Data, Information Security and Insurance - Information Management Today

category enforcement

Data

Information Security

Insurance

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S. Healthcare Data Privacy Laws.

Data Privacy

Data Privacy Compliance Privacy Security

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

NYSE:FAF ] was leaking more than 800 million documents — many containing sensitive financial data — related to real estate transactions dating back 16 years. Securities and Exchange Commission settled its investigation into the matter after the Fortune 500 company agreed to pay a paltry penalty of less than $500,000.

Insurance

Insurance Risk Financial Services Mining

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Launching LLM-Based Products: From Concept to Cash in 90 Days

Driving Responsible Innovation: How to Navigate AI Governance & Data Privacy

MORE WEBINARS

Trending Sources

How to Create & Implement a Cloud Security Policy

eSecurity Planet

SEPTEMBER 16, 2024

A cloud security policy is a comprehensive document that describes the organization’s guidelines for protecting cloud services. It specifies how data should be secured, who can access it, and the procedures for monitoring permissions. It establishes rules for cloud data security , access management, and threat response.

Cloud

Cloud Security Compliance Risk

Webinars

Launching LLM-Based Products: From Concept to Cash in 90 Days

Driving Responsible Innovation: How to Navigate AI Governance & Data Privacy

MORE WEBINARS

China Releases National Standard on Personal Information Security

Hunton Privacy

JANUARY 26, 2018

On January 25, 2018, the Standardization Administration of China published the full text of the Information Security Technology – Personal Information Security Specification (the “Specification”). The Specification divides personal information into two categories: personal information and sensitive personal information.

Information Security

Information Security Security Privacy Personal data

ICO issue fine of £4.4 to Interserve for security failings

DLA Piper Privacy Matters

OCTOBER 25, 2022

The ICO found that Interserve had failed to put appropriate technical and organisational measures in place to secure personal data (in contravention of Articles 5(1)(f) and 32 GDPR) for a period of ~20 months. The attacker then compromised four HR databases containing data of 113k employees and former employees. The Incident.

Security

Security GDPR Personal data Insurance

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

In good news for organisations handling personal information, China’s Personal Information Protection Law (“ PIPL ”) was finalised on 20 August 2021, and will come into force on 1 November 2021. To be clear, this is not China’s own GDPR.

Data Privacy

Data Privacy Privacy Compliance Analytics

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

AIIM

JULY 24, 2018

Data Privacy and Open Data: Secondary Uses under GDPR. Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. GDPR Compliance Starts with Data Discovery.

GDPR

GDPR Compliance Privacy Data Privacy

New York Enacts Stricter Data Cybersecurity Laws

Data Matters

AUGUST 5, 2019

On July 25, 2019, Governor Cuomo signed the two bills into law, one which amended the state’s data breach notification law, and another that created additional obligations for data breaches at credit reporting agencies. The Stop Hacks and Improve Electronic Data Security Act.

Cybersecurity

Cybersecurity Data breaches Privacy Risk

U.S. states pass data protection laws on the heels of the GDPR

Data Protection Report

JULY 9, 2018

states have recently introduced and passed legislation to expand data breach notification rules and to mirror some of the protections provided by Europe’s newly enacted General Data Protection Regulation (“GDPR”). On the security front, as of March 2018, all 50 U.S. data protection laws that were passed in the last year.

GDPR

GDPR Data breaches Personal data Insurance

How to Develop an Incident Response Plan

eSecurity Planet

DECEMBER 9, 2021

Or as is often the case with security, what costs can we skip and still escape big penalties later? Unfortunately for those of us indulging in wishful thinking, the likelihood and costs of data breaches continue to increase. The Ponemon Institute estimates that data breach costs rose to an average cost of $4.24

Insurance

Insurance Ransomware Data breaches Cloud

Malaysian Data Protection Law Takes Effect

Hunton Privacy

NOVEMBER 19, 2013

On November 14, 2013, the Minister of the Malaysian Communications and Multimedia Commission (the “Minister”) announced that Malaysia’s Personal Data Protection Act 2010 (the “Act”) would be going into effect as of November 15, marking the end of years of postponements. The law imposes a number of generally applicable principles.

