Document, GDPR and Security - Information Management Today

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. Any company operating in the EU or handling EU residents’ data must adhere to GDPR requirements. However, GDPR compliance is not necessarily a straightforward matter.

GDPR

GDPR Compliance Personal data Privacy

Maintaining GDPR and Data Privacy Compliance in 2024

IT Governance

FEBRUARY 16, 2024

Expert tips from Alan Calder Alan is the Group CEO of GRC International Group PLC, the parent company of IT Governance, and is an acknowledged international security guru. In addition, 14 US states now have their own data privacy laws, and GDPR-like legislation has proliferated across the world.

Data Privacy

Data Privacy GDPR Compliance Privacy

Updating your data protection documentation following Brexit

IT Governance

APRIL 16, 2021

Many organisations are now subject to both the EU GDPR (General Data Protection Regulation) and the UK GDPR (General Data Protection). The UK version was born out of the EU GDPR, so you might think that there are only cosmetic differences and that minor actions are required to adjust your documentation and compliance practices.

GDPR

GDPR Personal data Compliance Encryption

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Even the world’s biggest businesses are not free from GDPR woes. Many businesses find it hard to implement GDPR requirements because the law is not only complex but also leaves a lot up to discretion.

GDPR

GDPR Compliance Personal data Privacy

Changing Attitudes Towards GDPR Enforcement and Compliance: 2018 – 2023

IT Governance

MAY 25, 2023

billion fine for Meta – by far the biggest fine issued under the GDPR since it took effect five years ago – has been taken by many as a sign that the Regulation is at last beginning to be enforced with sufficient vigour. The GDPR was intended to address that – and at first, it seemed like it would. Monday’s €1.2

GDPR

GDPR Compliance Personal data Data Privacy

OpenAI Is Not Training on Your Dropbox Documents—Today

Schneier on Security

DECEMBER 19, 2023

There’s a rumor flying around the Internet that OpenAI is training foundation models on your Dropbox documents. Dropbox isn’t sharing all of your documents with OpenAI. Hooray for the EU and GDPR.) Here’s CNBC. Here’s Boing Boing. It seems not to be true. We don’t trust tech corporations.

Privacy

Privacy GDPR Risk Government

Hamburg’s data protection agency (DPA) states that using Zoom violates GDPR

Security Affairs

AUGUST 18, 2021

The German state’s data protection agency (DPA) warns that the use of the videoconferencing platform Zoom violates the European Union’s GDPR. The German agency states that the use of Zoom by the public body violated the EU GDPR. The DPA is going to issue a formal warning, under Article 58 (2) (a) of the GDPR.

GDPR

GDPR Privacy Compliance Communications

How to Comply with GDPR, PIPL, and CCPA

eSecurity Planet

DECEMBER 22, 2021

But in order for businesses to maintain compliance with major privacy laws , they have to have security measures in place before an attack. The regulations from GDPR, PIPL, and CCPA are especially prevalent to MSPs and software vendors because they get access to data from so many organizations, but all businesses need to comply with them.

GDPR

GDPR Compliance Data Privacy Privacy

Organisations received £155 million in GDPR fines in 2020

IT Governance

MARCH 28, 2021

In 2020, organisations received €182 million (about £155 million) in fines for violating the GDPR (General Data Protection Regulation) , according to an IT Governance report. Our GDPR Fines Quarterly Report revealed that more than two thirds of that total – €110 million (£94 million) – came in the final quarter of the year.

GDPR

GDPR Personal data Government Compliance

Meta Hit with £14 Million Fine for a Dozen GDPR Breaches

IT Governance

MARCH 17, 2022

The tech giant, formerly known as Facebook, violated several GDPR (General Data Protection Regulation) requirements, and more than 30 million people have been affected. The DPC began its inquiry in 2018 – shortly after the GDPR took effect – after it received a dozen breach notifications from Facebook. What rules did Facebook break?

GDPR

GDPR Personal data Encryption Compliance

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S. PIPL Raises the Bar – And the Stakes.

Data Privacy

Data Privacy Compliance Privacy Security

GDPR for small business: the ultimate guide

IT Governance

JULY 2, 2020

What is the GDPR? Second, organisations must implement security measures to protect personal data from being breached or misused, and they must disclose any security incidents involving this data. First, the UK has implemented the UK DPA (Data Protection Act) 2018 , which adopts the GDPR into national law.

GDPR

GDPR Personal data Data breaches Compliance

GDPR compliance and information security: reducing data breach risks

IT Governance

MARCH 6, 2019

The GDPR (General Data Protection Regulation) isn’t only about preventing data breaches (it’s equally focused on strengthening data subjects’ rights), but organisations have understandably honed in on the importance of effective data protection. What the GDPR says about reducing risk. ISO 27001 and the GDPR.

