Remove tag privacy-by-design-2
Remove Data Remove Information Security Remove Security
article thumbnail

China: Navigating China Episode 19: China’s new Data Security Law: what multinational businesses need to know

DLA Piper Privacy Matters

China’s Data Security Law (“ DSL ”) has come into force and takes effect on 1 September 2021. The DSL applies to data in general, and forms part of the broader China data framework. The DSL confirms – rather than changes – data localisation requirements. Authors: Carolyn Bigg , Venus Cheung, Fangfang Song.

article thumbnail

Newly Proposed SEC Cybersecurity Risk Management and Governance Rules and Amendments for Public Companies

Data Matters

Securities and Exchange Commission (SEC) proposed new cybersecurity rules to enhance and standardize disclosures regarding cybersecurity risk management, strategy, governance, and incident reporting by public companies. an incident in which a malicious actor has demanded payment to restore company data that was stolen or altered.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Italian Garante Publishes Updated Guidelines on Cookies and Other Tracking Technologies

Hunton Privacy

Laura Liguori of Portolano Cavallo reports that on June 10, 2021, the Italian Data Protection Authority ( Garante or “DPA”) adopted a new version of its guidelines for cookies and other tracking mechanisms (the “Guidelines”). The Guidelines make major changes to guidance previously provided by the Garante. 4 of January 9, 2004).

GDPR 98
article thumbnail

SEC Proposes Cybersecurity Rules for Public Companies

Hunton Privacy

On March 9, 2022, the Securities and Exchange Commission (“SEC”) held an open meeting and proposed new cybersecurity disclosure rules for public companies by a 3-1 vote. Whether the company has remediated or is currently remediating the incident.

article thumbnail

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

2 Because First American’s violations included the exposure of millions of documents containing nonpublic information (NPI), the total penalty potentially could be substantial. limit user access privileges to information systems that provide access to NPI (23 NYCRR § 500.07). e) and 500.01(g), g), respectively.