Personal data

Personal data Marketing Communications Insurance

SEC Chair: Sweeping New Cybersecurity Rules Are Coming Soon

Data Matters

FEBRUARY 10, 2022

Securities and Exchange Commission (SEC), announced that he has asked SEC staff to provide sweeping rulemaking recommendations to modernize and expand the agency’s rules relating to cybersecurity. He also signaled the SEC’s continued focus on enforcement and cooperation with other law enforcement agencies.

Cybersecurity

Cybersecurity Marketing Risk Compliance

Health Care Organizations Comment on Proposed Modifications to HIPAA Privacy, Security and Enforcement Rules

Hunton Privacy

OCTOBER 4, 2010

The Department of Health and Human Services (“HHS”) received numerous comments on its proposed modifications to the Health Insurance Portability and Accountability Act Privacy, Security and Enforcement Rules, which were issued on July 8, 2010. Enforcement Rule. Security Rule.

Privacy

Privacy Security Compliance Insurance

HHS Issues New Model Privacy Notice for PHR Vendors

Hunton Privacy

SEPTEMBER 15, 2011

The PHR Model Privacy Notice is intended to enable consumers to “understand privacy and security policies and data sharing practice information, compare PHR company practices, and make informed decisions.”.

Privacy

Privacy Healthcare Insurance Personal data

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

The wait is finally over—this Friday the European Union General Data Protection Regulation (GDPR) will come into force. What do we expect in terms of enforcement priorities? The stated purpose of the new law is to give people more control over their personal data and make it easier to access it.

GDPR

GDPR Personal data Compliance Data breaches

Network Security Architecture: Best Practices & Tools

eSecurity Planet

APRIL 26, 2024

Network security architecture is a strategy that provides formal processes to design robust and secure networks. Effective implementation improves data throughput, system reliability, and overall security for any organization. or segregated as cloud or network attached storage (NAS). in the cloud.

Security

Security Cloud Cybersecurity Risk

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Data Matters

APRIL 23, 2018

Recent guidance from the Securities and Exchange Commission (SEC) on disclosure and enforcement actions by the Federal Trade Commission (FTC) make clear that cybersecurity is no longer a niche topic, but a concern significant enough to warrant the oversight of corporate boards of directors.

Cybersecurity

Cybersecurity Risk Passwords Authentication

Final Draft of EU AI Act Leaked

Hunton Privacy

FEBRUARY 1, 2024

In addition to the above categories of AI systems, the AI Act will impose specific obligations on providers of generative AI models on which general purpose AI systems, like ChatGPT, are based ( e.g. , an obligation to make a summary of the content used to train the models publicly available). to prepare news articles).

Risk

Risk Education Artificial Intelligence Insurance

Top Cybersecurity Startups to Watch in 2022

eSecurity Planet

JANUARY 11, 2022

Information security products , services, and professionals have never been in higher demand, making for a world of opportunities for cybersecurity startups. With evolving attack methodologies due to machine learning, quantum computing, and sophisticated nation-state hackers, security startups are receiving record funding.

Cybersecurity

Cybersecurity Cloud Compliance Analytics

Security Compliance & Data Privacy Regulations

First American Financial Pays Farcical $500K Fine

Webinars

Trending Sources

How to Create & Implement a Cloud Security Policy

Webinars

China Releases National Standard on Personal Information Security

ICO issue fine of £4.4 to Interserve for security failings

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

New York Enacts Stricter Data Cybersecurity Laws

U.S. states pass data protection laws on the heels of the GDPR

How to Develop an Incident Response Plan

Malaysian Data Protection Law Takes Effect

SEC Chair: Sweeping New Cybersecurity Rules Are Coming Soon

Health Care Organizations Comment on Proposed Modifications to HIPAA Privacy, Security and Enforcement Rules

HHS Issues New Model Privacy Notice for PHR Vendors

GDPR is upon us: are you ready for what comes next?

Network Security Architecture: Best Practices & Tools

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Final Draft of EU AI Act Leaked

Top Cybersecurity Startups to Watch in 2022

Stay Connected