2017, Document, GDPR and Security - Information Management Today

Irish DPA Issues €450,000 Fine Against Twitter for Data Breach Following EDPB Decision under the GDPR Consistency Mechanism

Hunton Privacy

DECEMBER 17, 2020

The fine is the largest issued by the Irish DPC under the EU General Data Protection Regulation (“GDPR”) to date and is also its first against a U.S.-based Twitter estimated that 88,726 Twitter users in Europe were affected between September 5, 2017 and January 11, 2019. Investigation and GDPR Dispute Resolution Procedure.

GDPR

GDPR Data breaches Personal data Compliance

Germany: Bonn Regional Court overrules GDPR Fining Guidelines by German Data Protection Authorities

DLA Piper Privacy Matters

NOVEMBER 24, 2020

Background: How to calculate GDPR fines? How to properly calculate administrative fines for non-compliance with the EU General Data Protection Regulation (‘ GDPR ’) is one of the most important questions when applying the GDPR on practical level, e.g. : What is actually meant by the reference to “undertaking” in Article 83 (4) to (6) GDPR?

GDPR

GDPR Authentication Compliance Personal data

Weekly podcast: Exactis, BetVictor, Ticketmaster, and GDPR complaints

IT Governance

JUNE 29, 2018

This week, we discuss the apparent leak of 340 million data records, a vulnerability that exposed sensitive BetVictor data, a data breach affecting up to 40,000 Ticketmaster customers, and the number of GDPR complaints since 25 May. He then messaged BetVictor’s security team, who removed the search feature from the website.

GDPR

GDPR Passwords Data breaches Access

GDPR – The Year in Review

HL Chronicle of Data Protection

MAY 29, 2019

Following the one-year anniversary of the coming into effect of the GDPR, Hogan Lovells’ Privacy and Cybersecurity practice has prepared summaries of key GDPR-related developments of the past 12 months. The summaries cover regulatory guidance, enforcement actions, court proceedings, and various reports and materials.

GDPR

GDPR Personal data Privacy Information architecture

UK businesses are reporting fewer data breaches, but is this as positive as it sounds?

IT Governance

MAY 2, 2019

A third of businesses and a fifth of charities were hit by a cyber attack or data breach in the past year, the UK government’s Cyber Security Breaches Survey 2019 has found. The report says this may be because businesses and charities are going to greater lengths to become cyber secure. The effects of the GDPR.

Data breaches

Data breaches GDPR IT Compliance

Cloud, Intelligent Content Services, and Digital Fragility: What’s on the RIM Horizon for 2020

ARMA International

DECEMBER 26, 2019

Nineteen percent of RIM programs report into IT (up from 15% in 2017), and 28% into legal (up from 18.5% in 2017), with the remainder reporting into senior administrative roles, compliance, corporate services, or finance teams. In 2017, only 25% of respondents reported they had re-organized their programs.

Content services

Content services Cloud Records Management Privacy

The Scottish Cyber Resilience Strategy for health boards

IT Governance

MAY 3, 2018

The Cyber Resilience Strategy for the Scottish public sector was launched in November 2017 and aims to promote cyber resilience. The action plan lists 11 requirements and minimum cyber risk governance arrangements that public bodies must implement by the end of June 2018. >> Cyber resilience. . >>

Paper

Paper GDPR Government Compliance

CNIL Publishes DPIA Guidelines and List of Processing Operations Subject To DPIA

Hunton Privacy

NOVEMBER 9, 2018

The Guidelines aim to complement guidelines on DPIA adopted by the Article 29 Working Party on October 4, 2017, and endorsed by the European Data Protection Board (“EDPB”) on May 25, 2018. This corresponds to the three-year period mentioned in the draft guidelines on DPIAs adopted by the Article 29 Working Party on April 4, 2017.

GDPR

GDPR Risk IT Compliance

Weekly podcast: 2018 end-of-year roundup

IT Governance

DECEMBER 13, 2018

This week, in our last podcast of the year, we revisit some of the biggest information security stories from the past 12 months. As is now traditional, I’ve installed myself in the porter’s chair next to the fire in the library, ready to recap some of the year’s more newsworthy information security events. caused problems of their own.

Data breaches

Data breaches Personal data Access GDPR

2019 end-of-year review part 1: January to June

IT Governance

DECEMBER 27, 2019

IT Governance is closing out the year by rounding up 2019’s biggest information security stories. Victims of Equifax’s 2017 data breach were given the go-ahead to launch a class-action lawsuit. Countless office workers were forced to get back to their jobs after Reddit suspended a host of accounts in light of security concerns.

