Data, GDPR and Security - Information Management Today

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. Any company operating in the EU or handling EU residents’ data must adhere to GDPR requirements. However, GDPR compliance is not necessarily a straightforward matter.

GDPR

GDPR Compliance Personal data Privacy

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Yet many organizations still struggle to meet compliance requirements, and EU data protection authorities do not hesitate to hand out penalties. Irish regulators hit Meta with a EUR 1.2

GDPR

GDPR Compliance Personal data Privacy

IRELAND: First GDPR fine issued in Ireland

DLA Piper Privacy Matters

MAY 19, 2020

Tusla, Ireland’s child and family agency, has become the first organisation fined under the GDPR in Ireland. The Irish Data Protection Commission filed papers in the Circuit Court on Friday to confirm the €75,000 fine against the Agency. Eilis McDonald & John Magee. It is reported the fine will not be challenged by Tusla.

GDPR

GDPR Personal data Government Paper

Guest Post - Three Critical Steps for GDPR Compliance

AIIM

JANUARY 17, 2018

This is the eighth post in a series on privacy by Andrew Pery. You might also be interested in: Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law.

GDPR

GDPR Compliance Data collection Privacy

ISO 27001 and Physical Security

IT Governance

MAY 15, 2024

Physical access control, physical security monitoring, CCTV, and more When we hear the term ‘information security’ – or, for that matter, ‘ISO 27001’ – our thoughts usually turn straight to cyber security. However, physical security is also an important aspect of information and data security.

Security

Security Information Security Access Cloud

Why risk assessments are essential for GDPR compliance

IT Governance

OCTOBER 15, 2019

Any organisation that’s required to comply with the GDPR (General Data Protection Regulation) must conduct regular risk assessments. However, the GDPR is clear that data is also vulnerable to accidental or unlawful destruction, loss or disclosure. The GDPR risk assessment methodology. Get started with vsRisk.

GDPR

GDPR Risk Compliance Personal data

GDPR Italian Implementing Decree Has Been Published

HL Chronicle of Data Protection

SEPTEMBER 14, 2018

101 of 10 August 2018 (the “Decree”) for the national implementation of General Data Protection Regulation (EU) 2016/679 (the “GDPR”) has been published in the Official Journal. The provisions of the Privacy Code adopted to implement the e-Privacy Directive will of course remain in force.

GDPR

GDPR Personal data Privacy Communications

Australia Privacy Act review – a blueprint for change?

DLA Piper Privacy Matters

FEBRUARY 20, 2023

Authors: Sarah Birkett , Nicholas Boyle The Australian Attorney-General has published the (long-awaited) results of the Privacy Act review. The report recommends a number of changes to the Australian privacy framework, including various changes to Australia’s core privacy legislation, the Privacy Act 1988 (Cth).

Privacy

Privacy Data breaches Marketing Government

Why every organisation needs data protection impact assessments

IT Governance

NOVEMBER 23, 2018

DPIAs (data protection impact assessments) are a type of risk assessment that identify the risks affecting the security of personal data, and work out their likely effects. It’s particularly important to carry one out when introducing new processes, systems or technologies for processing personal data.

GDPR

GDPR Personal data Risk Marketing

Article 29 Working Party Published Guidelines on Transparency under the GDPR

Hunton Privacy

DECEMBER 20, 2017

The Guidelines aim to provide practical guidance and clarification on the transparency obligations introduced by the EU General Data Protection Regulation (“GDPR”). The transparency obligations require controllers to provide certain information to data subjects regarding the processing of their personal data.

GDPR

GDPR Personal data Privacy Communications

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

What follows below is an edited version of the debate in the House of Lords of the Second Reading of the Data Protection Bill, held on 10 October. Data is not just a resource for better marketing, better service and delivery. Data is used to build products themselves. It has become a cliché that data is the new oil.

GDPR

GDPR Personal data Government IT

UK ICO Publishes First Two Reports from its Data Protection Sandbox Pilot

Hunton Privacy

JULY 28, 2020

On July 23, 2020, the UK Information Commissioner’s Office (the “ICO”) published the first two reports of its Data Protection Regulatory Sandbox Beta phase (the “Beta phase”) involving projects by Jisc (a not-for-profit organization serving the higher and further education and skills sectors) and Heathrow Airport Ltd.

