Education, GDPR and Security - Information Management Today

Data breaches grow across UK education sector

IT Governance

NOVEMBER 29, 2018

A recent freedom of information request by chartered accountants UHY Hacker Young reveals a worrying rise in reported data breaches across the UK education sector. The government’s Cyber Essentials scheme helps organisations guard against the most common cyber threats and demonstrate commitment to cyber security.

Education

Education Data breaches GDPR Government

Government surveying further education providers before Brexit

IT Governance

SEPTEMBER 24, 2019

Among the uncertainty surrounding GDPR (General Data Protection Regulation) compliance – particularly with Brexit complicating things – the UK government has been a reliable source for advice. The GDPR and Brexit. Meanwhile, IT Governance has a wide selection of tools and services to help the education sector meet its requirements.

Education

Education Government GDPR Compliance

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S. PIPL Raises the Bar – And the Stakes.

Data Privacy

Data Privacy Compliance Privacy Security

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Sign up for the new education sector email updates

IT Governance

AUGUST 2, 2018

To support the wider education sector with data protection and cyber security, we are launching a sector specific email newsletter and blog series. To sign-up, send us ideas of what you would like us to cover or questions for us to answer, please leave complete this form and choose education as your sector. How to sign up.

Education

Education GDPR Data breaches Government

Italian Garante Fines Bank 600,000 Euros for Pre-GDPR Data Breach

Hunton Privacy

JULY 1, 2020

The Italian Data Protection Authority ( Garante per la protezione dei dati personali , “Garante”) recently announced that it levied a €600,000 fine on banking institution UniCredit for several violations of the Italian Personal Data Protection Code, in its pre-General Data Protection Regulation (“GDPR”) form.

Data breaches

Data breaches GDPR Personal data Education

Exploiting GDPR to Get Private Information

Schneier on Security

AUGUST 13, 2019

A researcher abused the GDPR to get information on his fiancee: It is one of the first tests of its kind to exploit the EU's General Data Protection Regulation (GDPR) , which came into force in May 2018. Generally if it was an extremely large company -- especially tech ones -- they tended to do really well," he told the BBC.

GDPR

GDPR Education Compliance IT

Building cyber security careers

IT Governance

OCTOBER 21, 2021

The need for experienced and qualified cyber security professionals is a highlight of Cybersecurity Career Awareness Week , led by NICE (National Initiative for Cybersecurity Education). Cyber security focuses on protecting computer systems from unauthorised access or being otherwise damaged. Build your cyber security career.

Security

Security Information Security GDPR Data Privacy

More than half of schools not compliant with the GDPR

IT Governance

MAY 2, 2019

In a recent survey from edtech giant RM Learning and Trend Micro , 14% of respondents also admitted to not having a clear plan to become compliant with the GDPR (General Data Protection Regulation). Despite this, 46% cited a lack of security awareness as one of the biggest challenges in complying with data protection regulations.

GDPR

GDPR Data breaches Compliance Phishing

Building the human firewall: Navigating behavioral change in security awareness and culture

IBM Big Data Hub

APRIL 15, 2024

Organizations have spent millions developing and implementing cutting-edge technologies to bolster their defenses against such threats, and many already have security awareness campaigns, so why are we failing to stop these attacks? However, there is one major weakness with this approach: the programs don’t consider human behavior.

Security awareness

Security awareness Security Cybersecurity Phishing

Does your use of CCTV comply with the GDPR?

IT Governance

OCTOBER 3, 2019

You might be surprised to learn that CCTV footage is subject to the GDPR (General Data Protection Regulation). Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant. Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant.

GDPR

GDPR Privacy Retail Personal data

7 steps to highly effective GDPR compliance

IT Governance

AUGUST 21, 2019

The GDPR (General Data Protection Regulation) hasn’t exactly crept up unnoticed over the past year or so, but it’s still caught many organisations by surprise. Meanwhile, although the specifics of Brexit are still unclear, one thing is certain: whatever happens, UK-based organisations will be subject to the GDPR’s requirements.

