Document, GDPR and Security - Information Management Today

Maintaining GDPR and Data Privacy Compliance in 2024

IT Governance

FEBRUARY 16, 2024

Expert tips from Alan Calder Alan is the Group CEO of GRC International Group PLC, the parent company of IT Governance, and is an acknowledged international security guru. We sat down to chat to him about industry challenges in 2024. About that “GDPR-like legislation”, could you please elaborate?

Data Privacy

Data Privacy GDPR Compliance Privacy

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. Any company operating in the EU or handling EU residents’ data must adhere to GDPR requirements. However, GDPR compliance is not necessarily a straightforward matter.

GDPR

GDPR Compliance Personal data Privacy

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Even the world’s biggest businesses are not free from GDPR woes. Many businesses find it hard to implement GDPR requirements because the law is not only complex but also leaves a lot up to discretion.

GDPR

GDPR Compliance Personal data Privacy

OpenAI Is Not Training on Your Dropbox Documents—Today

Schneier on Security

DECEMBER 19, 2023

There’s a rumor flying around the Internet that OpenAI is training foundation models on your Dropbox documents. Dropbox isn’t sharing all of your documents with OpenAI. Companies lying about what they do with your privacy is a very serious allegation. Hooray for the EU and GDPR.) Here’s CNBC.

Privacy

Privacy GDPR Risk Government

Changing Attitudes Towards GDPR Enforcement and Compliance: 2018 – 2023

IT Governance

MAY 25, 2023

billion fine for Meta – by far the biggest fine issued under the GDPR since it took effect five years ago – has been taken by many as a sign that the Regulation is at last beginning to be enforced with sufficient vigour. Companies that ostensibly offered services to consumers were amassing large data sets about how those consumers behaved.

GDPR

GDPR Compliance Personal data Data Privacy

How to Comply with GDPR, PIPL, and CCPA

eSecurity Planet

DECEMBER 22, 2021

But in order for businesses to maintain compliance with major privacy laws , they have to have security measures in place before an attack. The regulations from GDPR, PIPL, and CCPA are especially prevalent to MSPs and software vendors because they get access to data from so many organizations, but all businesses need to comply with them.

GDPR

GDPR Compliance Data Privacy Privacy

Organisations received £155 million in GDPR fines in 2020

IT Governance

MARCH 28, 2021

In 2020, organisations received €182 million (about £155 million) in fines for violating the GDPR (General Data Protection Regulation) , according to an IT Governance report. Our GDPR Fines Quarterly Report revealed that more than two thirds of that total – €110 million (£94 million) – came in the final quarter of the year.

GDPR

GDPR Personal data Government Compliance

The GDPR: Everything you need to know about data controllers and data processors

IT Governance

NOVEMBER 14, 2018

Data controllers and data processors are an integral part of the GDPR. The terms ‘data controller’ and ‘data processor’ have been around for years, but it’s only since the EU GDPR (General Data Protection Regulation) took effect that they’ve been scrutinised. That’s understandable. The basics. Responsibilities of the data processor.

GDPR

GDPR Retail Data collection Personal data

Meta Hit with £14 Million Fine for a Dozen GDPR Breaches

IT Governance

MARCH 17, 2022

Meta has been fined €17 million (about £14.2 The tech giant, formerly known as Facebook, violated several GDPR (General Data Protection Regulation) requirements, and more than 30 million people have been affected. The DPC noted that Facebook (as it was known at the time) breached Articles 5(1), 5(2), 24(1) and 32(1) of the GDPR.

GDPR

GDPR Personal data Encryption Compliance

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S. PIPL Raises the Bar – And the Stakes.

Data Privacy

Data Privacy Compliance Privacy Security

GDPR compliance and information security: reducing data breach risks

IT Governance

MARCH 6, 2019

The GDPR (General Data Protection Regulation) isn’t only about preventing data breaches (it’s equally focused on strengthening data subjects’ rights), but organisations have understandably honed in on the importance of effective data protection. What the GDPR says about reducing risk. ISO 27001 and the GDPR.

Information Security

Information Security GDPR Data breaches Compliance

What UK charities need to know about GDPR compliance

IT Governance

AUGUST 2, 2019

If you think that charities might be shown lenience under the GDPR (General Data Protection Regulation) , you’re wrong. The breach was reported to the ICO (Information Commissioner’s Office), which oversees GDPR compliance in the UK, and Mermaids is now subject to disciplinary action. What are charities’ GDPR requirements?

