Hunton Privacy

DECEMBER 4, 2012

On November 20, 2012, the European Network and Information Security Agency (“ENISA”) published a new report entitled “ The Right to Be Forgotten – Between Expectations and Practice.” Consider how to deal with offline storage equipment once the right to be forgotten has been exercised.

Personal data 40

Personal data Information Security Data collection Paper 40

Data Matters

NOVEMBER 4, 2020

Changes to the Definition of Businesses Subject to the CPRA. The CPRA adjusts its definition of a “business” as defined by the CCPA; broadening the scope in some cases, and narrowing it in others. The CPRA expanded the definition of a business in several respects. However, in some cases, the definition of “business” is narrowed.

Privacy 122

Privacy B2B Sales Data breaches 122

Hunton Privacy

JANUARY 5, 2017

The Breach Memorandum, which is intended for each agency’s Senior Agency Official for Privacy (“SAOP”), updates OMB’s breach notification policies and guidelines in accordance with the Federal Information Security Modernization Act of 2014 (“FISMA”).

Data breaches 53

Data breaches Privacy Encryption Risk 53

Hunton Privacy

JANUARY 28, 2019

Issuance of guidance for EU individuals on exercising their rights under the Privacy Shield, and for U.S. The Report highlights the uncertainty surrounding the application of the Privacy Shield to HR data, noting that conflicting interpretations of the definition of HR data has led to uncertainty as to what protections are available.

Privacy 69

Privacy Compliance IT Information Security 69

Hunton Privacy

OCTOBER 27, 2020

On October 21, 2020, China issued a draft of Personal Information Protection Law (“Draft PIPL”) for public comments. The Draft PIPL marks the introduction of a comprehensive system for the protection of personal information in China. Departments Exercising Personal Information Protection. Disclosed Information.

Cybersecurity 111

Cybersecurity Data breaches Personal data Government 111

Hunton Privacy

JUNE 29, 2018

Definition of Personal Information. Personal information is defined broadly as “information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.” Right to Know.

Privacy 55

Privacy Sales Personal data Communications 55

Data Protection Report

JULY 16, 2019

Here are the key changes: Under the current draft, employers will not be exempt from providing a privacy notice to employees – employers must provide employees with notice at or before the point their personal information is collected as to the categories of personal information to be collected and why.

Privacy 40

Privacy B2B Data breaches Data collection 40

IGI

SEPTEMBER 27, 2017

. “The Information Governance Initiative, is widely credited with moving the discipline forward. It has legitimized information governance as a free-standing business exercise, distinct from enterprise content management (ECM). – Your Policies Need to Reflect Today’s Communications.

ECM 20

ECM Information governance Communications Government 20

Data Matters

JUNE 12, 2018

In recent years, the Federal Trade Commission has increasingly exercised its enforcement authority to target deceptive and unfair information security practices. Until last week, that is.

Cybersecurity 60

Cybersecurity Information Security Security IT 60

HL Chronicle of Data Protection

JUNE 17, 2019

There is no question that the enforcement action against Cathay Pacific could generate a similar effect in relation to information security management aspects of the PDPO and in a mandatory breach notification obligation. DPP 4 Analysis: Data Security. The Incident.

Personal data 40

Personal data Data breaches Security Compliance 40

Data Protection Report

MAY 23, 2018

These data subject rights are not new as similar rights were already in place before the GDPR in Europe (and most frequently exercised in the UK), but for organizations that are based outside the EU, this procedure may have been put in place for the first time and never put to test before.

GDPR 40

GDPR Personal data Compliance Data breaches 40

Hunton Privacy

JULY 1, 2014

In the context of the European Cloud Computing Strategy , launched by the European Commission in September 2012, the Guidelines focus on security and data protection in the cloud. On June 26, 2014, the European Commission issued guidelines on the standardization of service level agreements for cloud services providers (the “Guidelines”).

Cloud 40

Cloud B2B Personal data Access 40

IT Governance

MAY 24, 2024

About Vanessa Horton Vanessa holds a degree in computer forensics, as well as a number of cyber security and forensics qualifications. Now, she’s part of our cyber incident response team, helping clients with their cyber security requirements. Oh, law enforcement doing its job is definitely a good thing.

Risk 118

Risk Security Ransomware Phishing 118

Hunton Privacy

APRIL 13, 2016

However, the Working Party also stressed the overall complexity and lack of clarity regarding the new framework and expressed concerns with respect to both the commercial and national security aspects of the Privacy Shield. National Security Guarantees of the Privacy Shield. with definitions agreed upon by the EU and the U.S.,

Privacy 49

Privacy Personal data Healthcare GDPR 49

ForAllSecure

APRIL 7, 2021

Welcome to the hacker mind and original podcast from for all secure, it's about challenging our expectations about the people who hack for a living. I've got a lot of industry certifications, but having all those paper degrees proved to be a poor equivalent to having actual hands on experience in information security.

Cybersecurity 40

Cybersecurity Information Security IT Security 40

ForAllSecure

APRIL 7, 2021

Welcome to the hacker mind and original podcast from for all secure, it's about challenging our expectations about the people who hack for a living. I've got a lot of industry certifications, but having all those paper degrees proved to be a poor equivalent to having actual hands on experience in information security.

Cybersecurity 40

Cybersecurity Information Security IT Security 40

ForAllSecure

SEPTEMBER 29, 2022

And the rest, they say is this as a reporter, I was in a position to learn as I wrote about information security. Vamosi: Welcome to the hacker mind that original podcast from for all secure. All on his own Jack discovered a security flaw in a cryptocurrency app, a flaw that opened the door to the world of bug bounties.