IT

IT GDPR Personal data Compliance

Appointing a data protection officer: A quick guide for schools and multi-academy trusts

IT Governance

MARCH 28, 2018

Whatever the size and setting of your school, the General Data Protection Regulation (GDPR) places high expectations on protecting the personal data of your data subjects, especially children. They are the point of contact for data subjects and the Information Commissioner’s Office. What is a DPO?

GDPR

GDPR Personal data Compliance Data breaches

California’s GDPR? Sweeping California Privacy Ballot Initiative Could Bring Sea Change to U.S. Privacy Regulation and Enforcement

Data Matters

JUNE 26, 2018

On June 25, 2018, California Secretary of State Alex Padilla announced that a potentially significant privacy initiative is eligible for the Nov. If passed, the ballot initiative — the California Consumer Privacy Act (CCPA) — would immediately make sweeping changes to California’s privacy laws. biometric data.

Privacy

Privacy GDPR Sales Data breaches

UK: Data Protection Bill – Impact on employee data

DLA Piper Privacy Matters

OCTOBER 19, 2017

On 14 September the UK Government published the draft Data Protection Bill, to replace the Data Protection Act 1998 (DPA) and supplement the forthcoming General Data Protection Regulation (GDPR) in certain key areas. In this article we highlight the specific impact of the Bill on how employers process workforce data.

GDPR

GDPR Compliance Personal data Government

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

The wait is finally over—this Friday the European Union General Data Protection Regulation (GDPR) will come into force. However, the challenges of GDPR certainly don’t end on the date this law goes into implementation. Many of our clients ask us when and how they may be called upon to demonstrate compliance with the GDPR.

GDPR

GDPR Personal data Compliance Data breaches

BELGIUM: Belgian DPA reveals its strategy for the next 5 years.

DLA Piper Privacy Matters

FEBRUARY 11, 2020

The Belgian Data Protection Authority published its strategic plan setting out its policy priorities and strategic objectives for the next five years. It will focus its attention on specific industry sectors as well as on specific GDPR topics and societal themes. Data minimisation and purpose limitation are mentioned specifically.

IT

IT GDPR Compliance Personal data

7 key stages of the data protection impact assessment (DPIA)

IT Governance

SEPTEMBER 4, 2019

Under the GDPR, DPIAs (data protection impact assessments) are mandatory for data processing that is “likely to result in a high risk to the rights and freedoms of data subjects” Effectively a type of risk assessment, DPIAs assess how these high-risk processing activities could impact data subjects.

Personal data

Personal data GDPR Risk Access

Belgian Privacy Commission Issues Recommendation on Data Protection Impact Assessment

Hunton Privacy

APRIL 20, 2018

The Belgian Privacy Commission (the “Belgian DPA”) recently released a Recommendation (in French and Dutch ) on Data Protection Impact Assessment (“DPIA”) and the prior consultation requirements under Articles 35 and 36 of the EU General Data Protection Regulation (“GDPR”) (the “Recommendation”). When is a DPIA required?

Privacy

Privacy Personal data GDPR Risk

One Year and Counting – a GDPR Checklist

Managing Your Information

MAY 25, 2017

With just one year to go until the GDPR applies, now is the time for action. With one year to go, it must be time for a GDPR checklist! It is essential to make a start on preparations for compliance with the GDPR as there is lots to do. Identify the personal data that you hold. Initial Preparations.

GDPR

GDPR Personal data Compliance Data breaches

California passes major legislation, expanding consumer privacy rights and legal exposure for US and global companies

Data Protection Report

JUNE 29, 2018

On June 28, 2018, California lawmakers enacted the California Consumer Privacy Act of 2018 (the “CCPA”) a sweeping, GDPR-like privacy law which is intended to give California consumers more control over how businesses collect and use their data. Consumer access and data portability rights. Disclosure requirements.

