Education, Examples and GDPR - Information Management Today

Does your use of CCTV comply with the GDPR?

IT Governance

OCTOBER 3, 2019

You might be surprised to learn that CCTV footage is subject to the GDPR (General Data Protection Regulation). Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant. Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant.

GDPR

GDPR Privacy Retail Personal data

7 steps to highly effective GDPR compliance

IT Governance

AUGUST 21, 2019

The GDPR (General Data Protection Regulation) hasn’t exactly crept up unnoticed over the past year or so, but it’s still caught many organisations by surprise. Meanwhile, although the specifics of Brexit are still unclear, one thing is certain: whatever happens, UK-based organisations will be subject to the GDPR’s requirements.

GDPR

GDPR Compliance Personal data Access

GDPR automated decision-making and profiling: what are the requirements?

IT Governance

NOVEMBER 9, 2018

In addition to data subjects’ rights to be informed, of access, to rectification, to erasure, to restrict processing, to data portability and to object, the EU’s GDPR (General Data Protection Regulation) sets out requirements relating to automated individual decision-making, including profiling. What is profiling under the GDPR?

GDPR

GDPR Personal data Financial Services Compliance

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

GDPR: How the definition of personal data has changed

IT Governance

APRIL 10, 2019

On 25 May 2018, the EU’s GDPR (General Data Protection Regulation) superseded the UK’s DPA (Data Protection Act) 1998. Let’s start with the circumstances under which the processing of personal data must meet the GDPR’s requirements. DPO as a service (GDPR). This blog has been updated to reflect industry updates.

Personal data

Personal data GDPR Education Government

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR, the EU’s flagship data privacy and “right to be forgotten” regulation, has made the stakes of a data breach higher than ever. GDPR-style data privacy laws came to the U.S.

Data Privacy

Data Privacy Compliance Privacy Security

How the CCPA and GDPR Are Different

KnowBe4

SEPTEMBER 10, 2019

The California Consumer Privacy Act (CCPA) was introduced just a month after the European Union instituted the General Data Protection Regulation (GDPR), earning the CCPA the nickname of “California’s GDPR.”. While the GDPR has been in effect since May of 2018, the CCPA is on track to become effective on January 1, 2020.

GDPR

GDPR Privacy Personal data Passwords

Why is the GDPR still something I should be concerned about?

IT Governance

OCTOBER 15, 2018

The EU’s GDPR (General Data Protection Regulation) superseded all laws based on the EU’s Data Protection Directive, including the UK’s Data Protection Act 1998, on 25 May 2018. Some organisations believe that a simple privacy notice is all that is required, but the GDPR actually demands far more than that. . GDPR complexities .

GDPR

GDPR Data breaches Personal data Data collection

Is your school GDPR-compliant? Use our checklist to find out

IT Governance

MARCH 28, 2019

At the recent ASCL (Association of School and College Leaders) conference , a guest said to us: “The GDPR ? Granted, 2018 was very much ‘the year of the GDPR’ in some circles. GDPR compliance in schools. Schools have a particularly hard time of it when it comes to the GDPR. Want help tracking your GDPR compliance?

GDPR

GDPR Compliance Data breaches Personal data

How to implement a GDPR staff awareness training programme

IT Governance

OCTOBER 29, 2018

When organisations look to initiate a GDPR compliance programme, the ‘people’ factor is often overlooked. Yet staff awareness and education are key components of any organisation’s GDPR compliance framework. . Staff awareness training for the GDPR does not mean simply briefing your employees about the Regulation.

GDPR

GDPR Compliance Security awareness Education

How to implement a GDPR staff awareness training programme

IT Governance

OCTOBER 29, 2018

When organisations look to initiate a GDPR compliance programme, the ‘people’ factor is often overlooked. Yet staff awareness and education are key components of any organisation’s GDPR compliance framework. . Staff awareness training for the GDPR does not mean simply briefing your employees about the Regulation.

