Data, GDPR and Security - Information Management Today

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Yet many organizations still struggle to meet compliance requirements, and EU data protection authorities do not hesitate to hand out penalties. Irish regulators hit Meta with a EUR 1.2

GDPR

GDPR Compliance Personal data Privacy

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S.

Data Privacy

Data Privacy Compliance Privacy Security

GUEST ESSAY: A breakout of how Google, Facebook, Instagram enable third-party snooping

The Last Watchdog

OCTOBER 17, 2022

This increased demand for apps also raises the need for improved data protection measures, which Google took steps to address with the new data safety section they launched in July 2022. percent) of the apps share user data with third parties. In fact, the data trade industry is worth over $257 billion and growing yearly.

Privacy

Privacy Data Privacy Personal data Data collection

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

GDPR for small business: the ultimate guide

IT Governance

JULY 2, 2020

What is the GDPR? The Regulation came into effect on 25 May 2018, and was designed to strengthen the rights of EU residents regarding the way organisations process and use their personal data. First, the UK has implemented the UK DPA (Data Protection Act) 2018 , which adopts the GDPR into national law. A quick overview.

GDPR

GDPR Personal data Data breaches Compliance

China Releases Draft Regulations on Network Data Security Management

Hunton Privacy

JANUARY 26, 2022

On November 14, 2021, the Cyberspace Administration of China (“CAC”) released for public comment its draft Regulations on Network Data Security Management (the “Draft Regulations”). In addition, the Draft Regulations add new requirements related to data processing activities. Data Handler and Entrusted Party.

Security

Security Data breaches Personal data Cybersecurity

Building cyber security careers

IT Governance

OCTOBER 21, 2021

The need for experienced and qualified cyber security professionals is a highlight of Cybersecurity Career Awareness Week , led by NICE (National Initiative for Cybersecurity Education). The most common skills gaps are “storing or transferring personal data, setting up configured firewalls, and detecting and removing malware”.

Security

Security Information Security GDPR Data Privacy

Security Outlook 2023: Cyber Warfare Expands Threats

eSecurity Planet

JANUARY 5, 2023

“In 2022, governments fought wars online, businesses were affected by multiple ransomware gangs, and regular users’ data was constantly on hackers’ radars,” said NordVPN CTO Marijus Briedis. 2023, he predicted, “will not be any easier when it comes to keeping users’ data safe and private.”

Security

Security Ransomware Cybersecurity Privacy

Key steps to GDPR compliance – Part 3

IT Governance

DECEMBER 20, 2017

There are less than six months to go until the General Data Protection Regulation (GDPR) comes into effect, but some businesses are not even thinking about it yet, or are only just starting to. Data subject access requests, incident reporting and data breach reporting will all need written processes, too.

GDPR

GDPR Compliance Data breaches Information Security

Automated Security and Compliance Attracts Venture Investors

eSecurity Planet

FEBRUARY 14, 2023

I remember the first time we were asked for a SOC 2 report, which quickly became the minimum bar requirement in our industry for proof of an effective security program,” he said. The vision was to automate security and compliance across 14 frameworks, including SOC 2, ISO 27001, HIPAA and GDPR. Growth has definitely been robust.

Compliance

Compliance Security Cybersecurity Marketing

How Companies Need to Treat User Data and Manage Their Partners

Security Affairs

MAY 12, 2021

After the introduction of CCPA and GDPR, much more attention is given to third-party risks, and the privacy terms and conditions users agree to. Global privacy regulations, such as the CCPA and GDPR, were enacted to ensure stricter standards when handling the personal data of consumers.

GDPR

GDPR Privacy Personal data Data breaches

EU Data Governance Act – Edging Closer to a European Single Market for Data

Data Matters

APRIL 27, 2022

On 6 April 2022, the European Parliament formally approved the Data Governance Act (“DGA”), which establishes a legal framework to promote the availability of data and increase trust in data sharing across sectors in the EU. The DGA is part of the European Commission’s broader digital and data strategy.