GDPR

GDPR Compliance Personal data Access

Has the GDPR helped spark public interest in security?

IT Governance

JULY 25, 2018

One overlooked side-effect of the GDPR (General Data Protection Regulation) is the extent to which data privacy and information security have become widely discussed. Although many of those emails weren’t actually necessary, it certainly encouraged the public to take more of an interest. Discussion is good.

GDPR

GDPR Phishing Security Data Privacy

The GDPR: A year in review

IT Governance

MAY 23, 2019

A year ago this week, the GDPR (General Data Protection Regulation) took effect, promising to revolutionise information security. In the first half of 2018, it was practically impossible to avoid news stories about the GDPR, the majority of which focused on the potential for hefty administrative fines for non-compliance.

GDPR

GDPR Data breaches Compliance Retail

GDPR: How the definition of personal data has changed

IT Governance

APRIL 10, 2019

On 25 May 2018, the EU’s GDPR (General Data Protection Regulation) superseded the UK’s DPA (Data Protection Act) 1998. Let’s start with the circumstances under which the processing of personal data must meet the GDPR’s requirements. DPO as a service (GDPR). This blog has been updated to reflect industry updates.

Personal data

Personal data GDPR Education Government

How the CCPA and GDPR Are Different

KnowBe4

SEPTEMBER 10, 2019

The California Consumer Privacy Act (CCPA) was introduced just a month after the European Union instituted the General Data Protection Regulation (GDPR), earning the CCPA the nickname of “California’s GDPR.”. While the GDPR has been in effect since May of 2018, the CCPA is on track to become effective on January 1, 2020.

GDPR

GDPR Privacy Personal data Passwords

Is your school GDPR-compliant? Use our checklist to find out

IT Governance

MARCH 28, 2019

At the recent ASCL (Association of School and College Leaders) conference , a guest said to us: “The GDPR ? Granted, 2018 was very much ‘the year of the GDPR’ in some circles. GDPR compliance in schools. Schools have a particularly hard time of it when it comes to the GDPR. Wasn’t that last year?”.

GDPR

GDPR Compliance Data breaches Personal data

How to implement a GDPR staff awareness training programme

IT Governance

OCTOBER 29, 2018

When organisations look to initiate a GDPR compliance programme, the ‘people’ factor is often overlooked. Yet staff awareness and education are key components of any organisation’s GDPR compliance framework. . Staff awareness training for the GDPR does not mean simply briefing your employees about the Regulation.

GDPR

GDPR Compliance Security awareness Education

How to implement a GDPR staff awareness training programme

IT Governance

OCTOBER 29, 2018

When organisations look to initiate a GDPR compliance programme, the ‘people’ factor is often overlooked. Yet staff awareness and education are key components of any organisation’s GDPR compliance framework. . Staff awareness training for the GDPR does not mean simply briefing your employees about the Regulation.

GDPR

GDPR Compliance Security awareness Education

Top 5 Cloud security challenges, risks and threats

IT Governance

NOVEMBER 24, 2021

But as is often the case with technological solutions, the benefits of convenience comes with security risks. In this blog, we look at the top five Cloud security challenges that organisations face, and provide tips on how to overcome them. Data breaches. The website is simply designed to look like the real thing.

Cloud

Cloud Risk Security Data breaches

Government survey reveals GDPR awareness is falling short

IT Governance

FEBRUARY 8, 2018

The Cyber Security Breaches Survey 2018 from the Department for Digital, Culture, Media and Sport (DCMS) has revealed that only 38% of businesses and 44% of charities have heard of the General Data Protection Regulation (GDPR). Are your staff aware of the GDPR? Don’t let your staff be your downfall.

GDPR

GDPR Government Education Compliance

Why is the GDPR still something I should be concerned about?

IT Governance

OCTOBER 15, 2018

The EU’s GDPR (General Data Protection Regulation) superseded all laws based on the EU’s Data Protection Directive, including the UK’s Data Protection Act 1998, on 25 May 2018. Some organisations believe that a simple privacy notice is all that is required, but the GDPR actually demands far more than that. . GDPR complexities .

