARY 8, 2018

The Cyber Security Breaches Survey 2018 from the Department for Digital, Culture, Media and Sport (DCMS) has revealed that only 38% of businesses and 44% of charities have heard of the General Data Protection Regulation (GDPR). Are your staff aware of the GDPR? Key findings.

GDPR

GDPR Government Education Compliance

Key steps to GDPR compliance – Part 3

IT Governance

DECEMBER 20, 2017

There are less than six months to go until the General Data Protection Regulation (GDPR) comes into effect, but some businesses are not even thinking about it yet, or are only just starting to. Data subject access requests, incident reporting and data breach reporting will all need written processes, too.

GDPR

GDPR Compliance Data breaches Information Security

Privacy and Cybersecurity October 2018 Events

HL Chronicle of Data Protection

SEPTEMBER 28, 2018

Please join us for our October 2018 Privacy and Cybersecurity Events. Data Privacy on Steroids. It is entitled “ Data Privacy on Steroids: Sweeping New Data Privacy/Security Regulation in the EU and California, and What it Means for American Business. ”. Understanding the FTC on Privacy and Security.

Privacy

Privacy Cybersecurity GDPR Data Privacy

Counting down, Getting Ready: GDPR in a Multi-Cloud World

Thales Cloud Protection & Licensing

JANUARY 5, 2018

( Originally posted to CenturyLink’s blog on November 10 ). To help save time and money, a growing number of enterprises are storing sensitive customer data in the public cloud. Recently, executives from CenturyLink, Thales eSecurity and Park Legal LLC participated in a webinar about “preparing for GDPR in a multi-cloud world”.

GDPR

GDPR Cloud Encryption Personal data

CNIL Publishes Statistical Review of Data Breaches Since Entry into Application of GDPR

Hunton Privacy

OCTOBER 29, 2018

Recently, the French Data Protection Authority (the “CNIL”) published a statistical review of personal data breaches during the first four months of the EU General Data Protection Regulation’s (“GDPR”) entry into application. This is due to a specific case, where a booking service provider was affected by a data breach.

Data breaches

Data breaches GDPR Personal data Risk

List of data breaches and cyber attacks in May 2018 – 17,273,571 records leaked

IT Governance

MAY 29, 2018

Remember when I said last month that “with the GDPR less than a month away I imagine future lists will be even longer thanks to the introduction of mandatory data breach notifications”? Well, May’s list of incidents is very long, and the GDPR only came into effect at the end of the month. Data breach. I’m not, though.

Data breaches

Data breaches GDPR Ransomware Passwords

UK: First-Tier Tribunal considers first fine imposed by the ICO under the GDPR and slashes the amount by two thirds

DLA Piper Privacy Matters

AUGUST 19, 2021

On 17 December 2019, the ICO issued the first administrative fine under the GDPR (known as a monetary penalty notice in the UK), alongside an Enforcement Notice, against Doorstep Disparensee Limited (“ DDL ”). Some of these contained personal data and special category (health) data.

GDPR

GDPR Personal data Compliance Risk

Weekly podcast: the GDPR is here

IT Governance

MAY 25, 2018

The General Data Protection Regulation is now in force. Hello and welcome to the IT Governance podcast for Friday, 25 May 2018, the day the EU’s General Data Protection Regulation (the GDPR) – the first major update to European data protection law in more than 20 years – applies across Europe and around the world.

GDPR

GDPR Compliance Personal data Government

VPNpro research: this Chinese-linked company secretly owns 10 VPNs with 86 million installs

Security Affairs

MAY 30, 2019

Innovative Connecting is actually a Chinese company that secretly owns 10 VPN products with a total of 86 million installs under its belt. The study also revealed that two of those VPN products are under its other developer name, Lemon Clove, and another two by Autumn Breeze 2018. Innovative Connecting VPNs products. Source: VPNpro.

