Data Protector

DECEMBER 31, 2016

I’ve recently had a quiet year on the blogging front – my professional duties have prevented me from playing a more active role on the Internet during this year than I would have liked, but that is set to change in 2017. My professional work this year included acting as a specialist adviser to the Joint Parliamentary Committee on the Draft Investigatory Powers Act, one of the most significant pieces of legislation to be laid before Parliament for many years, to advising large (and some not so la

GDPR 120

GDPR Communications Financial Services Education 120

Hunton Privacy

JANUARY 5, 2017

On January 3, 2017, the Office of Management and Budget (“OMB”) issued a memorandum (the “Breach Memorandum”) advising federal agencies on how to prepare for and respond to a breach of personally identifiable information (“PII”). The Breach Memorandum, which is intended for each agency’s Senior Agency Official for Privacy (“SAOP”), updates OMB’s breach notification policies and guidelines in accordance with the Federal Information Security Modernization Act of 2014 (“FISMA”).

Data breaches 53

Data breaches Privacy Encryption Risk 53

Positively RIM

JANUARY 5, 2017

Today’s Blog is sponsored by MER 2017, Cohasset Associates’ 25 th annual educational conference on electronic records management, in Chicago, May 8-10. U ser beware: amid the security and budgetary advantages of the Cloud, risks lurk, ready to sabotage the unprepared or unsuspecting. Make sure you are not caught unaware. Records Management in the Cloud cries for Information Governance (IG).

Cloud 40

Cloud Risk Records Management Compliance 40

John Battelle's Searchblog

JANUARY 6, 2017

The post Predictions 2017: A Chain Reaction appeared first on John Battelle's Search Blog. This is my 14th annual predictions post. And as I look back on the previous 13 and consider what to write, I’m flooded with uncertainty. That’s not like me. Writing these predictions is something I’ve always looked forward to – I don’t prepare in any demonstrable way, but I do gather crumbs over time, filing them away for the day when I sit down and free associate for how

Marketing 56

Marketing Privacy IT Data collection 56

Speaker: Aarushi Kansal, AI Leader & Author and Tony Karrer, Founder & CTO at Aggregage

Software leaders who are building applications based on Large Language Models (LLMs) often find it a challenge to achieve reliability. It’s no surprise given the non-deterministic nature of LLMs. To effectively create reliable LLM-based (often with RAG) applications, extensive testing and evaluation processes are crucial. This often ends up involving meticulous adjustments to prompts.

IT

Hunton Privacy

JANUARY 6, 2017

On January 4, 2017, the National Institute of Standards and Technology (“NIST”) announced the final release of NISTIR 8062, An Introduction to Privacy Engineering and Risk Management in Federal Systems. NISTIR 8062 describes the concept of applying systems engineering practices to privacy and sets forth a model for conducting privacy risk assessments on federal systems.

Privacy 49

Privacy Risk Information Security Security 49

Hunton Privacy

JANUARY 6, 2017

On January 3, 2017, Bloomberg Law: Privacy and Data Security reported that Chilean legislators are soon expected to consider a new data protection law (the “Bill”) which would impose new privacy compliance standards and certain enforcement provisions on companies doing business in Chile. . Chile’s existing data protection law, the Law on the Protection of Private Life (Law No. 19,628), was signed into law in 1999 and does not provide for a privacy regulator with enforcement authority.

Privacy 45

Privacy Compliance Government Security 45

Hunton Privacy

JANUARY 3, 2017

On December 28, 2016, the New York State Department of Financial Services (“DFS”) announced an updated version of its cybersecurity regulation for financial institutions (the “Updated Regulation”). The Updated Regulation will become effective on March 1, 2017. Key changes from the version that was published in September 2016 include: providing a definition of a “Third-Party Service Provider”; modifying the definition of “Nonpublic Information” to make it consistent with the definition of private

Cybersecurity 40

Cybersecurity Financial Services Authentication Information Security 40