GDPR

GDPR Compliance Personal data Risk

GDPR and The Data Governance Imperative

AIIM

SEPTEMBER 12, 2018

You might also be interested in: The Re-Permissioning Dilemma Under GDPR. Data Privacy and Open Data: Secondary Uses under GDPR. Three Critical Steps for GDPR Compliance. Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR Compliance Starts with Data Discovery.

GDPR

GDPR Government Information governance Compliance

Guest Post -- GDPR Compliance starts with Data Discovery

AIIM

NOVEMBER 16, 2017

You might also be interested in: Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. What Do the GDPR and new Privacy Laws Mean for U.S. 50% of organizations not ready for GDPR.

GDPR

GDPR Compliance Privacy Paper

Wake up to the reality of the GDPR: What you need to know about compliance

IT Governance

JANUARY 30, 2019

With a mammoth GDPR fine handed out to Google last week, it’s time for organisations to reassess their understanding of the Regulation. We’re through the eye of the GDPR (General Data Protection Regulation) storm. The GDPR concerns personal data that is: Collected in an enterprise context; and. Some began to lose faith.

GDPR

GDPR Compliance Personal data Data breaches

3 GDPR compliance tips for small businesses

IT Governance

MAY 22, 2019

This week marks one year since the GDPR (General Data Protection Regulation) took effect, and although we’ve seen organisations take huge strides in their commitment to information security, many are still struggling to implement the necessary measures. Last, managers should keep an eye out for GDPR-related news.

GDPR

GDPR Compliance Personal data Information Security

How you can demonstrate GDPR compliance

IT Governance

DECEMBER 17, 2018

Organisations have had to radically rethink their approach to data protection now that the GDPR (General Data Protection Regulation) is in effect. But did you know that data controllers can be in violation of the GDPR even if they don’t violate any its data protection rules? If you don’t do this, you are in breach of the GDPR.

GDPR

GDPR Compliance Data breaches Privacy

Google fined £44 million in landmark GDPR ruling

IT Governance

JANUARY 21, 2019

Google has been fined €50 million (about £44 million) by CNIL, France’s data protection regulator, for a breach of the EU GDPR (General Data Protection Regulation). . It’s by far the biggest fine related to the GDPR, which took effect in May 2018 and gave regulatory bodies much stronger disciplinary powers. .

GDPR

GDPR Access Government IT

Ten steps to a GDPR gap analysis

IT Governance

MAY 8, 2019

Most GDPR (General Data Protection Regulation) compliance projects start with a gap analysis. Can I use a free GDPR gap analysis tool? More concerningly, these free tools can prove troublesome for users who have limited knowledge of their compliance obligations under the GDPR. What does a gap analysis involve?

GDPR

GDPR Compliance Personal data Risk

Does your use of CCTV comply with the GDPR?

IT Governance

OCTOBER 3, 2019

You might be surprised to learn that CCTV footage is subject to the GDPR (General Data Protection Regulation). The Regulation isn’t just about written details, like names and addresses; it applies to any information that can identify someone. Transparency is a core principle of the GDPR. Clearly state why you are using CCTV.

GDPR

GDPR Privacy Retail Personal data

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

AIIM

JULY 24, 2018

You might also be interested in: The Re-Permissioning Dilemma Under GDPR. Data Privacy and Open Data: Secondary Uses under GDPR. Three Critical Steps for GDPR Compliance. Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR Compliance Starts with Data Discovery.

GDPR

GDPR Compliance Privacy Data Privacy

Why GDPR compliance requires a software solution

IT Governance

NOVEMBER 7, 2019

All organisations need help complying with the GDPR (General Data Protection Regulation). Let’s take a look at what it covers and how it simplifies your GDPR requirements. vsRisk Cloud , for conducting information security risk assessments. vsRisk Cloud , for conducting information security risk assessments.

GDPR

GDPR Compliance Risk Cloud

7 steps to highly effective GDPR compliance

IT Governance

AUGUST 21, 2019

The GDPR (General Data Protection Regulation) hasn’t exactly crept up unnoticed over the past year or so, but it’s still caught many organisations by surprise. Meanwhile, although the specifics of Brexit are still unclear, one thing is certain: whatever happens, UK-based organisations will be subject to the GDPR’s requirements.

GDPR

GDPR Compliance Personal data Access

CCTV and the GDPR – an overview for small businesses

IT Governance

JULY 25, 2018

As of 25 May 2018, organisations that use CCTV to capture images of individuals are processing personal data as defined by the GDPR (General Data Protection Regulation) and must comply with the Regulation’s requirements. You can find more information about GDPR compliance on our website >> Data processing principles (Article 5).

