Education, Events, Government and Personal data

When are schools required to report personal data breaches?

IT Governance

NOVEMBER 17, 2020

Under the GDPR (General Data Protection Regulation) , all personal data breaches must be recorded by the organisation and there should be a clear and defined process for doing so. In this blog, we take a look at the scenarios in which data protection breaches in schools must be reported. How to avoid data breaches.

Personal data

Personal data Data breaches Data collection GDPR

National AI Strategy: The UK Government Publishes Its Artificial Intelligence Strategy for the Next Decade

Data Matters

OCTOBER 21, 2021

On 22 September 2021, the UK Government (the “ Government ”) published its Artificial Intelligence (“ AI ”) strategy. The paper outlines the Government’s plan to make Britain a “global superpower” in the AI arena, and sets out an agenda to build the most “pro-innovation regulatory environment in the world”.

Artificial Intelligence

Artificial Intelligence Government Paper IT

Two FTC complaints that over-retention of personal data violates Section 5

Data Protection Report

FEBRUARY 13, 2024

In both cases, the FTC’s complaint alleged that the companies retained personal data for longer than was necessary, and that conduct violated Section 5 of the Federal Trade Commission Act as an unfair act or practice. Under the proposed consent orders, both companies do not confirm or deny the allegations.

Personal data

Personal data Privacy Marketing Data collection

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

News alert: NCA’s Data Privacy Week webinars highlight data protection for consumers, businesses

The Last Watchdog

JANUARY 23, 2024

Throughout the week, NCA will emphasize the critical significance of digital privacy for both consumers and businesses through a series of educational webinars featuring experts from various industries. “Knowing how to safeguard your personal information has never been more important than it is today. Give Data Brokers the Slip!

Data Privacy

Data Privacy Privacy Education Cybersecurity

Cybersecurity Awareness Month: Resilient Multi-factor Authentication (MFA) and Strong Passwords

Thales Cloud Protection & Licensing

OCTOBER 4, 2022

Historically, October has always been an important month for the cybersecurity community and a month of major cybersecurity events. GDPR and other data protection regulations help broaden our awareness about data privacy and make us more suspicious when it comes to protecting personal data and digital services.

Authentication

Authentication Passwords Cybersecurity Personal data

What are you doing for Data Privacy Week?

IT Governance

JANUARY 24, 2022

Data privacy is a concept that governs our everyday lives. We’re asked to hand over our personal data for seemingly everything that we do – from browsing the web to high-street shopping. Each device, app or browser has different features to limit and personal data will be used and who it will be shared with.

Data Privacy

Data Privacy Privacy Personal data Passwords

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

IT Governance

MAY 7, 2024

A further 381,000 New York City public school students affected by 2022 data breach In January 2022 , personal data from around 820,000 New York City public school students, both current and former, was breached. Data breached: 1,201,000 people’s data. Data breached: 395 GB.

Data breaches

Data breaches Education Manufacturing Retail

Prometheus and Grief – two new emerging ransomware gangs targeting enterprises. Mexican Government data is published for sale.

Security Affairs

JUNE 1, 2021

Just recently, the group has published a stolen data allegedly belonging to the Mexican Government which still remains available for sale today, and possibly becoming the first cybercriminal group that has touched a major state in Latin America on such a level. Mexican Government data is published for sale.

Sales

Sales Ransomware Government GDPR

Top 3 reasons to attend Quest EMPOWER 2022

erwin

OCTOBER 17, 2022

You don’t even have to attend the live event to catch all the presentations. Your chance to hear from inspiring data experts. Speakers include leading data evangelists Stewart Bond and Donna Burbank. They’ll share the strategies that leading organizations are using to improve data intelligence and data governance.

Government

Government Cloud Education Personal data

Catches of the Month: Phishing Scams for October 2022

IT Governance

OCTOBER 10, 2022

Welcome to our October 2022 review of phishing attacks, in which we explore the latest email scams and the tactics that cyber criminals use to trick people into handing over personal data. Revolut was recently targeted by a cyber criminal, who gained unauthorised access to clients’ personal data. Get started.