Privacy

Privacy Cybersecurity GDPR Security

Data Security and Protection (DSP) Toolkit launched for health and social care

IT Governance

APRIL 3, 2018

For more than a decade, the Information Governance (IG) Toolkit has been the all too familiar – although not always welcome – annual obligation for healthcare organisations to demonstrate their accord compliance with the Department of Health (DoH) standards for data security. The GDPR comes into effect on 25 May 2018.

GDPR

GDPR Security Compliance Information governance

Weekly discussion podcast #10: Security in the Digital World

IT Governance

APRIL 9, 2018

This week’s extract is taken from Graham Day’s book Security in the Digital World. This must-have guide features simple explanations, examples and advice to help you become security-aware in a developing digital world. Q: Which brand/website was reported to suffer a data breech in this episode?

Security

Security Security awareness Information Security Government

Data Protection Authority of Baden-Württemberg Issues First German Fine Under the GDPR

HL Chronicle of Data Protection

NOVEMBER 23, 2018

In the first fine issued by a German data protection authority under the European General Data Protection Regulation (“GDPR”), on 21 November 2018 the authority of the German state of Baden-Württemberg (“LfDI”) imposed a fine of Euro 20,000 on a social media provider for a violation of its data security obligations under Art.

GDPR

GDPR Data breaches Passwords Personal data

Privacy and Cybersecurity October 2018 Events

HL Chronicle of Data Protection

SEPTEMBER 28, 2018

Please join us for our October 2018 Privacy and Cybersecurity Events. Data Privacy on Steroids. It is entitled “ Data Privacy on Steroids: Sweeping New Data Privacy/Security Regulation in the EU and California, and What it Means for American Business. ”. Understanding the FTC on Privacy and Security.

Privacy

Privacy Cybersecurity GDPR Data Privacy

Gartner Security & Risk Management Summit 2018 Trip Report

Thales Cloud Protection & Licensing

JUNE 19, 2018

Every June, Gartner hosts a terrific security conference near Washington, D.C. called Gartner Security & Risk Management Summit. This event is focused on the needs of senior IT and security professionals, such as CISOs, chief risk officers, architects, IAM and network security leaders. Back to basics.

Risk

Risk Security Digital transformation Blockchain

Privacy and Cybersecurity October 2018 Events

HL Chronicle of Data Protection

SEPTEMBER 28, 2018

Please join us for our October 2018 Privacy and Cybersecurity Events. Data Privacy on Steroids. It is entitled “ Data Privacy on Steroids: Sweeping New Data Privacy/Security Regulation in the EU and California, and What it Means for American Business. ”. Understanding the FTC on Privacy and Security.

Privacy

Privacy Cybersecurity GDPR Data Privacy

Introductory offer: Save 10% on the new DSP Toolkit Documentation Templates

IT Governance

JUNE 21, 2018

To mark the launch of the Data Security and Protection (DSP) Toolkit, we are offering 10% off our DSP Toolkit Documentation Templates when purchased before 30 June. . The DSP Toolkit has superseded the Information Governance (IG) Toolkit as the standard for cyber and data security for healthcare organisations.

Compliance

Compliance GDPR Information governance Access

More than half of consumers would consider legal action if their data was compromised during a breach

Thales Cloud Protection & Licensing

NOVEMBER 26, 2018

Six months on from the legal implementation of the General Data Protection Regulation (GDPR), a third of consumers have admitted they still aren’t confident that the companies they interact with comply with the regulation. A quarter (25%) of people in both regions revealed that they could not explain the GDPR in any way.

GDPR

GDPR Data breaches Retail Manufacturing

UK ICO proposes a $123 million fine for Marriott 2014 data breach

Security Affairs

JULY 9, 2019

The UK’s data privacy regulator plans to fine giant hotel chain Marriott International with a £99 million ($123 million) under GDPR over 2014 data breach. ’s Information Commissioner’s Office, Marriott International was not compliant to the European Union’s data protection regulation GDPR.