GDPR

GDPR Data breaches Personal data Data collection

How to manage the growing costs of cyber security

IT Governance

SEPTEMBER 1, 2021

Cyber security is becoming an expensive endeavour for organisations – and in many cases, the costs are so high that they can’t deal with threats appropriately. However, it’s one thing to want to invest in cyber security, but something else entirely to set aside the budget to do so. What is cyber security as a service?

Security

Security GDPR Cloud Insurance

Are your staff GDPR trained? Find out what you need to do

IT Governance

OCTOBER 30, 2018

Staff awareness training is a core component of GDPR compliance, yet many organisations haven’t implemented the necessary measures. For all the attention that organisations pay to information security, the biggest threat continues to come from employees. Staff training under the GDPR.

GDPR

GDPR Government Data breaches Information Security

Are your staff GDPR trained? Find out what you need to do

IT Governance

OCTOBER 30, 2018

Staff awareness training is a core component of GDPR compliance, yet many organisations haven’t implemented the necessary measures. For all the attention that organisations pay to information security, the biggest threat continues to come from employees. Staff training under the GDPR.

GDPR

GDPR Government Data breaches Information Security

GDPR priorities in the lead up to May

IT Governance

MARCH 1, 2018

GDPR compliance should be a priority and high on every organisation’s agenda with only three months until the regulation comes into effect on 25 May 2018. Training – make sure those responsible for the project are trained on implementing the GDPR in the workplace.

GDPR

GDPR Compliance Privacy Data breaches

62% of organisations unaware of the GDPR

IT Governance

FEBRUARY 23, 2018

There is an alarming lack of awareness across all industries about the EU General Data Protection Regulation (GDPR) , according to a government survey. As you would expect, larger organisations were more likely to be aware of the GDPR. Preparing for the GDPR. The survey split respondents into businesses and charities.

GDPR

GDPR Compliance Insurance Personal data

IaaS Security: Top 8 Issues & Prevention Best Practices

eSecurity Planet

DECEMBER 19, 2023

Infrastructure as a service security is a concept that assures the safety of organizations’ data, applications, and networks in the cloud. Understanding the risks, advantages, and best practices connected with IaaS security is becoming increasingly important as enterprises shift their infrastructure to the cloud.

Security

Security Cloud Encryption Authentication

The Week in Cyber Security and Data Privacy: 1 – 7 January 2024

IT Governance

JANUARY 9, 2024

LockBit claims responsibility for Capital Health security incident The LockBit ransomware group has claimed responsibility for an attack on Capital Health , a healthcare provider in Pennington, New Jersey, last November. They accessed 41.5 The compromised data allegedly includes names, email addresses and phone numbers.

Data Privacy

Data Privacy Privacy Manufacturing Data breaches

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Thales Cloud Protection & Licensing

JANUARY 11, 2023

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List. Throughout 2022, Thales hosted more than 40 webinars on a wide variety of cybersecurity topics, including, cloud security, data sovereignty, compliance, data threat trends, and rethinking approaches to role-based authentication.

Compliance

Compliance Cloud Security Financial Services

What is Cyber Security Awareness and Why is it Important?

IT Governance

MAY 27, 2021

For all the talk of criminal hacking, ransomware infections and the technologies to prevent them, the key to protecting your organisation is cyber security awareness training. The importance of cyber security staff awareness. Cyber security awareness best practices. Consider how your employees work.

Security awareness

Security awareness IT Security GDPR

Spanish Senate signs-off new GDPR-compliant Data Protection Act

DLA Piper Privacy Matters

NOVEMBER 21, 2018

After a very long delay and amidst rumors that the Spanish Parliament could be dissolved and early elections called, the Spanish Senate speedily dismissed all the proposals for further changes and approved the new GDPR-compliant Spanish Data Protection Act on Wednesday 21 November 2018.

