Encryption, Financial Services and Privacy - Information Management Today

DEEP TECH NEWS: Respecting individual rights by using ‘privacy preserving aggregate statistics’

The Last Watchdog

JANUARY 28, 2024

To sell us more goods and services, the algorithms of Google, Facebook and Amazon exhaustively parse our digital footprints. Related: The role of ‘attribute based encryption’ There’s nothing intrinsically wrong with companies seeking to better understand their customers.

Privacy

Privacy Data Privacy GDPR Personal data

DORA: 1 year to go! Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds

Thales Cloud Protection & Licensing

JANUARY 16, 2024

Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds madhav Wed, 01/17/2024 - 05:46 The Digital Operational Resilience Act (DORA) will apply to the EU financial sector from 17 January 2025. As set out in its Article 2, DORA applies to the entire financial services sector.

Financial Services

Financial Services Cloud Cybersecurity Encryption

News Alert: Vaultree partners with Tableau to uniquely blend encryption, data visualization

The Last Watchdog

AUGUST 3, 2023

3, 2023 — Vaultree, a cybersecurity leader pioneering Fully Functional Data-In-Use Encryption (FFDUE), today announces a strategic integration with Tableau, a renowned platform for data visualization and business intelligence. San Francisco and Cork, Ireland, Aug. Today, we’re making that future a reality.”

Encryption

Encryption Analytics Data Privacy Cybersecurity

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

CHINA: New draft proposes more stringent requirements for processing data in the financial services industry

DLA Piper Privacy Matters

AUGUST 8, 2023

Access controls, storage media, backups, encryption, transfer controls and retention period must be determined based on the category, grade and level of Regulated Data. The Draft Measures reflects PBOC’s approach in implementing the DSL requirements within the financial services industry.

Financial Services

Financial Services Personal data Compliance Data collection

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. GDPR, the EU’s flagship data privacy and “right to be forgotten” regulation, has made the stakes of a data breach higher than ever. GDPR-style data privacy laws came to the U.S. with the California Consumer Privacy Act (CCPA) effective Jan.

Data Privacy

Data Privacy Compliance Privacy Security

GUEST ESSAY: 7 tips for protecting investor data when it comes to alternative asset trading

The Last Watchdog

JULY 11, 2023

Related: Preserving the privacy of the elderly As more traders and investors engage in these investment avenues, it is crucial to adopt robust security measures to safeguard sensitive and regulated information. Implement strong data encryption. Here are seven tips to protect investor data in alternative asset trading.

IT

IT Encryption Risk Financial Services

The Week in Cyber Security and Data Privacy: 6 – 12 November 2023

IT Governance

NOVEMBER 13, 2023

Customer data, which was encrypted, was reported to be unaffected. The post The Week in Cyber Security and Data Privacy: 6 – 12 November 2023 appeared first on IT Governance UK Blog. Records breached: 79,582 Ontario hospitals update: information relating to 5.6 That’s it for this week’s round-up. We hope you found it useful.

Data Privacy

Data Privacy Privacy Security Data breaches

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services

Financial Services Cybersecurity Insurance Risk

Protecting Sensitive Data with Luna Key Broker for Microsoft Double Key Encryption

Thales Cloud Protection & Licensing

APRIL 1, 2021

Protecting Sensitive Data with Luna Key Broker for Microsoft Double Key Encryption. Thales has integrated its Luna HSMs with DKE for Microsoft 365, which work together to enable organizations to protect their most sensitive data while maintaining full control of their encryption keys. Thu, 04/01/2021 - 14:04.

Encryption

Encryption Compliance Cloud GDPR

Slack Launched Encryption Key Addon For Businesses

Security Affairs

MARCH 18, 2019

Slack announced today to launch encryption keys that will help businesses to protect their data. Slack announced today to launch encryption keys that will help businesses to protect their data. One of the main reason why companies are launching security centric features is, they value their customer’s data, privacy and security.

Encryption

Encryption Risk Financial Services Privacy

Navigating the digital wave: Understanding DORA and the role of confidential computing

IBM Big Data Hub

FEBRUARY 5, 2024

The Digital Operational Resilience Act (DORA) marks a significant milestone in the European Union’s (EU) efforts to bolster the operational resilience of the financial sector in the digital age. Furthermore, the RTS Article 6 highlights the necessity for all networked traffic, both internal and external, to be encrypted.