Information Security

Information Security GDPR Data breaches Compliance

Take your GDPR project to the next level with our compliance packages

IT Governance

MARCH 11, 2019

For many organisations, last year’s GDPR (General Data Protection Regulation) compliance deadline was a whirlwind of privacy policy updates, data protection training courses and hours spent online researching exactly what a ‘controller’ and ‘processor’ are. GDPR Compliance Solution – Package 1. EU GDPR Documentation Toolkit.

GDPR

GDPR Compliance Data breaches Privacy

3 GDPR compliance tips for small businesses

IT Governance

MAY 22, 2019

This week marks one year since the GDPR (General Data Protection Regulation) took effect, and although we’ve seen organisations take huge strides in their commitment to information security, many are still struggling to implement the necessary measures. Last, managers should keep an eye out for GDPR-related news.

GDPR

GDPR Compliance Personal data Information Security

GDPR and The Data Governance Imperative

AIIM

SEPTEMBER 12, 2018

You might also be interested in: The Re-Permissioning Dilemma Under GDPR. Data Privacy and Open Data: Secondary Uses under GDPR. Three Critical Steps for GDPR Compliance. Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR Compliance Starts with Data Discovery.

GDPR

GDPR Government Information governance Compliance

Guest Post -- GDPR Compliance starts with Data Discovery

AIIM

NOVEMBER 16, 2017

You might also be interested in: Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. What Do the GDPR and new Privacy Laws Mean for U.S. 50% of organizations not ready for GDPR.

GDPR

GDPR Compliance Privacy Paper

Ten steps to a GDPR gap analysis

IT Governance

MAY 8, 2019

Most GDPR (General Data Protection Regulation) compliance projects start with a gap analysis. Can I use a free GDPR gap analysis tool? More concerningly, these free tools can prove troublesome for users who have limited knowledge of their compliance obligations under the GDPR. What does a gap analysis involve?

GDPR

GDPR Compliance Personal data Risk

Using Strategic Data Governance to Manage GDPR/CCPA Complexity

erwin

JULY 12, 2019

for alleged violations of the European Union’s General Data Protection Regulation (GDPR). While not the first , it is the largest penalty levied since the GDPR went into effect in May 2018. cautions: “European regulators could accelerate the crackdown on GDPR violators, which in turn could accelerate demand for GDPR readiness.

GDPR

GDPR Government Metadata Compliance

Google fined £44 million in landmark GDPR ruling

IT Governance

JANUARY 21, 2019

Google has been fined €50 million (about £44 million) by CNIL, France’s data protection regulator, for a breach of the EU GDPR (General Data Protection Regulation). . It’s by far the biggest fine related to the GDPR, which took effect in May 2018 and gave regulatory bodies much stronger disciplinary powers. .

GDPR

GDPR Access Government IT

How you can demonstrate GDPR compliance

IT Governance

DECEMBER 17, 2018

Organisations have had to radically rethink their approach to data protection now that the GDPR (General Data Protection Regulation) is in effect. But did you know that data controllers can be in violation of the GDPR even if they don’t violate any its data protection rules? If you don’t do this, you are in breach of the GDPR.

GDPR

GDPR Compliance Data breaches Privacy

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

AIIM

JULY 24, 2018

You might also be interested in: The Re-Permissioning Dilemma Under GDPR. Data Privacy and Open Data: Secondary Uses under GDPR. Three Critical Steps for GDPR Compliance. Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR Compliance Starts with Data Discovery.

GDPR

GDPR Compliance Privacy Data Privacy

7 steps to highly effective GDPR compliance

IT Governance

AUGUST 21, 2019

The GDPR (General Data Protection Regulation) hasn’t exactly crept up unnoticed over the past year or so, but it’s still caught many organisations by surprise. Meanwhile, although the specifics of Brexit are still unclear, one thing is certain: whatever happens, UK-based organisations will be subject to the GDPR’s requirements.

GDPR

GDPR Compliance Personal data Access

Why GDPR compliance requires a software solution

IT Governance

NOVEMBER 7, 2019

All organisations need help complying with the GDPR (General Data Protection Regulation). Let’s take a look at what it covers and how it simplifies your GDPR requirements. vsRisk Cloud , for conducting information security risk assessments. vsRisk Cloud , for conducting information security risk assessments.

GDPR

GDPR Compliance Risk Cloud

UK: First-Tier Tribunal considers first fine imposed by the ICO under the GDPR and slashes the amount by two thirds

DLA Piper Privacy Matters

AUGUST 19, 2021

On 17 December 2019, the ICO issued the first administrative fine under the GDPR (known as a monetary penalty notice in the UK), alongside an Enforcement Notice, against Doorstep Disparensee Limited (“ DDL ”). It was also submitted that the ICO had relied on an incorrect assertion by the MHRA as to the number of documents found.