Marketing

Marketing Government Personal data Artificial Intelligence

France: The CNIL publishes a practical guide on Data Protection Officers

DLA Piper Privacy Matters

NOVEMBER 29, 2021

On 16 November 2021, the French data protection supervisory authority (the “CNIL”) published a practical guide (“Guide”) on Data Protection Officers (“DPOs”). The DPO is responsible for the monitoring of the organization’s compliance with the GDPR. Be the point of contact on GDPR issues.

GDPR

GDPR Compliance Personal data Communications

Connecticut Strengthens Data Breach Notification Requirements and the Uniform Law Commission Approves and Recommends Comprehensive and Uniform State Privacy Legislation

Data Matters

AUGUST 9, 2021

In recent weeks, Connecticut passed An Act Concerning Data Privacy Breaches (“The Act”), and the Uniform Law Commission approved and recommended the Uniform Personal Data Protection Act (“UPDPA”). Connecticut: An Act Concerning Data Privacy Breaches. Uniform Personal Data Protection Act.

Data breaches

Data breaches Privacy Personal data Data Privacy

Why risk assessments are essential for GDPR compliance

IT Governance

OCTOBER 15, 2019

Any organisation that’s required to comply with the GDPR (General Data Protection Regulation) must conduct regular risk assessments. However, the GDPR is clear that data is also vulnerable to accidental or unlawful destruction, loss or disclosure. The GDPR risk assessment methodology. Get started with vsRisk.

GDPR

GDPR Risk Compliance Personal data

ITALY: the Garante aligns with CNIL and DSB holding that the use of Google Analytics leads to unlawful transfer of Personal Data

DLA Piper Privacy Matters

JUNE 27, 2022

The Italian privacy authority, the Garante, deemed that the use of Google Analytics results in unlawful transfers of personal data to the United States in violation of the principles outlined in the Schrems II ruling. In Order No. In Order No. Code § 1881(b)(4), which subjects the company to the surveillance of U.S.

Personal data

Personal data Analytics GDPR Privacy

GDPR Training in Belfast – save 10%

IT Governance

DECEMBER 18, 2017

Many organisations are struggling to fill a skills gap created by the EU General Data Protection Regulation (GDPR) and need staff with knowledge of the Regulation. The courses are also available Live Online or as distance learning for those who can’t get to a classroom. EU GDPR Foundation Training Course. Was: £495.00.

GDPR

GDPR Personal data Compliance Data breaches

GDPR – The Year in Review

HL Chronicle of Data Protection

MAY 29, 2019

Following the one-year anniversary of the coming into effect of the GDPR, Hogan Lovells’ Privacy and Cybersecurity practice has prepared summaries of key GDPR-related developments of the past 12 months. The summaries cover regulatory guidance, enforcement actions, court proceedings, and various reports and materials.

GDPR

GDPR Personal data Privacy Information architecture

What UK charities need to know about GDPR compliance

IT Governance

AUGUST 2, 2019

If you think that charities might be shown lenience under the GDPR (General Data Protection Regulation) , you’re wrong. The Regulation treats charities in much the same way as any organisation, because although they’re not using personal data to make a profit, they still run the risk of data breaches and privacy violations.

GDPR

GDPR Compliance Personal data Risk

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375). It is intended to give consumers more transparency regarding and control over their data and establishes highly detailed requirements for what companies that collect personal data about California residents must disclose. .

GDPR

GDPR Privacy Sales Data breaches

CNIL Publishes Six Step Methodology and Tools to Prepare for GDPR

Hunton Privacy

MARCH 17, 2017

On March 15, 2017, the French data protection authority (the “CNIL”) published a six step methodology and tools for businesses to prepare for the EU General Data Protection Regulation (“GDPR”) that will become applicable on May 25, 2018. Step 1: Appointing a Data Protection Officer (“DPO”) or “Pilot”.

