Hunton Privacy

JANUARY 26, 2022

On November 14, 2021, the Cyberspace Administration of China (“CAC”) released for public comment its draft Regulations on Network Data Security Management (the “Draft Regulations”). In addition, the Draft Regulations add new requirements related to data processing activities. Data Handler and Entrusted Party.

Security 116

Security Data breaches Personal data Cybersecurity 116

eSecurity Planet

MAY 24, 2024

Cloud security fundamentals are the core requirements that ensure data protection, regulatory compliance, and access management in a cloud environment. Understanding cloud security challenges and knowing the cloud security tools available in the market significantly contribute to enhanced cloud security.

Cloud 119

Cloud Security Compliance Encryption 119

eSecurity Planet

FEBRUARY 14, 2023

I remember the first time we were asked for a SOC 2 report, which quickly became the minimum bar requirement in our industry for proof of an effective security program,” he said. The vision was to automate security and compliance across 14 frameworks, including SOC 2, ISO 27001, HIPAA and GDPR. Growth has definitely been robust.

Compliance 121

Compliance Security Cybersecurity Marketing 121

eSecurity Planet

SEPTEMBER 23, 2022

Securities and Exchange Commission (SEC) strongly advised public companies to improve their cybersecurity. However, after minimal corporate adoption of stronger cybersecurity, the SEC has drafted rules to require more formal cybersecurity reporting and disclosure. Proposed SEC Security Changes. For years, the U.S.

Cybersecurity 132

Cybersecurity Compliance Risk Communications 132

IT Governance

OCTOBER 21, 2021

The need for experienced and qualified cyber security professionals is a highlight of Cybersecurity Career Awareness Week , led by NICE (National Initiative for Cybersecurity Education). The most common skills gaps are “storing or transferring personal data, setting up configured firewalls, and detecting and removing malware”.

Security 111

Security Information Security GDPR Data Privacy 111

eSecurity Planet

JANUARY 5, 2023

After a year that saw massive ransomware attacks and open cyber warfare, the biggest question in cybersecurity for 2023 will likely be how much of those attack techniques get commoditized and weaponized. 2023, he predicted, “will not be any easier when it comes to keeping users’ data safe and private.” Trade Cyberthreats.

Security 145

Security Ransomware Cybersecurity Privacy 145

Rocket Software

OCTOBER 28, 2021

The White House has proclaimed October Cybersecurity Awareness Month, promoting efforts by the Cybersecurity and Infrastructure Security Agency (CISA) to encourage the public to be “Cyber Smart” and stay safe online. To constitute MFA, users should be asked to provide a combination of these categories. . In the U.S.,

Authentication 84

Authentication Cybersecurity Passwords Access 84

eSecurity Planet

JANUARY 11, 2022

Information security products , services, and professionals have never been in higher demand, making for a world of opportunities for cybersecurity startups. Investors recognize the potential too, as funding for cybersecurity ventures more than doubled from previous years to almost $22 billion in 2021. Abnormal Security.

Cybersecurity 142

Cybersecurity Cloud Compliance Analytics 142

eSecurity Planet

JANUARY 30, 2024

Cloud storage security issues refer to the operational and functional challenges that organizations and consumers encounter when storing data in the cloud. Cloud storage risks involve potential external threats and vulnerabilities that jeopardize the security of stored data.

Cloud 127

Cloud Risk Security Encryption 127

Hunton Privacy

OCTOBER 25, 2022

million fine to Interserve Group Limited for failing to keep employee personal data secure, which violates Article 5(1)(f) and Article 32 of the EU General Data Protection Regulation (“GDPR”), during the period of March 2019 to December 2020.

Security 97

Security Personal data GDPR Insurance 97

Security Affairs

JULY 3, 2023

What are the causes of Data Loss and which are their impact on your organization? In today’s digital age, data has become the lifeblood of organizations, driving critical decision-making, improving operational efficiency, and allowing for smoother innovation. Simply put, businesses heavily rely on data.

Unstructured data 92

Unstructured data Metadata Encryption Data structuring 92

eSecurity Planet

JANUARY 28, 2021

Cybersecurity products, services and professionals have never been in higher demand. In fact, there remains a huge shortage of experienced security professionals available to fill open positions. A contributing factor to the cybersecurity skills gap is the large number of security startups that have been founded in recent years.

Cybersecurity 113

Cybersecurity Compliance Cloud Artificial Intelligence 113

Security Affairs

MAY 12, 2021

After the introduction of CCPA and GDPR, much more attention is given to third-party risks, and the privacy terms and conditions users agree to. Global privacy regulations, such as the CCPA and GDPR, were enacted to ensure stricter standards when handling the personal data of consumers. Data breaches and other threats.