GDPR

GDPR Personal data Compliance Risk

How to write a GDPR data protection policy – with policy template

IT Governance

NOVEMBER 7, 2018

This blog was originally published before the GDPR took effect in May 2018. An integral part of your EU GDPR (General Data Protection Regulation) project is producing appropriate documentation to demonstrate your compliance – in line with the requirement for accountability set out in Article 5(2). Updated 7 November 2018.

GDPR

GDPR Compliance Personal data Government

GDPR: how can I email data securely to comply with the new regulations?

The Guardian Data Protection

MARCH 29, 2018

Is there a secure way of doing so in view of the new data protection laws? I have tried uploading these documents to my Google Drive account and giving them a link, though I don’t really know whether this method is any safer. Robert is often required to email sensitive data. How useful these will be in practice remains to be seen.

GDPR

GDPR Security Government Access

Does your use of CCTV comply with the GDPR?

IT Governance

OCTOBER 3, 2019

You might be surprised to learn that CCTV footage is subject to the GDPR (General Data Protection Regulation). Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant. Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant.

GDPR

GDPR Privacy Retail Personal data

How to write a GDPR-compliant personal data breach notification procedure

IT Governance

APRIL 18, 2018

An integral part of your EU General Data Protection Regulation (GDPR) compliance project is producing appropriate documentation, which includes a personal data breach notification procedure. If you’re just beginning your GDPR project, it’s unlikely that you’ll be fully compliant by 25 May 2018, when the Regulation is enforced.

Personal data

Personal data Data breaches GDPR Compliance

EDPB Publishes Guidelines on the Concepts of Controller and Processor in the GDPR

Hunton Privacy

SEPTEMBER 10, 2020

On September 7, 2020, the European Data Protection Board (“EDPB”) released draft Guidelines 07/2020 on the concepts of controller and processor in the EU General Data Protection Regulation (“GDPR”) (the “Guidelines”). However, the GDPR has introduced new obligations on those actors.

GDPR

GDPR Personal data Data breaches Compliance

Doorstep Dispensaree becomes the first UK organisation to receive a GDPR fine

IT Governance

DECEMBER 24, 2019

Doorstep Dispensaree has been fined £275,000 for failing to comply with the GDPR (General Data Protection Regulation) , making it the first organisation in the UK to be penalised for breaching its requirements. Haven’t there already been GDPR fines in the UK? What went wrong?

GDPR

GDPR Personal data Government Access

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

AIIM

AUGUST 8, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. How do they assess their progress in meeting the core requirements of GDPR?

GDPR

GDPR Compliance Digital preservation Artificial Intelligence

Driving GDPR Compliance

Collibra

FEBRUARY 25, 2021

The General Data Protection Regulation (GDPR) mandates businesses to make provisions for EU citizens to exercise their right to access and control their personal data, including the export of personal data outside the EU. The GDPR impacts both data controllers (legal entities such as companies) as well as data processors (SaaS providers).

GDPR

GDPR Compliance Personal data Data Privacy

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

AIIM

AUGUST 8, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. How do they assess their progress in meeting the core requirements of GDPR?

GDPR

GDPR Compliance Digital preservation Artificial Intelligence

The GDPR: A guide for small businesses

IT Governance

MARCH 27, 2018

Businesses are starting to panic as they try to comply with the General Data Protection Regulation (GDPR) before the May 2018 deadline. Many even believe that the GDPR won’t apply to them because they have fewer than 250 employees. Our small business guide to the GDPR should help clarify some of the key factors affecting SMEs.

GDPR

GDPR Compliance Personal data Information Security

Guest Post - Three Critical Steps for GDPR Compliance

AIIM

JANUARY 17, 2018

You might also be interested in: Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. What Do the GDPR and new Privacy Laws Mean for U.S. GDPR Compliance Starts with Data Discovery.

GDPR

GDPR Compliance Data collection Privacy

CCTV and the GDPR – an overview for small businesses

IT Governance

JULY 25, 2018

As of 25 May 2018, organisations that use CCTV to capture images of individuals are processing personal data as defined by the GDPR (General Data Protection Regulation) and must comply with the Regulation’s requirements. You can find more information about GDPR compliance on our website >> Data processing principles (Article 5).

GDPR

GDPR Personal data Privacy Access

Web Conference Report: “Deploying Containers in the Age of GDPR”

Thales Cloud Protection & Licensing

MARCH 21, 2018

I was fortunate to be one of the presenters at SecureWorld’s recent web conference on “ Deploying Containers in the Age of GDPR.” A real-time poll of webinar participants asked how ready they think their organizations are for the GDPR deadline of May 25, 2018. I suggest you check it out. Here is a taste of what we discussed.