Data breaches

Data breaches GDPR e-Discovery Data Privacy

Weekly podcast: 2018 end-of-year roundup

IT Governance

DECEMBER 13, 2018

This week, in our last podcast of the year, we revisit some of the biggest information security stories from the past 12 months. Hello and welcome to the final IT Governance podcast of 2018. The year started with the revelation of Spectre and Meltdown – major security flaws affecting processors manufactured by Intel, ARM and AMD.

Data breaches

Data breaches Personal data Access GDPR

Hogan Lovells Updates Practical GDPR Guide

HL Chronicle of Data Protection

JUNE 26, 2018

With the coming into effect of the GDPR on 25 May 2018, the modernisation of European privacy laws has reached a critical milestone. At stake are not only the consequences of non-compliance, but also the ability to take advantage of new technologies, data analytics and the immense value of personal information.

GDPR

GDPR Privacy Analytics Compliance

CNIL Adopts Its First Sanction as Lead Supervisory Authority, Fining French Online Shoe Retailer

Hunton Privacy

AUGUST 11, 2020

On August 5, 2020, the French Data Protection Authority (the “CNIL”) announced that it has levied a fine of €250,000 on French online shoe retailer, Spartoo, for various infringements of the EU General Data Protection Regulation (“GDPR”).

Retail

Retail GDPR IT Personal data

Weekly podcast: ICO GDPR campaign, Gwent Police, Binance and MediaGet

IT Governance

MARCH 16, 2018

This week, we discuss the ICO’s new GDPR campaign for micro businesses, a potential data breach at Gwent Police, a US$250,000 reward from Binance and Windows Defender stops a massive malware campaign. Hello and welcome to the IT Governance podcast for Friday, 16 March 2018. Here are this week’s stories.

GDPR

GDPR Compliance Data breaches Phishing

GDPR Italian Implementing Decree Has Been Published

HL Chronicle of Data Protection

SEPTEMBER 14, 2018

101 of 10 August 2018 (the “Decree”) for the national implementation of General Data Protection Regulation (EU) 2016/679 (the “GDPR”) has been published in the Official Journal. The Decree will enter into force on 19 September 2018. On 4 September, the Legislative Decree no.

GDPR

GDPR Personal data Privacy Communications

UK ICO Publishes First Two Reports from its Data Protection Sandbox Pilot

Hunton Privacy

JULY 28, 2020

On July 23, 2020, the UK Information Commissioner’s Office (the “ICO”) published the first two reports of its Data Protection Regulatory Sandbox Beta phase (the “Beta phase”) involving projects by Jisc (a not-for-profit organization serving the higher and further education and skills sectors) and Heathrow Airport Ltd.

IT

IT GDPR Personal data Compliance

List of data breaches and cyber attacks in June 2019 – 39.7 million records leaked

IT Governance

JUNE 27, 2019

After a rampant start to the year for data breaches and cyber attacks, it’s about time we went one month without at least one massive security incident. June 2019’s total of 39,713,046 breached records is the lowest since May last year – the month that the GDPR (General Data Protection Regulation) came into effect.

Data breaches

Data breaches Personal data Ransomware GDPR

UK businesses are reporting fewer data breaches, but is this as positive as it sounds?

IT Governance

MAY 2, 2019

A third of businesses and a fifth of charities were hit by a cyber attack or data breach in the past year, the UK government’s Cyber Security Breaches Survey 2019 has found. The report says this may be because businesses and charities are going to greater lengths to become cyber secure. The effects of the GDPR.

Data breaches

Data breaches GDPR IT Compliance

AUSTRALIA: Assistance and Access Act, December 2018 – Holy grail of uncertainty created by new rushed-in data encryption laws

DLA Piper Privacy Matters

JANUARY 15, 2019

On 6 December 2018, the Australian Telecommunications and Other Legislation Amendment (Assistance and Access) Bill 2018 (Cth) (the Act ) was rushed through both houses of Federal Parliament without amendment and received royal assent on 8 December 2018.