GDPR 84

GDPR Privacy Personal data Data breaches 84

Data Matters

OCTOBER 6, 2022

The Guidance is divided into two sections: (i) how can PETs help with data protection compliance; and (ii) what are PETs. The Guidance provides a more practical explanation of what PETs are – explaining that they are “enablers” that extract data value while providing data security. What PETs are there?

GDPR 88

GDPR Privacy Encryption Compliance 88

Hunton Privacy

NOVEMBER 19, 2020

In its response, CIPL highlights several possible modifications of the PIPL, which it believes the NPC should consider and adopt during its review, not only to ensure China’s standing in the international data protection space but also to ensure the protection of China’s citizens, businesses and government data.

GDPR 126

GDPR Privacy Risk Government 126

Privacy and Cybersecurity Law

JULY 26, 2021

On July 5, 2021, the Italian supervisory authority (“ Garante ”) published an injunction against a company operating a food delivery app (“ Company ”) over the processing of riders’ personal data with respect to the use of algorithms for the management of the orders. What infringements did the Garante identify?

Personal data 52

Personal data GDPR e-Delivery Communications 52

HL Chronicle of Data Protection

MAY 29, 2019

Following the one-year anniversary of the coming into effect of the GDPR, Hogan Lovells’ Privacy and Cybersecurity practice has prepared summaries of key GDPR-related developments of the past 12 months. The summaries cover regulatory guidance, enforcement actions, court proceedings, and various reports and materials.

GDPR 40

GDPR Personal data Privacy Information architecture 40

Data Matters

MARCH 12, 2020

In light of the ongoing Coronavirus (COVID-19) pandemic, the ICO has today issued guidance on “Data protection and coronavirus: what you need to know” for data controllers. Guidance has also been issued by many other Data Protection Authorities in other European countries. These types of communications are not direct marketing.

GDPR 83

GDPR Communications Privacy Government 83

Privacy and Cybersecurity Law

JUNE 23, 2021

The newly adopted Regulation on notification of security incidents. Classification of security incidents and notifications. Starting from January 1, 2022 [2] , the Operators included in the NCSP will be required to notify incidents to the Inter-ministerial Committee for the Security of the Republic (“ CSIRT ”).

Cybersecurity 52

Cybersecurity Communications Data breaches Security 52

IT Governance

JANUARY 24, 2019

This week, we discuss Google’s €50 million GDPR fine, GDPR complaints against eight streaming services, Facebook’s Supreme Court appeal and its potential effects on the EU-US Privacy Shield, and an Emergency Directive from the US Department of Homeland Security. This isn’t the only complaint noyb has made under the GDPR.

GDPR 69

GDPR Privacy Personal data Government 69

eSecurity Planet

JULY 12, 2023

Cloud security posture management (CSPM) tools continuously monitor, identify, score, and remediate security and compliance concerns across cloud infrastructures as soon as problems arise. usage fee per Enterprise Cloud Security Platform unit used. usage fee per Enterprise Cloud Security Platform unit used.

Cloud 98

Cloud Security Compliance Risk 98

DLA Piper Privacy Matters

JANUARY 11, 2021

On 16 December 2020, the European Commission adopted a proposal for a Directive on measures for a high common level of cybersecurity across the Union (“NIS II Directive”) that revises the current Directive on Security of Network and Information Systems (“NIS Directive”). Cybersecurity risk management and reporting obligations.

Cybersecurity 91

Cybersecurity Computer and Electronics Manufacturing Cloud 91

eSecurity Planet

DECEMBER 17, 2021

Any cloud-based infrastructure needs a robust cloud access security broker (CASB) solution to ensure data and application security and integrity. . Cloud access security brokers are increasingly a critical component of the Secure Access Service Edge (SASE) as edge and cloud security become the newest pain points.

Security 141

Security Cloud Risk Access 141

The Last Watchdog

JANUARY 30, 2019

Late last year, Atrium Health disclosed it lost sensitive data for some 2.65 The culprit: lax practices of a third-party data and analytics contractor. And this continues to include enterprises that have poured a king’s ransom into hardening their first-party security posture. Uphill battle.

Risk 147

Risk Financial Services Insurance Cybersecurity 147

HL Chronicle of Data Protection

JULY 8, 2019

On 8 July 2019, the UK data protection authority (Information Commissioner’s Office; ICO) issued a notice of its intention to fine British Airways (BA) GBP 183.39 million) for infringements of the General Data Protection Regulation (GDPR). million (approx. ” ICO Enforcement Implications.