GDPR

GDPR Encryption Personal data Compliance

How to write a GDPR-compliant data subject access request procedure

IT Governance

MARCH 20, 2018

In the lead up to May, it is important your organisation prioritises steps to prove that you are making an effort to comply with the EU General Data Protection Regulation (GDPR). D ata subject access request procedures under the GDPR. Two licences for the GDPR Staff Awareness E-learning Course.

GDPR

GDPR Access Personal data Compliance

Key steps to GDPR compliance – Part 3

IT Governance

DECEMBER 20, 2017

There are less than six months to go until the General Data Protection Regulation (GDPR) comes into effect, but some businesses are not even thinking about it yet, or are only just starting to. The EU GDPR Documentation Toolkit is a complete set of GDPR-compliant templates that are easy to use and customisable.

GDPR

GDPR Compliance Data breaches Information Security

Is your organisation equipped for long-term GDPR compliance?

IT Governance

MAY 28, 2019

Last week, the GDPR (General Data Protection Regulation) turned one year old. GDPR compliance is an ongoing process and should be embedded by design in your data protection practices. The GDPR is as broad as possible when it comes to the security measures that organisations should implement.

GDPR

GDPR Compliance Personal data Risk

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Hunton Privacy

DECEMBER 1, 2020

million on Carrefour France and a fine of €800,000 on Carrefour Banque for various violations of the EU General Data Protection Regulation (“GDPR”) and Article 82 of the French Data Protection Act governing the use of cookies. GDPR and Cookie Violations. Background.

GDPR

GDPR Personal data Data collection Marketing

Sam McNicholls-Novoa on CyberComply

IT Governance

DECEMBER 20, 2023

Making compliance easy with our Cloud-based solution CyberComply is a Cloud-based, end-to-end solution that simplifies compliance with a range of cyber security and data privacy standards and laws, including ISO 27001 , the GDPR (General Data Protection Regulation), and more. We want to make compliance easy for our customers.

GDPR

GDPR Compliance Data Privacy Privacy

Coronavirus: maintaining GDPR compliance during the COVID-19 pandemic

IT Governance

MARCH 26, 2020

One area you might not have considered is how to maintain compliance with the GDPR (General Data Protection Regulation) and UK DPA (Data Protection Act) 2018. Data protection law doesn’t prevent that, but you’ll need to consider the same kinds of security measures for homeworking that you’d use in normal circumstances. Cloud services.

GDPR

GDPR Compliance Phishing Risk

GDPR compliance checklist

Maintaining GDPR and Data Privacy Compliance in 2024

Webinars

Trending Sources

Updating your data protection documentation following Brexit

Webinars

How to implement the General Data Protection Regulation (GDPR)

Changing Attitudes Towards GDPR Enforcement and Compliance: 2018 – 2023

OpenAI Is Not Training on Your Dropbox Documents—Today

Hamburg’s data protection agency (DPA) states that using Zoom violates GDPR

How to Comply with GDPR, PIPL, and CCPA

Organisations received £155 million in GDPR fines in 2020

Meta Hit with £14 Million Fine for a Dozen GDPR Breaches

Security Compliance & Data Privacy Regulations

GDPR for small business: the ultimate guide

GDPR compliance and information security: reducing data breach risks

Take your GDPR project to the next level with our compliance packages

3 GDPR compliance tips for small businesses

GDPR and The Data Governance Imperative

Guest Post -- GDPR Compliance starts with Data Discovery

Ten steps to a GDPR gap analysis

Using Strategic Data Governance to Manage GDPR/CCPA Complexity

Google fined £44 million in landmark GDPR ruling

How you can demonstrate GDPR compliance

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

7 steps to highly effective GDPR compliance

Why GDPR compliance requires a software solution

UK: First-Tier Tribunal considers first fine imposed by the ICO under the GDPR and slashes the amount by two thirds

How to write a GDPR data protection policy – with policy template

GDPR: how can I email data securely to comply with the new regulations?

Does your use of CCTV comply with the GDPR?

How to write a GDPR-compliant personal data breach notification procedure

EDPB Publishes Guidelines on the Concepts of Controller and Processor in the GDPR

Doorstep Dispensaree becomes the first UK organisation to receive a GDPR fine

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

Driving GDPR Compliance

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

The GDPR: A guide for small businesses

Guest Post - Three Critical Steps for GDPR Compliance

CCTV and the GDPR – an overview for small businesses

Web Conference Report: “Deploying Containers in the Age of GDPR”

How to write a GDPR-compliant data subject access request procedure

Key steps to GDPR compliance – Part 3

Is your organisation equipped for long-term GDPR compliance?

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Sam McNicholls-Novoa on CyberComply

Coronavirus: maintaining GDPR compliance during the COVID-19 pandemic

Stay Connected