Privacy

Privacy GDPR Personal data Risk

California Passes Major Legislation, Expanding Consumer Privacy Rights and Legal Exposure for US and Global Companies

Data Protection Report

JUNE 29, 2018

On June 28, 2018, California lawmakers enacted the California Consumer Privacy Act of 2018 (the “CCPA”) a sweeping, GDPR-like privacy law which is intended to give California consumers more control over how businesses collect and use their data. Consumer Access and Data Portability Rights. Disclosure Requirements.

Privacy

Privacy GDPR Personal data Risk

One Year and Counting – a GDPR Checklist

Managing Your Information

MAY 25, 2017

With just one year to go until the GDPR applies, now is the time for action. With one year to go, it must be time for a GDPR checklist! It is essential to make a start on preparations for compliance with the GDPR as there is lots to do. Identify the personal data that you hold. Initial Preparations.

GDPR

GDPR Personal data Compliance Data breaches

The heat is on, is your school #BreachReady?

IT Governance

AUGUST 6, 2018

In our first blog ( sign up to the series here ) , we explore data breaches. Across all sectors and organisation sizes, simple mistakes such as emailing and posting or faxing information to the wrong people top the Information Commissioner’s Office’s (ICO’s) quarterly statistics in data security incidents.

Data breaches

Data breaches Education GDPR Risk

Privacy as a “Fundamental Right” Clouds Smart Regulation

Data Matters

JULY 16, 2018

*Originally Published July 12, 2018 by Chambers and Partners Data Protection & Cyber Security 2018. There is a lot going on with privacy around the world. There ought to be a greater effort among policymakers to correlate what companies are required to do to protect privacy with actual, identified harms or abuses.

Privacy

Privacy Cloud Artificial Intelligence Data Privacy

European Commission publishes long-awaited draft Regulation on Artificial Intelligence

DLA Piper Privacy Matters

APRIL 26, 2021

There are parallels here with the extra-territorial effect of the GDPR. High-risk AI systems are defined by a classification model that focuses on the risk associated with the product itself: A first category covers AI systems intended to be used as a safety component of products (or which are themselves a product).

Artificial Intelligence

Artificial Intelligence Risk Marketing GDPR

How to Achieve Compliance with India’s Personal Data Protection Bill

Thales Cloud Protection & Licensing

JANUARY 16, 2020

Objectives of the Personal Data Protection Bill. Many privacy professionals consider the European Union’s General Data Protection Regulation (GDPR), which took effect in May 2018, as the cornerstone of privacy regulation. GDPR is harmonizing data protection and privacy requirements across the EU.

Personal data

Personal data Compliance Data breaches GDPR

Information Management Today

GDPR compliance checklist

How to implement the General Data Protection Regulation (GDPR)

Trending Sources

IRELAND: First GDPR fine issued in Ireland

Guest Post - Three Critical Steps for GDPR Compliance

ISO 27001 and Physical Security

Why risk assessments are essential for GDPR compliance

GDPR Italian Implementing Decree Has Been Published

Australia Privacy Act review – a blueprint for change?

Why every organisation needs data protection impact assessments

Article 29 Working Party Published Guidelines on Transparency under the GDPR

The debate on the Data Protection Bill in the House of Lords

UK ICO Publishes First Two Reports from its Data Protection Sandbox Pilot

Appointing a data protection officer: A quick guide for schools and multi-academy trusts

California’s GDPR? Sweeping California Privacy Ballot Initiative Could Bring Sea Change to U.S. Privacy Regulation and Enforcement

UK: Data Protection Bill – Impact on employee data

GDPR is upon us: are you ready for what comes next?

BELGIUM: Belgian DPA reveals its strategy for the next 5 years.

7 key stages of the data protection impact assessment (DPIA)

Belgian Privacy Commission Issues Recommendation on Data Protection Impact Assessment

One Year and Counting – a GDPR Checklist

California passes major legislation, expanding consumer privacy rights and legal exposure for US and global companies

California Passes Major Legislation, Expanding Consumer Privacy Rights and Legal Exposure for US and Global Companies

One Year and Counting – a GDPR Checklist

The heat is on, is your school #BreachReady?

Privacy as a “Fundamental Right” Clouds Smart Regulation

European Commission publishes long-awaited draft Regulation on Artificial Intelligence

How to Achieve Compliance with India’s Personal Data Protection Bill

Stay Connected