GDPR

GDPR Compliance Security awareness Education

GUEST ESSAY: Top 5 cyber exposures tied to the rising use of international remote workforces

The Last Watchdog

AUGUST 23, 2021

For example, suppose you have workers in the EU. In that case, you must abide by the General Data Protection Regulation (GDPR), which imposes fines on some activities that are perfectly legal in the U.S. For example, a program most of your employees use to send sensitive information may be unavailable in some countries.

Communications

Communications Cybersecurity GDPR Risk

Has the GDPR helped spark public interest in security?

IT Governance

JULY 25, 2018

One overlooked side-effect of the GDPR (General Data Protection Regulation) is the extent to which data privacy and information security have become widely discussed. For example, the below screenshot shows a friend asking me about a suspicious link. That link ended up sparking a discussion in my friend’s office about phishing.

GDPR

GDPR Phishing Security Data Privacy

Wake up to the reality of the GDPR: What you need to know about compliance

IT Governance

JANUARY 30, 2019

With a mammoth GDPR fine handed out to Google last week, it’s time for organisations to reassess their understanding of the Regulation. We’re through the eye of the GDPR (General Data Protection Regulation) storm. The GDPR concerns personal data that is: Collected in an enterprise context; and. Some began to lose faith.

GDPR

GDPR Compliance Personal data Data breaches

Another example of email misuse

IT Governance

AUGUST 31, 2018

Another week, another example of an email using the Cc (carbon copy) field instead of the Bcc (blind carbon copy) field. To combat and prevent these mistakes and other careless actions, consider educating your employees on the risks and potential consequences of misusing the Cc and Bcc fields. What can you do? .

Data breaches

Data breaches Education Risk Communications

HMRC forced to delete 5 million voice records after GDPR gaffe

IT Governance

MAY 9, 2019

HMRC (HM Revenue and Customs) has been told to delete more than five million people’s voice records after it was discovered that the way the information was collected breached the GDPR (General Data Protection Regulation). A public task : for example, to complete official functions or tasks in the public interest. Explicit and free.

GDPR

GDPR Personal data Education Passwords

Belgian Privacy Commission Issues Guidance on Data Protection Impact Assessments Under the GDPR

Data Matters

APRIL 5, 2018

On 28 February 2018, the Belgian Commission for the Protection of Privacy (the “Privacy Commission”) published a recommendation setting out its approach to Data Protection Impact Assessments (“DPIAs”), and in doing so published a “White List” and a “Black List” of processing operations, pursuant to the General Data Protection Regulation (“GDPR”).

GDPR

GDPR Privacy Personal data Education

What UK charities need to know about GDPR compliance

IT Governance

AUGUST 2, 2019

If you think that charities might be shown lenience under the GDPR (General Data Protection Regulation) , you’re wrong. The breach was reported to the ICO (Information Commissioner’s Office), which oversees GDPR compliance in the UK, and Mermaids is now subject to disciplinary action. What are charities’ GDPR requirements?

GDPR

GDPR Compliance Personal data Risk

AI and AI policy top the agenda at CILIP Supplier Forum

CILIP

MARCH 4, 2024

This article is featured on the AI hub AI policy is set to become the new GDPR, and the release of the UK government’s AI Regulation White Paper this month is accelerating government action on building a legal framework for AI regulation.

Education

Education Paper Risk Libraries

Happy Compliance Officer Day!

Thales Cloud Protection & Licensing

SEPTEMBER 25, 2023

Key responsibilities of a compliance officer typically include: Regulatory Compliance: Monitoring and interpreting laws and regulations that pertain to the industry and the organization, for example, the right to be forgotten. A DPO’s duties are laid out in Article 39 of the GDPR.

Compliance

Compliance GDPR Risk Education

When are schools required to report personal data breaches?

IT Governance

NOVEMBER 17, 2020

Under the GDPR (General Data Protection Regulation) , all personal data breaches must be recorded by the organisation and there should be a clear and defined process for doing so. Alteration of personal data without permission : for example, someone accessing the school’s payroll system and changing staff pay grades.

Personal data

Personal data Data breaches Data collection GDPR

Universities across the UK and North America confirm cyber attack

IT Governance

JULY 28, 2020

Blackbaud, which provides education administration, fundraising and financial management software, was infected with ransomware, giving cyber criminals access to a wealth of sensitive information. At least eight educational institutions in the US and Canada were also affected, as well as several charities on both sides of the Atlantic.