Encryption

Encryption Access Computer and Electronics GDPR

Sales intel firm Apollo data breach exposed more than 200 million contact records

Security Affairs

OCTOBER 5, 2018

The sales intelligence firm Apollo is the last victim of a massive data breach that exposed more than 200 million contact records. Apollo collects a lot of its information from public sources, including names, email addresses, and company contact information, it also gathers data by scraping Twitter and LinkedIn.

Data breaches

Data breaches Sales GDPR Passwords

327 million Marriott guests affected in Starwood Data Breach

Security Affairs

NOVEMBER 30, 2018

Starwood Data Breach – Hackers accessed the guest reservation system of the Marriot owned Starwood since 2014 and copied and encrypted the information. ” reads the data breach notification published by Marriot. ” This is one of the largest data breaches in history, the biggest one for the hospitality industry. .

Data breaches

Data breaches Encryption Access GDPR

WhatsApp fined €225M over GDPR issues

How to Comply with GDPR, PIPL, and CCPA

Trending Sources

GDPR Training in Belfast – save 10%

Privacy and Cybersecurity Top 10 for 2018

Guest Post -- GDPR Compliance starts with Data Discovery

UK ICO fines hotel chain giant Marriott over data breach

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing

Where to start with GDPR compliance

Essential guidance on achieving and prioritising GDPR compliance

Germany: First court decision on GDPR

Spanish Senate signs-off new GDPR-compliant Data Protection Act

GDPR After the Deadline — Part 2 of 3 — Where are organizations in their GDPR journey and how much did they spend to get there?

GDPR After the Deadline — Part 2 of 3 — Where are organizations in their GDPR journey and how much did they spend to get there?

DCMS Consults on National Data Strategy

The GDPR: A guide for small businesses

Government survey reveals GDPR awareness is falling short

Key steps to GDPR compliance – Part 3

Privacy and Cybersecurity October 2018 Events

Counting down, Getting Ready: GDPR in a Multi-Cloud World

CNIL Publishes Statistical Review of Data Breaches Since Entry into Application of GDPR

List of data breaches and cyber attacks in May 2018 – 17,273,571 records leaked

UK: First-Tier Tribunal considers first fine imposed by the ICO under the GDPR and slashes the amount by two thirds

Weekly podcast: the GDPR is here

VPNpro research: this Chinese-linked company secretly owns 10 VPNs with 86 million installs

Data Security and Protection (DSP) Toolkit launched for health and social care

Weekly discussion podcast #10: Security in the Digital World

Data Protection Authority of Baden-Württemberg Issues First German Fine Under the GDPR

Privacy and Cybersecurity October 2018 Events

Gartner Security & Risk Management Summit 2018 Trip Report

Privacy and Cybersecurity October 2018 Events

Introductory offer: Save 10% on the new DSP Toolkit Documentation Templates

More than half of consumers would consider legal action if their data was compromised during a breach

UK ICO proposes a $123 million fine for Marriott 2014 data breach

Weekly podcast: 2018 end-of-year roundup

Hogan Lovells Updates Practical GDPR Guide

CNIL Adopts Its First Sanction as Lead Supervisory Authority, Fining French Online Shoe Retailer

Weekly podcast: ICO GDPR campaign, Gwent Police, Binance and MediaGet

GDPR Italian Implementing Decree Has Been Published

UK ICO Publishes First Two Reports from its Data Protection Sandbox Pilot

List of data breaches and cyber attacks in June 2019 ­– 39.7 million records leaked

UK businesses are reporting fewer data breaches, but is this as positive as it sounds?

AUSTRALIA: Assistance and Access Act, December 2018 – Holy grail of uncertainty created by new rushed-in data encryption laws

Sales intel firm Apollo data breach exposed more than 200 million contact records

327 million Marriott guests affected in Starwood Data Breach

Stay Connected

List of data breaches and cyber attacks in June 2019 – 39.7 million records leaked