Data Protection Report

NOVEMBER 13, 2020

The new SCCs aim to modernise the clauses in line with the GDPR and to cover a multitude of different types of transfers to cater for “ the complexity of modern processing chains ”. On 11 November, the European Data Protection Board ( EDPB ) published its much anticipated guidance on the Schrems II judgment.

Personal data 98

Personal data GDPR Encryption Government 98

IT Governance

DECEMBER 21, 2023

To find out, we looked at the ICO’s (Information Commissioner’s Office) public data set , specifically looking into four data breach types caused by human error: Data emailed to incorrect recipient. Data posted or faxed to incorrect recipient. At the time of writing, the data set starts in Q2 2019 and goes up to Q2 2023.

Data breaches 52

Data breaches Personal data Government GDPR 52

Data Protection Report

OCTOBER 9, 2020

On September 11, 2020, the German Datenschutzkonferenz (DSK), the joint body of the German data protection authorities, published its position on the use of thermal cameras and electronic temperature checks in the context of the COVID-19 pandemic. 25 GDPR and security of data processing in to Art.

GDPR 110

GDPR Manufacturing Personal data Privacy 110

Hunton Privacy

AUGUST 12, 2021

On August 11, 2021, the UK Information Commissioner’s Office (“ICO”) launched a consultation on its draft international data transfer agreement (“IDTA”) and guidance for organizations on international transfers (the “Guidance”). Once finalized, the IDTA will replace the existing EU Standard Contractual Clauses (“SCCs”) in the UK.

GDPR 78

GDPR Personal data Risk Access 78

Security Affairs

FEBRUARY 17, 2020

Experts from the security firm WebARX have discovered a serious flaw in the WordPress theme plugin ThemeGrill Demo Importer with over 200,000 active installs. Once the attackers have exploited the vulnerability, the database will be populated with default settings and data. 11-02-2020 – Second attempt to reach out to the developer.

GDPR 122

GDPR Authentication Access Security 122

Security Affairs

MAY 17, 2020

Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 264 appeared first on Security Affairs. A new round of the weekly SecurityAffairs newsletter arrived! Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Security 53

Security Mining Ransomware Military 53

Thales Cloud Protection & Licensing

NOVEMBER 16, 2020

Healthcare Organizations Need to Adapt Their Data Protection Policies to the New Threat Environment. Tue, 11/17/2020 - 06:44. For example, data sprawl has significantly increased due to all of the new patient data that has been created during the pandemic. Sensitive medical data is not protected.

Digital transformation 62

Digital transformation Encryption Cloud Data breaches 62

Data Matters

OCTOBER 22, 2020

Securities and Exchange Commission (SEC) indicate that the SEC is again considering registration of advisers located in the UK. The SEC expressed comfort that the GDPR contains broad enough exceptions to allow the SEC to access UK-based registered investment advisers’ books and records. 11, 2020) (ICO Letter).

GDPR 68

GDPR Personal data Privacy Communications 68

Data Matters

JANUARY 22, 2020

Moreover, the California Attorney General will finalize regulations during 2020 that are likely to expand compliance obligations and narrow flexibility. What should companies be doing to prepare for CCPA enforcement beginning on July 1, 2020? How can “reasonable security” be documented? EST / 10:00-11:30 a.m.

Privacy 79

Privacy Data breaches GDPR Cybersecurity 79

Data Protection Report

JANUARY 13, 2020

access, deletion, or opt-out) and a few companies seem to use the same tool, third party, and/or infrastructure for GDPR requests. There are a few outliers; however, with some companies requesting notarized signatures, social security numbers, VIN numbers, and others refusing to accept requests unless the user has an account with the company.

Privacy 49

Privacy B2B Sales Compliance 49

Thales Cloud Protection & Licensing

NOVEMBER 22, 2021

Tue, 11/23/2021 - 06:13. Consumers have come to expect a hyper-personalized experience that is fast, convenient and secure. trillion in 2020.”. Banks have adopted technologies to enable: Secure, remote, multi-device banking transactions. Secure digital payments leveraging biometrics, tokens, and context-based security.

Digital transformation 71

Digital transformation Financial Services Customer Experience Risk 71

Data Protection Report

JUNE 7, 2021

On Friday 4 June, the European Commission published the finalised version of the new Standard Contractual Clauses for transferring personal data from the EU to third countries (the New SCCs). Companies now have 18 months to update their supplier contracts and other data export arrangements. Module 1, clause 8.5(e) Module 1, clauses 8.5;

Personal data 119

Personal data GDPR Data breaches Access 119

ARMA International

DECEMBER 26, 2019

For 2019, 34% of RIM professionals reported they had restructured their programs, with an additional 31% planning to do so into 2020. Other responses include a center of excellence or dedicated program team (16%) and “multiple, coordinated cross-role committees” (11%). Governance structures for RIM programs remain in flux.