GDPR

GDPR Personal data Privacy Access

Doorstep Dispensaree becomes the first UK organisation to receive a GDPR fine

IT Governance

DECEMBER 24, 2019

Doorstep Dispensaree has been fined £275,000 for failing to comply with the GDPR (General Data Protection Regulation) , making it the first organisation in the UK to be penalised for breaching its requirements. Haven’t there already been GDPR fines in the UK? What went wrong?

GDPR

GDPR Personal data Government Access

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

AIIM

AUGUST 8, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. How do they assess their progress in meeting the core requirements of GDPR?

GDPR

GDPR Compliance Digital preservation Artificial Intelligence

EDPB Publishes Guidelines on the Concepts of Controller and Processor in the GDPR

Hunton Privacy

SEPTEMBER 10, 2020

On September 7, 2020, the European Data Protection Board (“EDPB”) released draft Guidelines 07/2020 on the concepts of controller and processor in the EU General Data Protection Regulation (“GDPR”) (the “Guidelines”). However, the GDPR has introduced new obligations on those actors.

GDPR

GDPR Personal data Data breaches Compliance

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

AIIM

AUGUST 8, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. How do they assess their progress in meeting the core requirements of GDPR?

GDPR

GDPR Compliance Digital preservation Artificial Intelligence

Driving GDPR Compliance

Collibra

FEBRUARY 25, 2021

The General Data Protection Regulation (GDPR) mandates businesses to make provisions for EU citizens to exercise their right to access and control their personal data, including the export of personal data outside the EU. The GDPR impacts both data controllers (legal entities such as companies) as well as data processors (SaaS providers).

GDPR

GDPR Compliance Personal data Data Privacy

Web Conference Report: “Deploying Containers in the Age of GDPR”

Thales Cloud Protection & Licensing

MARCH 21, 2018

I was fortunate to be one of the presenters at SecureWorld’s recent web conference on “ Deploying Containers in the Age of GDPR.” A real-time poll of webinar participants asked how ready they think their organizations are for the GDPR deadline of May 25, 2018. I suggest you check it out. Here is a taste of what we discussed.

GDPR

GDPR Encryption Personal data Compliance

The GDPR: A guide for small businesses

IT Governance

MARCH 27, 2018

Businesses are starting to panic as they try to comply with the General Data Protection Regulation (GDPR) before the May 2018 deadline. Many even believe that the GDPR won’t apply to them because they have fewer than 250 employees. Our small business guide to the GDPR should help clarify some of the key factors affecting SMEs.

GDPR

GDPR Compliance Personal data Information Security

Coronavirus: maintaining GDPR compliance during the COVID-19 pandemic

IT Governance

MARCH 26, 2020

One area you might not have considered is how to maintain compliance with the GDPR (General Data Protection Regulation) and UK DPA (Data Protection Act) 2018. The ICO (Information Commissioner’s Office) has published a handy guide to what you need to know about data protection during the pandemic. Meeting your other GDPR obligations.

GDPR

GDPR Compliance Phishing Risk

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Hunton Privacy

DECEMBER 1, 2020

million on Carrefour France and a fine of €800,000 on Carrefour Banque for various violations of the EU General Data Protection Regulation (“GDPR”) and Article 82 of the French Data Protection Act governing the use of cookies. GDPR and Cookie Violations. Background.

GDPR

GDPR Personal data Data collection Marketing

Guest Post - Three Critical Steps for GDPR Compliance

AIIM

JANUARY 17, 2018

You might also be interested in: Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. What Do the GDPR and new Privacy Laws Mean for U.S. GDPR Compliance Starts with Data Discovery.

GDPR

GDPR Compliance Data collection Privacy

Top 5 Cloud security challenges, risks and threats

IT Governance

NOVEMBER 24, 2021

But as is often the case with technological solutions, the benefits of convenience comes with security risks. In this blog, we look at the top five Cloud security challenges that organisations face, and provide tips on how to overcome them. Cyber criminals aren’t the only people you need to worry about. Data breaches.

Cloud

Cloud Risk Security Data breaches

Key steps to GDPR compliance – Part 3

IT Governance

DECEMBER 20, 2017

There are less than six months to go until the General Data Protection Regulation (GDPR) comes into effect, but some businesses are not even thinking about it yet, or are only just starting to. The EU GDPR Documentation Toolkit is a complete set of GDPR-compliant templates that are easy to use and customisable.

GDPR

GDPR Compliance Data breaches Information Security

Free download: GDPR & ISO 27001 Gap Analysis Tools

IT Governance

FEBRUARY 14, 2019

While Brexit continues to cause widespread uncertainty, you can at least be sure of one thing: deal or no deal, the security risks your organisation faces won’t go away. Data breaches are on the up, and information security and GDPR compliance remain business-critical issues. An ISO 27001 ?gap?analysis?gives

GDPR

GDPR Compliance Information Security Data breaches

How to write a GDPR-compliant data subject access request procedure

IT Governance

MARCH 20, 2018

In the lead up to May, it is important your organisation prioritises steps to prove that you are making an effort to comply with the EU General Data Protection Regulation (GDPR). D ata subject access request procedures under the GDPR. Two licences for the GDPR Staff Awareness E-learning Course.