GDPR 40

GDPR Security Personal data Data breaches 40

DLA Piper Privacy Matters

AUGUST 23, 2021

Rather than bringing substantial changes to the existing China data privacy framework, the PIPL helpfully consolidates and clarifies obligations on processing of personal information at a national law level. To be clear, this is not China’s own GDPR.

Data Privacy 111

Data Privacy Privacy Compliance Analytics 111

Data Protection Report

JANUARY 6, 2020

2020 could well be a year of data export turmoil – so brace yourself! Although the AG’s view was that the SCCs are valid, he suggested that those using them would need to examine the national security laws of the data importer’s jurisdiction to determine whether they can in fact comply with the terms of the SCCs.

Privacy 85

Privacy GDPR Data breaches Risk 85

eSecurity Planet

JUNE 8, 2023

Organizations that understand email security in detail can adopt email security options that are a good fit for their needs and resources. Microsoft estimates that 94% of cyberattacks begin with a malicious email — a horrific statistic that can be dramatically reduced by adopting email security standards, tools, and services.

Security 80

Security Authentication Encryption Phishing 80

Data Matters

NOVEMBER 4, 2020

Third, it creates a new category of businesses: those that voluntarily agree to be subject to the CCPA. Businesses familiar with GDPR will recognize the reference to automated decision-making, as Article 22 gives data subjects similar opt-out rights. However, in some cases, the definition of “business” is narrowed.

Privacy 122

Privacy B2B Sales Data breaches 122

Data Protection Report

JULY 9, 2018

states have recently introduced and passed legislation to expand data breach notification rules and to mirror some of the protections provided by Europe’s newly enacted General Data Protection Regulation (“GDPR”). See our previous blog posts on GDPR here and here. On the security front, as of March 2018, all 50 U.S.

GDPR 40

GDPR Data breaches Personal data Insurance 40

Data Matters

MARCH 4, 2021

For over two and a half years, California has enjoyed the spotlight of having the most comprehensive data privacy law in the United States. Ralph Northam signed into law the Virginia Consumer Data Protection Act (VCDPA). On March 2, 2021, Virginia forced California to share the honors, when Democratic Gov. Exemptions.

Personal data 74

Personal data GDPR Sales Privacy 74

Hunton Privacy

DECEMBER 2, 2020

On November 25, 2020, the European Commission published its Proposal for a Regulation on European Data Governance (the “Data Governance Act”). The Data Governance Act is part of a set of measures announced in the 2020 European Strategy for Data , which is aimed at putting the EU at the forefront of the data empowered society.

Government 70

Government Personal data Compliance GDPR 70

Data Protection Report

MAY 23, 2018

The wait is finally over—this Friday the European Union General Data Protection Regulation (GDPR) will come into force. However, the challenges of GDPR certainly don’t end on the date this law goes into implementation. Many of our clients ask us when and how they may be called upon to demonstrate compliance with the GDPR.

GDPR 40

GDPR Personal data Compliance Data breaches 40

eSecurity Planet

AUGUST 15, 2022

Security Information and Event Management (SIEM) is a crucial enterprise technology that ties the stack of cybersecurity systems together to assess threats and manage risks. ThreatInsight: This security monitoring assessment tool collects logs and gives you insight into your organization’s threats. IBM Security QRadar SIEM.

Analytics 113

Analytics Cloud Compliance Cybersecurity 113

Thales Cloud Protection & Licensing

NOVEMBER 28, 2022

The European Union enacted the Network and Information System (NIS) regulation in July 2016 with the intention of ensuring a specific level of security for networks and information systems belonging to critical and sensitive infrastructures in EU member states. As a result, security in the public and private sectors became fragmented.

IT 71

IT Encryption Compliance Cybersecurity 71

Data Protector

OCTOBER 11, 2017

What follows below is an edited version of the debate in the House of Lords of the Second Reading of the Data Protection Bill, held on 10 October. Data is not just a resource for better marketing, better service and delivery. Data is used to build products themselves. It has become a cliché that data is the new oil.

GDPR 120

GDPR Personal data Government IT 120

Data Protection Report

JANUARY 6, 2020

2020 could well be a year of data export turmoil – so brace yourself! Although the AG’s view was that the SCCs are valid, he suggested that those using them would need to examine the national security laws of the data importer’s jurisdiction to determine whether they can in fact comply with the terms of the SCCs.

Privacy 52

Privacy GDPR Data breaches Risk 52