Content services 76

Content services Cloud Records Management Privacy 76

Data Matters

APRIL 20, 2020

Case: WM Morrison Supermarkets plc v Various Claimants [2020] UKSC 12. The fact that the employer had given the employee access to the payroll data, as an internal IT auditor, was not sufficient in itself to impose vicarious liability on the employer under the Data Protection Act 1998 (DPA) (now repealed).

Data breaches 68

Data breaches GDPR Privacy IT 68

Data Protection Report

FEBRUARY 27, 2019

With significant enforcement activity and new laws being enacted or proposed since the start of the year, regulators in the EU and the US, several US states, and the US Congress are showing they mean business in terms of data privacy. EU and US regulators continue to increase the stakes for data privacy enforcement.

Data Privacy 40

Data Privacy GDPR Privacy Risk 40

eDiscovery Daily

FEBRUARY 4, 2020

There are several interesting sessions today related to eDiscovery, Information Governance, Cybersecurity and Data Privacy. 11:00am – 12:00pm: Mobile Data: Issues in Data Privacy and Data Protection. Have we lost the battles over data privacy and data protection with our data exposed for all to see?

e-Discovery 59

e-Discovery Data Privacy Blockchain Privacy 59

HL Chronicle of Data Protection

APRIL 14, 2020

In the wake of the COVID-19 epidemic, there is an unfortunate increase in the cyber-security risks businesses may face. Following the launch of our Data Class Actions Guide , we will be hosting a series of three webinars to dive into key updates in this fast-changing area of litigation. Date: Tuesday, April 28, 2020.

Risk 59

Risk Security GDPR Compliance 59

Hunton Privacy

NOVEMBER 22, 2019

On November 13, 2019, the European Data Protection Board (“EDPB”) published its draft guidelines 4/2019 (the “Guidelines”) on the obligation of Data Protection by Design and by Default (“DPbDD”) set out under Article 25 of the EU General Data Protection Regulation (“GDPR”). Data protection by design.

Personal data 50

Personal data GDPR Compliance Risk 50

DLA Piper Privacy Matters

JUNE 23, 2021

On 21 June 2021, the European Data Protection Board (“ EDPB ”) published the final Recommendations 01/2020 on measures that supplement transfer tools to ensure compliance with the EU level of protection of personal data (“ Recommendations ”). Key takeaways.

GDPR 99

GDPR Personal data Compliance Risk 99

eDiscovery Daily

FEBRUARY 5, 2020

There are several interesting sessions today related to eDiscovery, Information Governance, Cybersecurity and Data Privacy. The 2019-2020 Cases That Every Practitioner Should Know. Join us for ALM’s open-to-all legendary Judicial Keynote Session as the panel discusses the cases that made (or missed) the ALM headlines in 2019-2020.

Information governance 46

Information governance Privacy Cloud Government 46

eDiscovery Daily

FEBRUARY 3, 2020

There are several interesting sessions today related to eDiscovery, Information Governance, Cybersecurity and Data Privacy. I’ve opened them all up, so you don’t have to. : o ) Sessions in the main conference tracks include: 11:30am – 12:30pm: Getting Into the BlockTech Game. Key takeaways: Key updates on GDPR & CCPA.

Education 53

Education Data Privacy GDPR Compliance 53

Thales Cloud Protection & Licensing

NOVEMBER 28, 2022

Tue, 11/29/2022 - 06:08. The European Union enacted the Network and Information System (NIS) regulation in July 2016 with the intention of ensuring a specific level of security for networks and information systems belonging to critical and sensitive infrastructures in EU member states. Strengthened security requirements.

IT 71

IT Encryption Compliance Cybersecurity 71

DLA Piper Privacy Matters

APRIL 1, 2020

Today the Supreme Court allowed an appeal in Morrisons v Various Claimants1, a significant judgment addressing the extent of an employers’ liability for data breaches maliciously committed by an employee. The Data Protection Act 1998 does not exclude the imposition of vicarious liability for statutory or common law wrongs. Background.

Data breaches 59

Data breaches GDPR Personal data Information governance 59

DLA Piper Privacy Matters

MAY 16, 2018

Despite a lack of agreement between the Senate and the National Assembly, France has finally passed its new data protection law , 11 days prior to the entry into application of the EU General Data Protection Regulation (GDPR) on May 25. Processing of the social security number. Processing of criminal records.

GDPR 40

GDPR Personal data Compliance Data Privacy 40

Data Matters

JULY 24, 2020

Below is a summary of the key take-aways from the EDPB’s FAQs, which is intended to address a range of topics including the lack of a grace period following the decision and the conditions surrounding the use of certain data transfer mechanisms: 1. public authorities to access personal data transferred from the EU to the U.S.