GDPR

GDPR Personal data Access Education

Wake up to the reality of the GDPR: What you need to know about compliance

IT Governance

JANUARY 30, 2019

With a mammoth GDPR fine handed out to Google last week, it’s time for organisations to reassess their understanding of the Regulation. We’re through the eye of the GDPR (General Data Protection Regulation) storm. The GDPR concerns personal data that is: Collected in an enterprise context; and. Some began to lose faith.

GDPR

GDPR Compliance Personal data Data breaches

What UK charities need to know about GDPR compliance

IT Governance

AUGUST 2, 2019

If you think that charities might be shown lenience under the GDPR (General Data Protection Regulation) , you’re wrong. The breach was reported to the ICO (Information Commissioner’s Office), which oversees GDPR compliance in the UK, and Mermaids is now subject to disciplinary action. What are charities’ GDPR requirements?

GDPR

GDPR Compliance Personal data Risk

GUEST ESSAY: Top 5 cyber exposures tied to the rising use of international remote workforces

The Last Watchdog

AUGUST 23, 2021

With many employees now working remotely, securing company data isn’t as straightforward as it used to be. International workforces can be an excellent way to find top talent, but they can introduce unique security risks. Countries have different data security laws, and these can get in the way of one another.

Communications

Communications Cybersecurity GDPR Risk

Victims of Blackbaud ransomware attack to take legal action

IT Governance

SEPTEMBER 24, 2020

Blackbaud, which provides education administration, fundraising and financial management support, was attacked earlier this year, with cyber criminals accessing victims’: Names; Dates of birth; Addresses; Phone numbers; Email addresses; Donation history; and Events that individuals attended. Do they have a case? they have suffered distress).

Ransomware

Ransomware Data breaches Education GDPR

HMRC forced to delete 5 million voice records after GDPR gaffe

IT Governance

MAY 9, 2019

HMRC (HM Revenue and Customs) has been told to delete more than five million people’s voice records after it was discovered that the way the information was collected breached the GDPR (General Data Protection Regulation). The organisation changed the way it obtained consent in October 2018, which the ICO says now complies with the GDPR.

GDPR

GDPR Personal data Education Passwords

Universities across the UK and North America confirm cyber attack

IT Governance

JULY 28, 2020

Blackbaud, which provides education administration, fundraising and financial management software, was infected with ransomware, giving cyber criminals access to a wealth of sensitive information. At least eight educational institutions in the US and Canada were also affected, as well as several charities on both sides of the Atlantic.

GDPR

GDPR Education Ransomware Data breaches

Move Over Google, Here May Be Your New Largest GDPR Fine: Data Privacy Trends

eDiscovery Daily

JULY 15, 2019

In January, we covered the first big fine for failing to comply with Europe’s General Data Protection Regulation (GDPR) when France’s data protection regulator, the Commission nationale de l’informatique et des libertés (CNIL), issued a €50 million fine (about $56.8 million ) fine to Google for failing to comply with GDPR.

GDPR

GDPR Data Privacy Privacy Data breaches

ICO statistics show increase in reported incidents ahead of GDPR

IT Governance

MAY 22, 2018

The Information Commissioner’s Office’s (ICO) latest statistics on data security incidents have revealed a 17% increase in the number of reported data security incidents in Q4 2017-18. Source: ICO Data Security Trends Q4 2017-18. Source: ICO Data Security Trends Q4 2017-18. Better protect your information assets.

GDPR

GDPR Information Security Data breaches Education

Weekly podcast: MyHeritage, PageUp, Rochester Grammar School and, yes, the GDPR

IT Governance

JUNE 8, 2018

This week, we discuss the compromise of 92 million MyHeritage users’ credentials, “unauthorised activity” at PageUp, a missing memory stick at Rochester Grammar School, and the first couple of weeks of the GDPR. The Information Commissioner’s Office has been notified, as required by the GDPR. Here are this week’s stories.