Data breaches

Data breaches GDPR Passwords Personal data

EUROPE: Article 29 Working Party publish draft Guidelines on Consent

DLA Piper Privacy Matters

DECEMBER 13, 2017

On 12 December 2017, the Article 29 Working Party (WP29) published draft Guidelines on Consent under the General Data Protection Regulation (GDPR). The guidelines expand on the WP29’s ‘ Opinion on the definition of consent’ (July 2011), addressing the concept of consent in the context of the enhanced regulatory regime under the GDPR.

GDPR

GDPR Personal data Retail Data collection

Wednesday LTNY 2018 Sessions: eDiscovery Trends

eDiscovery Daily

JANUARY 30, 2018

be interviewing several industry thought leaders to see what they think are the significant trends for 2017 and, which of those are evident at LTNY. 11:00 AM – 12:00 PM: The Role of Artificial Intelligence in Legal and Business Processes and How to Defend Its Use. Leveraging IG Practices to Prepare for the GDPR.

e-Discovery

e-Discovery Artificial Intelligence GDPR Education

The Burden of Privacy In Discovery

Data Matters

SEPTEMBER 29, 2021

To pick just two recent examples of the latter, the EU’s General Data Protection Regulation1 (GDPR) and the California Consumer Privacy Act2 (CCPA) both impose sweeping requirements on businesses with the aim of increasing consumers’ privacy and control over how their personal data is used. 72 Indeed, Comment 2.b

Privacy

Privacy e-Discovery Computer and Electronics e-Delivery

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

Where the Information Commissioner gives notices to data controllers, she can now secure compliance, with the power to issue substantial administrative penalties of up to 4% of global turnover. How then will we secure adequacy without adhering to the charter? Where she finds criminality, she can prosecute.

GDPR

GDPR Personal data Government IT

CNIL Unveils 2019 Inspection Program and 2018 Annual Activity Report

Hunton Privacy

APRIL 30, 2019

percent compared to the number of complaints in 2017). This upward trend was confirmed in the first few months of 2019, and may be due to the media impact of the EU General Data Protection Regulation (“GDPR”) and increased public awareness. the allocation of responsibilities between data controllers and data processors.

GDPR

GDPR Personal data Data breaches Marketing

Part 3: OMG! Not another digital transformation article! Is it about effecting risk management and change management?

ARMA International

SEPTEMBER 27, 2021

In fact, “the Independent Panel for Pandemic Preparedness and Response, pointedly noted that since the H1N1 pandemic in 2009, there have been 11 high-level commissions and panels that produced more than 16 reports, with the vast majority of recommendations never implemented” (Fink 2021).

Digital transformation

Digital transformation Risk IT Computer and Electronics

Weekly podcast: German data breach, poor passwords, Marriott, NHS Digital and Patch Tuesday

IT Governance

JANUARY 10, 2019

Hello and welcome to the first IT Governance podcast of 2019 – for Friday, 11 January. It’s long been a habit of journalists and online commentators to open the year with predictions about the coming months, but I don’t think there’s much value in that from an information security point of view. 123456789.

Data breaches

Data breaches Passwords GDPR Personal data

Key takeaways for the private sector from The Bridges v South Wales police facial recognition case

Data Protection Report

AUGUST 27, 2020

On 11 August 2020, the Court of Appeal ( CA ) handed down its judgement in the case of R (on the application of Edward BRIDGES) v The Chief Constable of South Wales Police. The claim concerned the lawfulness of AFT that had been deployed by SWP on around 50 occasions between May 2017 and May 2019.

Risk

Risk Retail IT GDPR

Information Management Today

Irish DPA Issues €450,000 Fine Against Twitter for Data Breach Following EDPB Decision under the GDPR Consistency Mechanism

Germany: Bonn Regional Court overrules GDPR Fining Guidelines by German Data Protection Authorities

Trending Sources

Weekly podcast: Exactis, BetVictor, Ticketmaster, and GDPR complaints

GDPR – The Year in Review

UK businesses are reporting fewer data breaches, but is this as positive as it sounds?

Cloud, Intelligent Content Services, and Digital Fragility: What’s on the RIM Horizon for 2020

The Scottish Cyber Resilience Strategy for health boards

CNIL Publishes DPIA Guidelines and List of Processing Operations Subject To DPIA

Weekly podcast: 2018 end-of-year roundup

2019 end-of-year review part 1: January to June

EUROPE: Article 29 Working Party publish draft Guidelines on Consent

Wednesday LTNY 2018 Sessions: eDiscovery Trends

The Burden of Privacy In Discovery

The debate on the Data Protection Bill in the House of Lords

CNIL Unveils 2019 Inspection Program and 2018 Annual Activity Report

Part 3: OMG! Not another digital transformation article! Is it about effecting risk management and change management?

Weekly podcast: German data breach, poor passwords, Marriott, NHS Digital and Patch Tuesday

Key takeaways for the private sector from The Bridges v South Wales police facial recognition case

Stay Connected