Phishing

Phishing Passwords Personal data Data breaches

CHINA: new Anti-Espionage Law and its impact on your China data and operations – how your organisation should respond

DLA Piper Privacy Matters

MAY 16, 2023

The new law broadens the scope of espionage activities, as well as the power for authorities to carry out anti-espionage investigations by gaining access to data and property. As noted above, this is particularly important with regard state secrets and “important data”.

IT

IT Compliance Communications Risk

‘Mother of All Breaches’: 26 BILLION Records Leaked

IT Governance

JANUARY 24, 2024

In total, 3,876 domain names were included in the exposed data set. Leon Teale is a senior penetration tester at IT Governance with more than ten years’ experience performing penetration tests for clients in various industries all over the world. For instance, I’ve logged ‘Microsoft’ four times in the past three months.

Passwords

Passwords Data breaches Encryption Risk

France: The CNIL publishes a practical guide on Data Protection Officers

DLA Piper Privacy Matters

NOVEMBER 29, 2021

Among the organizations that have designated a DPO, the most represented sectors are, unsurprisingly, the public administration, education and health sectors. The DPO is the key contact for the CNIL and data subjects. The Guide is composed of four main Parts : I. The Guide starts with a section on the role of the DPO : .

GDPR

GDPR Compliance Personal data Communications

Why is the GDPR still something I should be concerned about?

IT Governance

OCTOBER 15, 2018

The EU’s GDPR (General Data Protection Regulation) superseded all laws based on the EU’s Data Protection Directive, including the UK’s Data Protection Act 1998, on 25 May 2018. Education . Mapping data and having records of data processing across all school systems is one of the biggest and most important changes.

GDPR

GDPR Data breaches Personal data Data collection

Catches of the Month: Phishing Scams for May 2023

IT Governance

MAY 10, 2023

Welcome to our May 2023 review of phishing attacks, in which we explore the latest email scams and the tactics that cyber criminals use to trick people into handing over personal data. Dembinsky said that organisations must combat the risk with a combination of education and technical solutions, such as antimalware software.

Phishing

Phishing Honeypots Education Information Security

Are Retailers Shopping for a Cybersecurity Breach?

Thales Cloud Protection & Licensing

NOVEMBER 22, 2022

What would the consequences be if such an event happens were to happen on Black Friday, Cyber Monday, or during the holiday shopping season? Retailers started the century as the prime targets for cyber attackers looking for credit card data. Today, unfortunately, retailers are again coming back to the spotlight.

Retail

Retail Cybersecurity Ransomware Authentication

Catches of the Month: Phishing Scams for December 2022

IT Governance

DECEMBER 8, 2022

Welcome to our December 2022 review of phishing attacks, in which we explore the latest email scams and the tactics that cyber criminals use to trick people into handing over personal data. Scammers are always looking for current events they can use to lend their schemes a sense of legitimacy. Get started.

Phishing

Phishing Education Personal data Authentication

What is a Cyberattack? Types and Defenses

eSecurity Planet

JUNE 16, 2022

These new attacks affect everything from private citizens and businesses to government systems; healthcare organizations; public services; and food, water, and fuel supply chains. Other techniques to steal personal data include the use of keyloggers that record all keystrokes and can reveal information. Crimeware and spyware.

Ransomware

Ransomware Cybersecurity Phishing Encryption

China Issues Draft of Personal Information Protection Law

Hunton Privacy

OCTOBER 27, 2020

The Departments responsible for personal information protection (“Departments”) include the Cyberspace Administration of China (“CAC”), the relevant department of the State Council and the relevant department of local government at the level of county or above. Cross-Border Transfer of Personal Information.

Cybersecurity

Cybersecurity Data breaches Personal data Government

How to Take Your Business to The Next Level with Data Intelligence

erwin

JUNE 11, 2020

Educators can provide a more valuable learning experience and environment for students. With the use of data intelligence tools, educational institutes can provide teachers with a more holistic view of a student’s academic performance. Apply real-time data in marketing strategies. Data quality management.