GDPR

GDPR Education Ransomware Data breaches

Top 5 Cloud security challenges, risks and threats

IT Governance

NOVEMBER 24, 2021

As such, the only way to protect your organisation is to educate staff on phishing attacks and teach them what to look out for. This 45-minute course uses real-life examples of scam emails to demonstrate how attackers target individuals, and outlines the steps you should take to avoid falling victim.

Cloud

Cloud Risk Security Data breaches

54% of universities reported a data breach in the past year

IT Governance

AUGUST 18, 2020

According to the study , 46% of university staff haven’t received staff awareness training in the past year, and universities spend just £7,529 a year on average educating their employees. Redscan found a similar lack of investment in training for students. Affordable cyber security. It’s not just universities that need to be concerned.

Data breaches

Data breaches GDPR Education Phishing

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

According to the bill’s author, it was consciously designed to emulate the new European General Data Protection Regulation (GDPR) that went into effect on May 25, and if and when it goes into effect, it would constitute the broadest privacy law in the United States. education information. biometric information. geolocation data.

GDPR

GDPR Privacy Sales Data breaches

Here’s One Way to Comply with GDPR – Block All EU Users: Data Privacy Trends

eDiscovery Daily

MAY 17, 2018

Believe it or not, Europe’s General Data Protection Regulation (GDPR) is set to go into effect in one just one week(!), EU folks seem to be generally supportive of the GDPR and think that companies shutting down service are either stupid & ignorant or evil and thus should shut down. Are you ready for GDPR? on May 25th.

GDPR

GDPR Data Privacy Privacy Archiving

National AI Strategy: The UK Government Publishes Its Artificial Intelligence Strategy for the Next Decade

Data Matters

OCTOBER 21, 2021

Significantly, the UK’s proposed approach may diverge in some respects from the EU’s GDPR. For example, the UK strategy includes consideration of whether to drop Article 22’s restrictions on automated decision-making, and whether to maintain the UK’s current sectoral approach to AI regulation.

Artificial Intelligence

Artificial Intelligence Government Paper IT

Unsure About How to Map Your Data for GDPR? Here are Several Templates to Get Started: Data Privacy Best Practices

eDiscovery Daily

JUNE 3, 2018

Now that Europe’s General Data Protection Regulation (GDPR) is in effect, all organizations out there have a good handle on all of their data, including which personally identifiable information (PII) they handle for European data subjects out there and clear policies for how they ensure protection of that PII. OK, maybe not.

GDPR

GDPR Data Privacy Privacy Big data

France: The CNIL publishes a practical guide on Data Protection Officers

DLA Piper Privacy Matters

NOVEMBER 29, 2021

The guide is in line with the Article 29 Working Party Guidelines on Data Protection Officers (WP 243 rev 01) , but provides additional insights and practical guidance to organizations that designate a DPO in respect of GDPR and French data protection act requirements. Be the point of contact on GDPR issues.

GDPR

GDPR Compliance Personal data Communications

CIPL Submits Comments on Irish DPC’s Guidance on Safeguarding Personal Data of Children

Hunton Privacy

MARCH 30, 2021

CIPL notes that the fundamental approaches of both the Draft Guidance and the ICO Age Appropriate Code have much in common, including a focus on the centrality of the interests of the child as a guiding principle and the adoption of a risk-based approach in some areas.

Personal data

Personal data GDPR Risk Privacy

eDiscovery and the GDPR: Ready or Not, Here it Comes, Part Three: eDiscovery Best Practices

eDiscovery Daily

DECEMBER 7, 2017

Now, Tom has written a terrific informational overview on Europe’s General Data Protection Regulation (GDPR) titled eDiscovery and the GDPR: Ready or Not, Here it Comes. Part Three: eDiscovery and the GDPR. THE BUSINESS OF THE GDPR: CONTROLLER S AND PROCESSOR S. Part One was Monday, Part Two was Wednesday.