GDPR

GDPR Personal data Compliance Privacy

New course dates for GDPR training in Edinburgh and Glasgow

IT Governance

MAY 3, 2018

Although the EU General Data Protection Regulation (GDPR) deadline is only three weeks away, many organisations are still struggling to fill the cyber security skills gap and ensure that they are compliant. The courses are also available in Live Online and distance learning formats for those who can’t get to a classroom.

GDPR

GDPR Personal data Compliance Data breaches

Australia Privacy Act review – a blueprint for change?

DLA Piper Privacy Matters

FEBRUARY 20, 2023

Authors: Sarah Birkett , Nicholas Boyle The Australian Attorney-General has published the (long-awaited) results of the Privacy Act review. The report recommends a number of changes to the Australian privacy framework, including various changes to Australia’s core privacy legislation, the Privacy Act 1988 (Cth).

Privacy

Privacy Data breaches Marketing Government

Do I Need a Data Catalog?

erwin

JUNE 26, 2020

If you’re serious about a data-driven strategy , you’re going to need a data catalog. Organizations need a data catalog because it enables them to create a seamless way for employees to access and consume data and business assets in an organized manner. This also diminishes the value of data as an asset.

Metadata

Metadata Unstructured data Compliance Sales

What is personal information under the CCPA?

Collibra

NOVEMBER 2, 2020

The California Consumer Privacy Act (CCPA) came into effect four years after the General Data Protection Regulation (GDPR) was adopted. Despite coming at the heels of the GDPR, the recent California privacy law promptly established and defined its own concepts around consumer-related data. .

Privacy

Privacy Education Insurance GDPR

“Dark patterns?” EDPB draft guidance sets out its expectations on subliminal privacy eroding practices

Data Protection Report

MAY 3, 2022

The Guidelines consider in detail common social media interfaces that present the content of privacy policies and collect consent in ways which substantively violate the GDPR requirements, while still pretending to formally comply with them (these methods now termed “dark patterns”) and explain how the GDPR applies in this context.

Privacy

Privacy IT GDPR Data collection

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

Rather than bringing substantial changes to the existing China data privacy framework, the PIPL helpfully consolidates and clarifies obligations on processing of personal information at a national law level. To be clear, this is not China’s own GDPR.

Data Privacy

Data Privacy Privacy Compliance Analytics

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

This is the fifth installment in Hogan Lovells’ series on the California Consumer Privacy Act. . As the most comprehensive privacy law to be enacted in the United States thus far, the California Consumer Privacy Act (CCPA) has inevitably invited comparisons to the European Union’s General Data Protection Regulation (GDPR).

GDPR

GDPR Privacy Personal data Sales

Belgian Privacy Commission Issues Priorities and Thematic Dossier to Prepare for GDPR

Hunton Privacy

SEPTEMBER 21, 2016

On September 16, 2016, the Belgian Data Protection Authority (the “Privacy Commission”) published a 13-step guidance document (in French and Dutch ) to help organizations prepare for the EU General Data Protection Regulation (“GDPR”). The 13 steps recommended by the Privacy Commission are summarized below.

GDPR

GDPR Privacy Personal data Data breaches

California Enacts Broad Privacy Protections Modeled on GDPR

Data Matters

JUNE 29, 2018

Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375). It is intended to give consumers more transparency regarding and control over their data and establishes highly detailed requirements for what companies that collect personal data about California residents must disclose. .

GDPR

GDPR Privacy Sales Data breaches

Why every organisation needs data protection impact assessments

IT Governance

NOVEMBER 23, 2018

DPIAs (data protection impact assessments) are a type of risk assessment that identify the risks affecting the security of personal data, and work out their likely effects. It’s particularly important to carry one out when introducing new processes, systems or technologies for processing personal data.