Analytics

Analytics Blockchain Artificial Intelligence Big data

A 6-step guide to surviving data breaches

IT Governance

FEBRUARY 1, 2019

Assess the affected data. You must provide details of: The types of personal data compromised; The number of personal data records affected; The number of data subjects potentially affected; and. The categories of data subject affected. How else can IT Governance help? Describe the impact.

Data breaches

Data breaches GDPR Personal data Compliance

Six eDiscovery Trends for 2024

eDiscovery Daily

JANUARY 10, 2024

By Rick Clark and Jacob Hesse 2023 was an eventful year in the world of legal technology, with new technology emerging to address both traditional and new challenges legal teams face when collecting, processing, and reviewing data for litigation, investigations, or public access requests.

Blockchain

Blockchain Artificial Intelligence Cloud Compliance

ICYMI –December in privacy and cybersecurity

Data Protection Report

JANUARY 4, 2024

For those making this quiz a competitive event, we have included a tie-breaker/bonus question.) a. Which one does NOT require a minimum number of residents’ personal data for the “controller” to be in-scope for the law? See SEC, Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure, 88 Fed.

Privacy

Privacy Cybersecurity Artificial Intelligence e-Discovery

Serbian Commissioner Emphasizes Data Protection Awareness

Hunton Privacy

JULY 10, 2012

Training about personal data protection by world and European experts. Training about personal data protection by world and European experts. But, definitely we need to work hardest in the area of education. I will try and provide other numerous events similar to this one. Monday, July 09, 2012 09:18.

Education

Education Personal data Military Government

Weekly podcast: Grammarly, Infraud and Octoly

IT Governance

FEBRUARY 8, 2018

Hello and welcome to the IT Governance podcast for Friday, 9 February 2018. Thank you to @taviso and the team for finding and educating the community about the complexities of this bug. This week, we discuss breaches at Grammarly and Octoly, and the arrest of leading members of the Infraud cyber crime group. That’s not all, though.

Passwords

Passwords Data breaches GDPR Personal data

Ransomware attacks hit 105 US local governments in 2022

Security Affairs

JANUARY 2, 2023

In 2022, ransomware attacks targeted 105 state or municipal governments or agencies in the US, reads a report published by Emsisoft. Below are the attacks reported by Emsisoft: 105 local governments. ” The ransomware attack against local governments resulted in data theft in at least 27 of the 105 incidents (26 percent). .

Ransomware

Ransomware Government Education Encryption

eDiscovery and the GDPR: Ready or Not, Here it Comes: eDiscovery Best Practices

eDiscovery Daily

DECEMBER 3, 2017

In 1980, in an effort to create a comprehensive data protection system throughout Europe, the Organization for Economic Cooperation and Development (OECD) issued its “Recommendations of the Council Concerning Guidelines Governing the Protection of Privacy and Trans-Border Flows of Personal Data.”.

GDPR

GDPR IT Personal data Privacy

2022 Cyber Security Review of the Year

IT Governance

DECEMBER 20, 2022

Articles 5(1) and 5(2) state that personal data must be processed lawfully, fairly and in a transparent manner, and that the data controller must be able to demonstrate that it is doing so. Articles 24(1) and 32(1) state that organisations must implement appropriate technical and organisational measures to protect personal data.

Security

Security Data breaches Ransomware Military

Hunton & Williams Advises Serbian Commissioner on Data Protection Law

Hunton Privacy

JULY 23, 2012

Lisa Sotto , partner and head of the Global Privacy and Data Security Practice at Hunton & Williams, was interviewed on July 18, 2012 about her participation in the USAID-funded Judicial Reform and Government Accountability Project’s initiative to educate and provide data protection awareness to the Serbian government.

Data Privacy

Data Privacy Education Personal data Privacy

eDiscovery and the GDPR: Ready or Not, Here it Comes, Part Three: eDiscovery Best Practices

eDiscovery Daily

DECEMBER 7, 2017

In the US, data being held pursuant to a litigation hold is not considered to be data undergoing “processing”. The GDPR definition of processing, however, is much broader and makes no provisions for holding personal data for an unlimited period of time simply because of the possibility of impending litigation in the US.