GDPR

GDPR e-Discovery IT Personal data

California Enacts Broad Privacy Protections Modeled on GDPR

Data Matters

JUNE 29, 2018

According to the bill’s author, it was consciously designed to emulate the new European General Data Protection Regulation (GDPR) that went into effect on May 25, and if and when it goes into effect, it would constitute the broadest privacy law in the United States. education information. biometric information. geolocation data.

GDPR

GDPR Privacy Sales Data breaches

Six eDiscovery Trends for 2024

eDiscovery Daily

JANUARY 10, 2024

The General Data Protection Regulation (GDPR) is an early example of this. Conversations no longer stay within one platform: they can meander from email to text messages to Teams, for example. This will be challenging in the face of privacy laws like GDPR, which gives people the right to be “forgotten.”

Blockchain

Blockchain Artificial Intelligence Cloud Compliance

How to Prevent Malware Attacks: 8 Tips for 2023

IT Governance

APRIL 5, 2023

For example, they can only spot known types of malware, and according to the AV-Test Institute , almost half a million new types of malware are detected each day. Million Records Breached 3rd April 2023 GDPR Article 17: What Is the Right to Erasure? However, those tools are not flawless. But how exactly does malware work?

Encryption

Encryption Data breaches Phishing Government

What is Cyber Security Awareness and Why is it Important?

IT Governance

MAY 27, 2021

If they fail to adequately protect that information or violate data subject rights – which are protected by the likes of the GDPR (General Data Protection Regulation) – your organisation faces myriad problems. Staff awareness training for the GDPR does not mean simply briefing your employees about the Regulation. 3) Be thorough.

Security awareness

Security awareness IT Security GDPR

5 things HR departments need to know about data protection

IT Governance

OCTOBER 7, 2019

HR plays a crucial role in an organisation’s GDPR (General Data Protection Regulation) compliance. The GDPR outlines six lawful bases that will be appropriate in different circumstances: Consent : the individual agrees to the data processing. A public task : for example, to complete official functions or tasks in the public interest.

GDPR

GDPR Personal data Compliance Communications

The state of European cybersecurity and lessons to learn

Thales Cloud Protection & Licensing

JUNE 12, 2019

Encryption is one clear example of how organisations can be doing more with those fundamentals: as this recap of the event highlights, encryption remains core to building cyber-resilience and a core weakness in cyber-security efforts across the board. The GDPR effect. Overconfidence and the skills gap.

Cybersecurity

Cybersecurity Digital transformation Encryption GDPR

Catches of the Month: Phishing Scams for May 2023

IT Governance

MAY 10, 2023

Elsewhere, there were reports that ChatGPT’s parent company, OpenAI, had breached the GDPR (General Data Protection Regulation) and had been banned in Italy , plus the subsequent reversal of that decision. For example, one bogus site purports to offer ‘ChatGPT detectors’ that help people spot content that has been artificially generated.

Phishing

Phishing Honeypots Education Information Security

Your New Neighborhood Library

Information Governance Perspectives

JANUARY 29, 2024

For example, you can now go to the library for practical resources to learn about starting your small business. He gave us one example of how the privacy domain intersects with libraries. For example, many organizations buy email lists. That resource isn’t just facilitated by checking out a book.

Libraries

Libraries Computer and Electronics Big data Privacy

A Guide to Key Management as a Service

Thales Cloud Protection & Licensing

JUNE 15, 2023

KMaaS can help organizations comply with industry regulations and standards such as the General Data Protection Regulation (GDPR), the Health Insurance Portability and Accountability Act (HIPAA), and the Payment Card Industry Data Security Standard (PCI DSS) by providing secure key lifecycle management and encryption services.

Encryption

Encryption Compliance Cloud Authentication

Analysing Data Breaches Caused by Human Error

IT Governance

DECEMBER 21, 2023

Top 3 sectors by number of accidental breaches Sector Number of accidental breaches 1 Health 1,690 2 Education 1,440 3 Local government 1,348 The table above shows the three sectors breached accidentally most often, in terms of absolute numbers. However, this information is of limited use where we don’t have a denominator.