GDPR

GDPR Personal data Risk Marketing

UK Information Commissioner’s Office Publishes Final Guidance On Employee Monitoring

Data Protection Report

OCTOBER 12, 2023

Where looking to deploy monitoring of remote workers in their homes, employers should take into account that workers have a greater expectation of privacy at home than in the office. The ICO also builds on its recent draft guidance on biometric data to provide specific pointers on using biometric data for employee monitoring.

GDPR

GDPR Mining Risk Privacy

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Data Matters

MARCH 4, 2021

For over two and a half years, California has enjoyed the spotlight of having the most comprehensive data privacy law in the United States. Ralph Northam signed into law the Virginia Consumer Data Protection Act (VCDPA). On March 2, 2021, Virginia forced California to share the honors, when Democratic Gov. Exemptions.

Personal data

Personal data GDPR Sales Privacy

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

This is the fifth installment in Hogan Lovells’ series on the California Consumer Privacy Act. . As the most comprehensive privacy law to be enacted in the United States thus far, the California Consumer Privacy Act (CCPA) has inevitably invited comparisons to the European Union’s General Data Protection Regulation (GDPR).

GDPR

GDPR Privacy Personal data Sales

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

This is the fifth installment in Hogan Lovells’ series on the California Consumer Privacy Act. . As the most comprehensive privacy law to be enacted in the United States thus far, the California Consumer Privacy Act (CCPA) has inevitably invited comparisons to the European Union’s General Data Protection Regulation (GDPR).

GDPR

GDPR Privacy Personal data Sales

California’s GDPR? Sweeping California Privacy Ballot Initiative Could Bring Sea Change to U.S. Privacy Regulation and Enforcement

Data Matters

JUNE 26, 2018

On June 25, 2018, California Secretary of State Alex Padilla announced that a potentially significant privacy initiative is eligible for the Nov. If passed, the ballot initiative — the California Consumer Privacy Act (CCPA) — would immediately make sweeping changes to California’s privacy laws. biometric data.

Privacy

Privacy GDPR Sales Data breaches

How data breaches are affecting the retail industry

IT Governance

AUGUST 21, 2018

Data breaches. What steps will the ICO (Information Commissioner’s Office) take to ensure organisations comply with the recently enforced GDPR (General Data Protection Regulation)? Customers of the Adidas.com website may have been affected by a breach after an unauthorised party gained access to customer data.

Retail

Retail Data breaches GDPR Compliance

U.S. states pass data protection laws on the heels of the GDPR

Data Protection Report

JULY 9, 2018

states have recently introduced and passed legislation to expand data breach notification rules and to mirror some of the protections provided by Europe’s newly enacted General Data Protection Regulation (“GDPR”). See our previous blog posts on GDPR here and here. On the security front, as of March 2018, all 50 U.S.

GDPR

GDPR Data breaches Personal data Insurance

Why every librarian needs to be involved in shaping your AI Policy

CILIP

FEBRUARY 1, 2024

Specifically, the ICO states that General Data Protection Regulations (GDPR) create specific requirements around the provision of information about and the explanation of AI-assisted decisions. As a result, many organisations are operating with a significant degree of risk in the impact of AI on their compliance with GDPR.

Artificial Intelligence

Artificial Intelligence Libraries GDPR Risk

DUBAI – DIFC Data Protection Law 2020

DLA Piper Privacy Matters

JUNE 4, 2020

Dubai’s International Financial Centre, the world class financial hub and free zone established in 2004, has an updated data protection law ( “Updated Law” ). The Updated Law is a much anticipated step in the evolution of the data protection landscape in the Gulf Co-operation Council ( “GCC” ) landscape. What are the key changes?

Personal data

Personal data GDPR Compliance Privacy

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

Data Protection Report

DECEMBER 17, 2020

On 25 November 2020, the European Commission ( EC ) published its proposed Data Governance Regulation (the DGR ), which will create a new legal framework to encourage the development of a European single market for data. What are the objectives of the Data Governance Regulation?