Mining 40

Mining IT Communications Marketing 40

Privacy and Cybersecurity Law

MAY 25, 2021

Furthermore, the DPA considered that the absence of this logging system impeded the exercise of the data subject’s rights, e.g. the Complainant could not get a definitive and comprehensive answer to how her data was processed, which violated her right to access her personal data under article 15 GDPR.

Cybersecurity 52

Cybersecurity GDPR Access Risk 52

ForAllSecure

SEPTEMBER 1, 2020

I’m Robert Vamosi and in this episode I'm continuing to talk about the rise of security automation, and what we learned after first and only Cyber Grand Challenge in 2016. And it definitely casts a shadow over some of what we were doing manually and there's kind of this big question of, oh wow, we did create an automatic CTF bot.

IT 52

IT Security Information Security Cybersecurity 52

ForAllSecure

AUGUST 31, 2020

I’m Robert Vamosi and in this episode I'm continuing to talk about the rise of security automation, and what we learned after first and only Cyber Grand Challenge in 2016. And it definitely casts a shadow over some of what we were doing manually and there's kind of this big question of, oh wow, we did create an automatic CTF bot.

IT 52

IT Security Information Security Cybersecurity 52

ForAllSecure

AUGUST 31, 2020

I’m Robert Vamosi and in this episode I'm continuing to talk about the rise of security automation, and what we learned after first and only Cyber Grand Challenge in 2016. And it definitely casts a shadow over some of what we were doing manually and there's kind of this big question of, oh wow, we did create an automatic CTF bot.

IT 52

IT Security Information Security Cybersecurity 52

ForAllSecure

FEBRUARY 8, 2023

Estimates vary greatly, with some security vendors claiming dwell time is as low as 11 days with ransomware while others claim dwell time can be as high as 200 days or more with more sophisticated attacks. These APTs have somehow found a way to bypass most security tools, hence their persistence. And secure Academy.

Access 40

Access IT Phishing Passwords 40

ForAllSecure

SEPTEMBER 14, 2022

Yeah, I think there's definitely a well-established Jeopardy style like flavor and style of capture the flag. It bills itself as the most comprehensive student-run cyber security event in the world, featuring nine individual hacking competitions, including CTFs. Jeopardy is perhaps the most common, form of CTF. Hammond: It's funny.

Military 40

Military IT Education Cybersecurity 40

Hunton Privacy

SEPTEMBER 3, 2021

Instead, the DPC found that WhatsApp should have definitively identified whether or not an adequacy decision existed to support the transfer of specific categories of data. The EDPB adopted a dispute resolution decision on the matter in July 2021, which recommended a reassessment of the fine on the company.

GDPR 101

GDPR Compliance Personal data Privacy 101

ForAllSecure

JANUARY 27, 2021

Vamosi: Today, John has taken his juvenile curiosity in breaking things down to become a security researcher with Huntress Labs. Hammond: As a security researcher, I am hierarchically in their Threat OPs department. Okay a few more definitions up front. Hey, how does my remote work. So John and I have that in common.

Computer and Electronics 52

Computer and Electronics Military IT Education 52

ForAllSecure

JANUARY 27, 2021

Vamosi: Today, John has taken his juvenile curiosity in breaking things down to become a security researcher with Huntress Labs. Hammond: As a security researcher, I am hierarchically in their Threat OPs department. Okay a few more definitions up front. Hey, how does my remote work. So John and I have that in common.

Computer and Electronics 52

Computer and Electronics Military IT Education 52

Hunton Privacy

SEPTEMBER 3, 2015

This view is in opposition to the Council’s approach, which only explicitly provides the absence of fees for the right of access, therefore leaving the exercise of other rights uncertain. The execution of all data protection rights should instead be encouraged by the absence of fees, according to the German DPAs. Purpose Limitation.

Paper 61

Paper Personal data Risk Government 61

ForAllSecure

APRIL 26, 2022

So there’s a need, a definite need, for information security professionals to have access to industrial control systems -- not virtual, but actual hands on systems -- so they can learn. In a moment I’ll introduce you to someone who is trying to do that--bring ICS equipment to security conferences.

Energy and Utilities 52

Energy and Utilities Manufacturing Risk IT 52

Hunton Privacy

JULY 17, 2018

establishing a complaint-handling mechanism, under the supervision of the Japanese data protection authority (the Personal Information Protection Commission), to investigate and resolve complaints from Europeans regarding access to their data by Japanese public authorities.

Personal data 45

Personal data Communications Access Privacy 45

ForAllSecure

MAY 2, 2023

But it definitely was a different time. All those exercises, the honeypot or honeynet challenges I think that's what they were called in. And so, myself and another individual named Rob Farrell, we were brought in to start a security team. of pleasure, or rage, where operational security levels are much lower.

IT 40

IT Sales Security Honeypots 40

ForAllSecure

JULY 6, 2022

I’m talking about cybercrime unicorns, talking the fog of cyberwar among nation states, and about a new book that I think will be on the shelves of every information security professional later this summer. Vamosi: The slogan of the RSA Conference is “Where the World Talks Security,” and, in general.

Ransomware 40

Ransomware Military Government Security 40

Brandeis Records Manager

SEPTEMBER 19, 2016

Like most people, I prefer to have a reasonable sense of job security, as long as my interest is engaged. A recent futurist reading binge has been an exercise in masochism, or deer-in-the-headlights simulation, or emperor’s new clothes realization. Perhaps cloud brokers will offer some sort of information control as a service (ICaaS).

Blockchain 62

Blockchain Records Management Unstructured data Artificial Intelligence 62