GDPR

GDPR Passwords Authentication Information Security

We Finally Have Our First Big GDPR Fine: Data Privacy Trends

eDiscovery Daily

JANUARY 22, 2019

As covered in Fortune ( France Fines Google $57 Million For GDPR Violations , written by Emily Price), France’s data protection regulator, the Commission nationale de l’informatique et des libertés (CNIL), has issued a €50 million fine (about $56.8 million ) fine to Google for failing to comply with GDPR. So, what do you think?

GDPR

GDPR Data Privacy Privacy Education

British Council exposed 144,000 files containing student details?

Security Affairs

FEBRUARY 1, 2022

The British Council is a British organisation specialising in international cultural and educational opportunities. It operates in over 100 countries: promoting a wider knowledge of the United Kingdom and the English language; encouraging cultural, scientific, technological and educational co-operation with the United Kingdom.

Education

Education Phishing GDPR Passwords

The 14 Cloud Security Principles explained

IT Governance

DECEMBER 9, 2021

Cloud security is an essential part of today’s cyber security landscape. To mitigate these risks, the NCSC (National Cyber Security Centre) created the Cloud Security Principles , which outline 14 guidelines for protecting information stored online.

Cloud

Cloud Security Authentication Risk

Small and Medium Businesses Day: Tips on Securing the Backbone of National Economies

Thales Cloud Protection & Licensing

JUNE 26, 2023

Small and Medium Businesses Day: Tips on Securing the Backbone of National Economies madhav Tue, 06/27/2023 - 05:46 The United Nations General Assembly designated 27 June as Micro-, Small, and Medium-sized Enterprises Day to raise awareness of these businesses’ contribution to national economies. Strong access control through MFA 2.

Security

Security Encryption Cloud Cybersecurity

Data breaches grow across UK education sector

Government surveying further education providers before Brexit

Webinars

Trending Sources

Security Compliance & Data Privacy Regulations

Webinars

Sign up for the new education sector email updates

Italian Garante Fines Bank 600,000 Euros for Pre-GDPR Data Breach

Exploiting GDPR to Get Private Information

Building cyber security careers

More than half of schools not compliant with the GDPR

Building the human firewall: Navigating behavioral change in security awareness and culture

Does your use of CCTV comply with the GDPR?

7 steps to highly effective GDPR compliance

Has the GDPR helped spark public interest in security?

The GDPR: A year in review

GDPR: How the definition of personal data has changed

How the CCPA and GDPR Are Different

Is your school GDPR-compliant? Use our checklist to find out

How to implement a GDPR staff awareness training programme

How to implement a GDPR staff awareness training programme

Top 5 Cloud security challenges, risks and threats

Government survey reveals GDPR awareness is falling short

Why is the GDPR still something I should be concerned about?

How to manage the growing costs of cyber security

Are your staff GDPR trained? Find out what you need to do

Are your staff GDPR trained? Find out what you need to do

GDPR priorities in the lead up to May

62% of organisations unaware of the GDPR

IaaS Security: Top 8 Issues & Prevention Best Practices

The Week in Cyber Security and Data Privacy: 1 – 7 January 2024

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

What is Cyber Security Awareness and Why is it Important?

Spanish Senate signs-off new GDPR-compliant Data Protection Act

Wake up to the reality of the GDPR: What you need to know about compliance

What UK charities need to know about GDPR compliance

GUEST ESSAY: Top 5 cyber exposures tied to the rising use of international remote workforces

Victims of Blackbaud ransomware attack to take legal action

HMRC forced to delete 5 million voice records after GDPR gaffe

Universities across the UK and North America confirm cyber attack

Move Over Google, Here May Be Your New Largest GDPR Fine: Data Privacy Trends

ICO statistics show increase in reported incidents ahead of GDPR

Weekly podcast: MyHeritage, PageUp, Rochester Grammar School and, yes, the GDPR

We Finally Have Our First Big GDPR Fine: Data Privacy Trends

British Council exposed 144,000 files containing student details?

The 14 Cloud Security Principles explained

Small and Medium Businesses Day: Tips on Securing the Backbone of National Economies

Stay Connected