Government

Government Personal data Marketing Artificial Intelligence

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

The wait is finally over—this Friday the European Union General Data Protection Regulation (GDPR) will come into force. However, the challenges of GDPR certainly don’t end on the date this law goes into implementation. Many of our clients ask us when and how they may be called upon to demonstrate compliance with the GDPR.

GDPR

GDPR Personal data Compliance Data breaches

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

What follows below is an edited version of the debate in the House of Lords of the Second Reading of the Data Protection Bill, held on 10 October. Data is not just a resource for better marketing, better service and delivery. Data is used to build products themselves. It has become a cliché that data is the new oil.

GDPR

GDPR Personal data Government IT

EU data governance regulation – A wave of digital, regulatory and antitrust reform begins – Part Two

Data Protection Report

DECEMBER 17, 2020

On 25 November 2020, the European Commission ( EC ) published its proposed Data Governance Regulation (the DGR ), which will create a new legal framework to encourage the development of a European single market for data. New regime for data sharing service providers. This is part two of a series of three blog posts.

Government

Government Personal data GDPR Access

CIPL and its GDPR Project Stakeholders Discuss DPOs and Risk under GDPR

Hunton Privacy

OCTOBER 5, 2016

In September, the Centre for Information Policy Leadership (“CIPL”) held its second GDPR Workshop in Paris as part of its two-year GDPR Implementation Project. There was a sense of shared responsibility for the successful and timely implementation of the GDPR between industry, DPAs, national governments and the EU Commission.

GDPR

GDPR Risk IT Compliance

How to implement the General Data Protection Regulation (GDPR)

Security Compliance & Data Privacy Regulations

Webinars

Trending Sources

GUEST ESSAY: A breakout of how Google, Facebook, Instagram enable third-party snooping

Webinars

GDPR for small business: the ultimate guide

China Releases Draft Regulations on Network Data Security Management

Building cyber security careers

Security Outlook 2023: Cyber Warfare Expands Threats

Key steps to GDPR compliance – Part 3

Automated Security and Compliance Attracts Venture Investors

How Companies Need to Treat User Data and Manage Their Partners

EU Data Governance Act – Edging Closer to a European Single Market for Data

France: The CNIL publishes a practical guide on Data Protection Officers

Connecticut Strengthens Data Breach Notification Requirements and the Uniform Law Commission Approves and Recommends Comprehensive and Uniform State Privacy Legislation

Why risk assessments are essential for GDPR compliance

ITALY: the Garante aligns with CNIL and DSB holding that the use of Google Analytics leads to unlawful transfer of Personal Data

GDPR Training in Belfast – save 10%

GDPR – The Year in Review

What UK charities need to know about GDPR compliance

California Enacts Broad Privacy Laws Modeled on GDPR

CNIL Publishes Six Step Methodology and Tools to Prepare for GDPR

New course dates for GDPR training in Edinburgh and Glasgow

Australia Privacy Act review – a blueprint for change?

Do I Need a Data Catalog?

What is personal information under the CCPA?

“Dark patterns?” EDPB draft guidance sets out its expectations on subliminal privacy eroding practices

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

Belgian Privacy Commission Issues Priorities and Thematic Dossier to Prepare for GDPR

California Enacts Broad Privacy Protections Modeled on GDPR

Why every organisation needs data protection impact assessments

UK Information Commissioner’s Office Publishes Final Guidance On Employee Monitoring

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

California’s GDPR? Sweeping California Privacy Ballot Initiative Could Bring Sea Change to U.S. Privacy Regulation and Enforcement

How data breaches are affecting the retail industry

U.S. states pass data protection laws on the heels of the GDPR

Why every librarian needs to be involved in shaping your AI Policy

DUBAI – DIFC Data Protection Law 2020

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

GDPR is upon us: are you ready for what comes next?

The debate on the Data Protection Bill in the House of Lords

EU data governance regulation – A wave of digital, regulatory and antitrust reform begins – Part Two

CIPL and its GDPR Project Stakeholders Discuss DPOs and Risk under GDPR

Stay Connected