GDPR

GDPR e-Discovery IT Personal data

PIPL: A Game Changer for Companies in China

Data Protection Report

AUGUST 24, 2021

the relevant departments of local governments at the county-level or above will also perform certain duties and responsibilities with respect to personal information protection and related supervision and administration in accordance with the regulations of the State. adopt other security measures as stipulated by laws and regulations.

GDPR

GDPR Compliance Analytics Education

California Privacy Law Overhaul – Proposition 24 Passes

Data Matters

NOVEMBER 4, 2020

The law says little else about automated decision-making rights other than to direct that regulations be issued governing these opt-out and access rights. Businesses familiar with GDPR will recognize the reference to automated decision-making, as Article 22 gives data subjects similar opt-out rights.

Privacy

Privacy B2B Sales Data breaches

#ModernDataMasters: Carl Smith, PZ Cussons

Reltio

NOVEMBER 15, 2019

Within these organisations he has gained a broad skill set across most business functions and has a track record of successfully delivering change and innovation programmes, he would at his core describe himself as a data-driven business transformation evangelist. What was your route into IT and data management?

Digital transformation

Digital transformation MDM Education Government

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

According to the bill’s author, it was consciously designed to emulate the new European General Data Protection Regulation (GDPR) that went into effect on May 25, and if and when it goes into effect, it would constitute the broadest privacy law in the United States. Specific categories defined as personal information include.

GDPR

GDPR Privacy Sales Data breaches

California Enacts Broad Privacy Protections Modeled on GDPR

Data Matters

JUNE 29, 2018

According to the bill’s author, it was consciously designed to emulate the new European General Data Protection Regulation (GDPR) that went into effect on May 25, and if and when it goes into effect, it would constitute the broadest privacy law in the United States. Specific categories defined as personal information include.

GDPR

GDPR Privacy Sales Data breaches

FTC Hosts Workshop on Informational Injury

Hunton Privacy

DECEMBER 15, 2017

Injuries 101 : The first panel discussed negative outcomes that arise from unauthorized access to and misuse of consumers’ personal data. Potential Factors in Assessing Injury : The second panel discussed potential factors in assessing consumer injury, including types of injury, magnitude and the sensitivity of consumer data.

Privacy

Privacy Retail Risk Insurance

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

The new right to be forgotten will allow children to enjoy their childhood without having every personal event, achievement, failure, antic or prank that they posted online to be digitally recorded for ever more. Perhaps the Government could respond on that point. change it substantially.

GDPR

GDPR Personal data Government IT

State Post Bureau of China Releases Draft Normative Rules Involving Personal Information Protection for Public Comment

Hunton Privacy

DECEMBER 20, 2013

In light of the emergence of markets that trade in personal information in a variety of fields, however, imposing regulations on the handling of personal information solely in the postal sector is insufficient and regulation of other sectors where opportunities to sell personal information is needed.

e-Delivery

e-Delivery Information Security Security Marketing

Catches of the Month: Phishing Scams for November 2022

IT Governance

NOVEMBER 7, 2022

Welcome to our November 2022 review of phishing attacks, in which we explore the latest email scams and the tactics that cyber criminals use to trick people into handing over personal data. Elsewhere, we assess data breaches at a cancer research facility and the US retailer Bed Bath & Beyond. Get started.

Phishing

Phishing Retail Data breaches Insurance

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

IT Governance

JANUARY 23, 2024

Source (New) Real estate USA Yes 46,906 Hampton-Newport News Community Services Board Source 1 ; source 2 ; source 3 (New) Healthcare USA Yes 44,312 Air Methods Source 1 ; source 2 (New) Healthcare USA Yes 34,016 GREYHOURS Source (New) Retail France Yes 18,700 Groveport Madison Schools Source 1 ; source 2 ; source 3 (Update) Education USA Yes 15.5

Data Privacy

Data Privacy Privacy Manufacturing Retail

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

IT Governance

DECEMBER 11, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Compromised information includes patients’ personal data, health and medical records, financial data, internal emails and software source code. Data breached: 5 TB.