Data breaches

Data breaches Personal data Government GDPR

How to prepare for the California Consumer Privacy Act

Thales Cloud Protection & Licensing

AUGUST 15, 2019

1, 2020, grants to the state’s over 40 million people a range of rights comparable to the rights given to European citizens with the General Data Protection Regulation (GDPR)–the two legislations are not that similar, but they do share some general features, GDPR is an omnibus law, while CCPA is more limited.

Privacy

Privacy GDPR Digital transformation Sales

Make data protection a 2023 competitive differentiator

IBM Big Data Hub

JANUARY 19, 2023

Data privacy regulations, such as the General Data Protection Regulation (GDPR) in the European Union or the California Consumer Privacy Act (CCPA) in the state of California, are inescapable. Take Apple, for example. The post Make data protection a 2023 competitive differentiator appeared first on Journey to AI Blog.

Data Privacy

Data Privacy Customer Experience Privacy Compliance

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

Data Matters

SEPTEMBER 24, 2019

With its new data protection bill, Barbados is planning to join the ranks; this is a significant move, and it is one fueled at least in part by the entry into force of the European Union’s General Data Protection Regulation (“GDPR”) on May 25, 2018.

Personal data

Personal data GDPR Data Privacy Privacy

CIPL Submits White Paper on Data Subject Rights

Hunton Privacy

JULY 14, 2020

The Paper, titled “Data Subject Rights under the GDPR in a Global Data Driven and Connected World,” was drafted following the EDPB stakeholders’ event on DSR in Brussels on November 4, 2019. provide for a proportionate approach in responding to DSR requests, particularly with regards to the cost to the organization.

Paper

Paper GDPR Education Access

Does your use of CCTV comply with the GDPR?

7 steps to highly effective GDPR compliance

Webinars

Trending Sources

GDPR automated decision-making and profiling: what are the requirements?

Webinars

GDPR: How the definition of personal data has changed

Security Compliance & Data Privacy Regulations

How the CCPA and GDPR Are Different

Why is the GDPR still something I should be concerned about?

Is your school GDPR-compliant? Use our checklist to find out

How to implement a GDPR staff awareness training programme

How to implement a GDPR staff awareness training programme

GUEST ESSAY: Top 5 cyber exposures tied to the rising use of international remote workforces

Has the GDPR helped spark public interest in security?

Wake up to the reality of the GDPR: What you need to know about compliance

Another example of email misuse

HMRC forced to delete 5 million voice records after GDPR gaffe

Belgian Privacy Commission Issues Guidance on Data Protection Impact Assessments Under the GDPR

What UK charities need to know about GDPR compliance

AI and AI policy top the agenda at CILIP Supplier Forum

Happy Compliance Officer Day!

When are schools required to report personal data breaches?

Universities across the UK and North America confirm cyber attack

Top 5 Cloud security challenges, risks and threats

54% of universities reported a data breach in the past year

California Enacts Broad Privacy Laws Modeled on GDPR

Here’s One Way to Comply with GDPR – Block All EU Users: Data Privacy Trends

National AI Strategy: The UK Government Publishes Its Artificial Intelligence Strategy for the Next Decade

Unsure About How to Map Your Data for GDPR? Here are Several Templates to Get Started: Data Privacy Best Practices

France: The CNIL publishes a practical guide on Data Protection Officers

CIPL Submits Comments on Irish DPC’s Guidance on Safeguarding Personal Data of Children

eDiscovery and the GDPR: Ready or Not, Here it Comes, Part Three: eDiscovery Best Practices

California Enacts Broad Privacy Protections Modeled on GDPR

Six eDiscovery Trends for 2024

How to Prevent Malware Attacks: 8 Tips for 2023

What is Cyber Security Awareness and Why is it Important?

5 things HR departments need to know about data protection

The state of European cybersecurity and lessons to learn

Catches of the Month: Phishing Scams for May 2023

Your New Neighborhood Library

A Guide to Key Management as a Service

Analysing Data Breaches Caused by Human Error

How to prepare for the California Consumer Privacy Act

Make data protection a 2023 competitive differentiator

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

CIPL Submits White Paper on Data Subject Rights

Stay Connected