GDPR

GDPR Access Personal data Compliance

How to write a GDPR-compliant data subject access request procedure – with template

IT Governance

NOVEMBER 8, 2018

This blog was originally published before the GDPR took effect in May 2018. This blog explains how to write a GDPR-compliant DSAR (data subject access request) procedure to ensure you meet your obligations as a data controller. Data subject access request procedures under the GDPR. Updated X November 2018.

GDPR

GDPR Access Personal data Compliance

Is your organisation equipped for long-term GDPR compliance?

IT Governance

MAY 28, 2019

Last week, the GDPR (General Data Protection Regulation) turned one year old. GDPR compliance is an ongoing process and should be embedded by design in your data protection practices. The GDPR is as broad as possible when it comes to the security measures that organisations should implement.

GDPR

GDPR Compliance Personal data Risk

GDPR priorities in the lead up to May

IT Governance

MARCH 1, 2018

GDPR compliance should be a priority and high on every organisation’s agenda with only three months until the regulation comes into effect on 25 May 2018. Training – make sure those responsible for the project are trained on implementing the GDPR in the workplace.

GDPR

GDPR Compliance Privacy Data breaches

Sam McNicholls-Novoa on CyberComply

IT Governance

DECEMBER 20, 2023

Making compliance easy with our Cloud-based solution CyberComply is a Cloud-based, end-to-end solution that simplifies compliance with a range of cyber security and data privacy standards and laws, including ISO 27001 , the GDPR (General Data Protection Regulation), and more. Could you tell us a bit about what you do for the Group?

GDPR

GDPR Compliance Data Privacy Privacy

Why risk assessments are essential for GDPR compliance

IT Governance

OCTOBER 15, 2019

Any organisation that’s required to comply with the GDPR (General Data Protection Regulation) must conduct regular risk assessments. However, the GDPR is clear that data is also vulnerable to accidental or unlawful destruction, loss or disclosure. The GDPR risk assessment methodology. The software tool is: Easy to use.

GDPR

GDPR Risk Compliance Personal data

Maintaining GDPR and Data Privacy Compliance in 2024

GDPR compliance checklist

Trending Sources

How to implement the General Data Protection Regulation (GDPR)

OpenAI Is Not Training on Your Dropbox Documents—Today

Changing Attitudes Towards GDPR Enforcement and Compliance: 2018 – 2023

How to Comply with GDPR, PIPL, and CCPA

Organisations received £155 million in GDPR fines in 2020

The GDPR: Everything you need to know about data controllers and data processors

Meta Hit with £14 Million Fine for a Dozen GDPR Breaches

Security Compliance & Data Privacy Regulations

GDPR compliance and information security: reducing data breach risks

What UK charities need to know about GDPR compliance

GDPR and The Data Governance Imperative

Guest Post -- GDPR Compliance starts with Data Discovery

Wake up to the reality of the GDPR: What you need to know about compliance

3 GDPR compliance tips for small businesses

How you can demonstrate GDPR compliance

Google fined £44 million in landmark GDPR ruling

Ten steps to a GDPR gap analysis

Does your use of CCTV comply with the GDPR?

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

Why GDPR compliance requires a software solution

7 steps to highly effective GDPR compliance

CCTV and the GDPR – an overview for small businesses

Doorstep Dispensaree becomes the first UK organisation to receive a GDPR fine

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

EDPB Publishes Guidelines on the Concepts of Controller and Processor in the GDPR

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

Driving GDPR Compliance

Web Conference Report: “Deploying Containers in the Age of GDPR”

The GDPR: A guide for small businesses

Coronavirus: maintaining GDPR compliance during the COVID-19 pandemic

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

More articles about information management than any sane person should write

Guest Post - Three Critical Steps for GDPR Compliance

Top 5 Cloud security challenges, risks and threats

Key steps to GDPR compliance – Part 3

Free download: GDPR & ISO 27001 Gap Analysis Tools

How to write a GDPR-compliant data subject access request procedure

How to write a GDPR-compliant data subject access request procedure – with template

Is your organisation equipped for long-term GDPR compliance?

GDPR priorities in the lead up to May

Sam McNicholls-Novoa on CyberComply

Why risk assessments are essential for GDPR compliance

Stay Connected