Data Privacy

Data Privacy Energy and Utilities Privacy Manufacturing

My Experience at the Washington DC Masters Conference

eDiscovery Daily

MAY 1, 2024

By Rick Clark The Masters Conference in Washington, DC, on April 17th, 2024, was a bustling event with crowded sessions throughout the day. The agenda featured a diverse range of topics, such as Modern Data, Link Files, eDiscovery Case Law, and Artificial Intelligence, making it an exceptional experience for attendees.

Artificial Intelligence

Artificial Intelligence Privacy Data Privacy e-Discovery

Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition

Security Affairs

APRIL 2, 2023

LockBit leaks data stolen from the South Korean National Tax Service Italy’s Data Protection Authority temporarily blocks ChatGPT over privacy concerns CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog Hackers are actively exploiting a flaw in the Elementor Pro WordPress plugin Cyber Police of Ukraine (..)

Security

Security Artificial Intelligence Data breaches Ransomware

Catches of the Month: Phishing Scams for April 2022

IT Governance

APRIL 5, 2022

Welcome to our March 2022 review of phishing attacks, in which we explore the latest email scams and the tactics that cyber criminals use to trick people into handing over their personal data. You can help educate your staff with IT Governance’s Phishing Staff Awareness Training Programme. Get started.

Phishing

Phishing Passwords Education Personal data

When are schools required to report personal data breaches?

National AI Strategy: The UK Government Publishes Its Artificial Intelligence Strategy for the Next Decade

Webinars

Trending Sources

Two FTC complaints that over-retention of personal data violates Section 5

Webinars

News alert: NCA’s Data Privacy Week webinars highlight data protection for consumers, businesses

Cybersecurity Awareness Month: Resilient Multi-factor Authentication (MFA) and Strong Passwords

What are you doing for Data Privacy Week?

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

Prometheus and Grief – two new emerging ransomware gangs targeting enterprises. Mexican Government data is published for sale.

Top 3 reasons to attend Quest EMPOWER 2022

Catches of the Month: Phishing Scams for October 2022

CHINA: new Anti-Espionage Law and its impact on your China data and operations – how your organisation should respond

‘Mother of All Breaches’: 26 BILLION Records Leaked

France: The CNIL publishes a practical guide on Data Protection Officers

Why is the GDPR still something I should be concerned about?

Catches of the Month: Phishing Scams for May 2023

Are Retailers Shopping for a Cybersecurity Breach?

Catches of the Month: Phishing Scams for December 2022

What is a Cyberattack? Types and Defenses

China Issues Draft of Personal Information Protection Law

How to Take Your Business to The Next Level with Data Intelligence

A 6-step guide to surviving data breaches

Six eDiscovery Trends for 2024

ICYMI –December in privacy and cybersecurity

Serbian Commissioner Emphasizes Data Protection Awareness

Weekly podcast: Grammarly, Infraud and Octoly

Ransomware attacks hit 105 US local governments in 2022

eDiscovery and the GDPR: Ready or Not, Here it Comes: eDiscovery Best Practices

2022 Cyber Security Review of the Year

Hunton & Williams Advises Serbian Commissioner on Data Protection Law

eDiscovery and the GDPR: Ready or Not, Here it Comes, Part Three: eDiscovery Best Practices

PIPL: A Game Changer for Companies in China

California Privacy Law Overhaul – Proposition 24 Passes

#ModernDataMasters: Carl Smith, PZ Cussons

California Enacts Broad Privacy Laws Modeled on GDPR

California Enacts Broad Privacy Protections Modeled on GDPR

FTC Hosts Workshop on Informational Injury

The debate on the Data Protection Bill in the House of Lords

State Post Bureau of China Releases Draft Normative Rules Involving Personal Information Protection for Public Comment

Catches of the Month: Phishing Scams for November 2022

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

My Experience at the Washington DC Masters Conference

Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition

Catches of the Month: Phishing Scams for April 2022

Stay Connected