Personal data 97

Personal data GDPR Privacy Access 97

Hunton Privacy

JULY 16, 2020

On July 16, 2020, the Court of Justice of the European Union (the “CJEU”) issued its landmark judgment in the Schrems II case ( case C-311/18 ). Specifically, Schrems alleged that the SCCs do not ensure an adequate level of protection for EU data subjects, as U.S. in the U.S.

Privacy 108

Privacy Personal data GDPR Access 108

IT Governance

DECEMBER 27, 2019

A royal baby, a fire at Notre-Dame, the highest grossing film of all time and more than 12 billion breached data records: 2019 has been quite a year. IT Governance is closing out the year by rounding up 2019’s biggest information security stories. Part one covers January to June, and will be followed by part in the coming days.

Data breaches 69

Data breaches GDPR Passwords Personal data 69

eDiscovery Daily

NOVEMBER 21, 2019

2019 was another busy year from an eDiscovery, cybersecurity and data privacy standpoint. On Wednesday, December 11 at noon CST (1:00pm EST, 10:00am PST), CloudNine will conduct the webcast 2019 eDiscovery Year in Review. Key topics include: How Much Data is Being Transmitted Every Minute on the Internet in 2019.

e-Discovery 53

e-Discovery Data Privacy Privacy Cybersecurity 53

Privacy and Cybersecurity Law

JUNE 23, 2021

The newly adopted Regulation on notification of security incidents. On June 11, 2021, the Regulation on notifications of incidents affecting networks, information systems and IT services (“ Regulation ”) – adopted by means of the Decree of the President of the Council of Ministers (DPCM) of 14 April 2021, no.

Cybersecurity 52

Cybersecurity Communications Data breaches Security 52

Data Protection Report

AUGUST 29, 2019

Given that January 1, 2020 is almost upon us and July 2020 follows close behind, there simply will not be enough time once the amendments are passed and the guidance provided, to implement CCPA if you do not start now (or ideally, have started already). Where is that data located? See our previous posts, linked below.).

Privacy 40

Privacy Compliance Risk GDPR 40

DLA Piper Privacy Matters

MARCH 4, 2021

In its second full year overseeing and regulating the GDPR in Ireland, the Data Protection Commission ( DPC ) has published its 2020 Annual Report , highlighting key observations, emerging guidance, and large scale inquiries and decisions of 2020. 90% of the recorded breach cases were concluded in 2020.

GDPR 105

GDPR Compliance Data breaches Marketing 105

DLA Piper Privacy Matters

JULY 1, 2019

If this happens, many organisations will be left without any practical solution to legitimise the international transfer of personal data outside the EEA and exposure to the threat of GDPR revenue based fines, regulatory sanctions including injunctions and third party claims for compensation. Why are SCCs and Privacy Shield important?

Privacy 94

Privacy Personal data GDPR Risk 94

Data Protection Report

JULY 16, 2019

The private right of action for data breaches, however, will continue to apply to employee data. This employee exception now has a sunset provision and will expire on January 1, 2021, committing the stakeholders to discuss more comprehensive employee privacy legislation in 2020. Customer Loyalty Program” Bill Amended.

Privacy 40

Privacy B2B Data breaches Data collection 40

eSecurity Planet

JANUARY 30, 2024

Cloud storage security issues refer to the operational and functional challenges that organizations and consumers encounter when storing data in the cloud. Cloud storage risks involve potential external threats and vulnerabilities that jeopardize the security of stored data.

Cloud 127

Cloud Risk Security Encryption 127

Data Protection Report

FEBRUARY 6, 2024

The Court of Justice of the European Union ( CJEU )’s Schrems II decision [1] clarified strict rules for personal data transfers outside of the European Union. The French data protection authority ( CNIL ) has recently followed up with its own step-by-step guidance on TIAs. [3] When is a TIA required?

GDPR 75

GDPR Personal data Compliance IT 75

eDiscovery Daily

OCTOBER 20, 2019

Here are some of the eDiscovery-related sessions for today: 11:00 AM – 12:00 PM: The Business of Law 2020: The FTI-Relativity General Counsel Survey. What does the future hold for law and business in 2020 and beyond? e-Discovery Data Management: Governance and Process Optimization. Six Flags Entm’t.

e-Discovery 40

e-Discovery Data Privacy Education Privacy 40

DLA Piper Privacy Matters

JUNE 4, 2020

Dubai’s International Financial Centre, the world class financial hub and free zone established in 2004, has an updated data protection law ( “Updated Law” ). The Updated Law is a much anticipated step in the evolution of the data protection landscape in the Gulf Co-operation Council ( “GCC” ) landscape. What are the key changes?

Personal data 52

Personal data GDPR Compliance Privacy 52