Encryption

Encryption Data Privacy Compliance Cloud

IBM Cloud delivers enterprise sovereign cloud capabilities

IBM Big Data Hub

FEBRUARY 22, 2024

We strongly believe the influx of data associated with AI will fuel tremendous business innovations, but requires strategic considerations, including around where data resides, data privacy, resilience, operational controls, regulatory requirements and compliance, and certifications.

Cloud

Cloud Computer and Electronics Compliance Financial Services

How Jamworks protects confidentiality while integrating AI advantages

IBM Big Data Hub

JANUARY 12, 2024

Robust encryption, granular access controls and privacy-preserving techniques become imperative to counter the risks of unauthorized data access and use. Technical assurance makes certain your cloud provider cannot access your data based on technical proof, data encryption and runtime isolation.

Cloud

Cloud Data Privacy Encryption Privacy

5 things to know: Driving innovation with AI and hybrid cloud in the year ahead

IBM Big Data Hub

DECEMBER 18, 2023

For organizations of all types—and especially those in highly regulated industries such as financial services, government, healthcare and telco—considerations including the rise of generative AI, evolving regulations and data sovereignty laws and ongoing security challenges must be top of mind.

Cloud

Cloud Financial Services Compliance Digital transformation

Delivering security and scalability in today’s business landscape requires more than setting up a front line of defense

IBM Big Data Hub

DECEMBER 14, 2023

Minimizing breaches and vulnerabilities As more enterprises adopt technologies to help solve their data security and privacy concerns, the lifecycle of a security breach becomes more integral to the overall financial impact to the organization.

Cloud

Cloud Security Data breaches Cybersecurity

FTC Seeks Comment on Proposed Changes to its GLBA Safeguards and Privacy Rules

Data Matters

MARCH 12, 2019

Over the last few years, States have enacted increasingly aggressive legislation concerning data privacy and security, raising concerns that companies will be subject to a patchwork of different standards. Other Notable Changes. The proposed changes would amend the Rule to reflect this change.

Privacy

Privacy IT Information Security Insurance

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Thales Cloud Protection & Licensing

JANUARY 11, 2023

Security & Compliance for SAP Data in Financial Services. Financial services companies keep some of their most valuable data in SAP applications, triggering the need for both additional security and taking steps toward meeting compliance requirements. Key Findings from 2022 Global Data Threat Report. Stay tuned!

Compliance

Compliance Cloud Security Financial Services

Navigating the EU-US Data Protection Framework

Thales Cloud Protection & Licensing

JANUARY 10, 2024

Navigating the EU-US Data Protection Framework sparsh Thu, 01/11/2024 - 05:26 On 10 July 2023, the European Commission adopted a new adequacy decision regarding the Data Privacy Framework (“DPF”). This follows the invalidation of the EU-US Privacy Shield, by the Court of Justice of the European Union on 16 July 2020.

Data Privacy

Data Privacy Personal data Privacy Cloud

5 things to know: IBM Cloud’s mission to accelerate innovation for clients

IBM Big Data Hub

AUGUST 1, 2023

With IBM Cloud for Financial Services , a first-of-its-kind cloud with built-in controls informed by the industry, we are working to help clients on their missions to mitigate this risk, positioning financial services and other regulated industries to host applications and workloads in the cloud in a secured environment.

Financial Services

Financial Services Computer and Electronics Cloud Digital transformation

NYDFS Cybersecurity Regulations: A glimpse into the future

Thales Cloud Protection & Licensing

NOVEMBER 27, 2018

The cybersecurity regulation ( 23 NYCRR 500 ) adopted by the New York State Department of Financial Services (NYDFS) is nearly two years old. Leading up to that date, companies have had to meet several milestones including hiring a CISO, encrypting all its non-public consumer data and enabling multi-factor authentication.

Cybersecurity

Cybersecurity Financial Services Encryption Data Privacy

The Many Challenges of a Multi-Cloud Business Environment

Thales Cloud Protection & Licensing

OCTOBER 27, 2021

As a result, nearly half (46%) of global respondents agree that ‘it is more complex to manage privacy and data protection regulations in a cloud environment than on-premises’. Smaller organizations favored the use of cloud security tools and encryption. Who’s responsible for encryption and key management?

Cloud

Cloud Encryption Financial Services Authentication

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

Rather than bringing substantial changes to the existing China data privacy framework, the PIPL helpfully consolidates and clarifies obligations on processing of personal information at a national law level. To be clear, this is not China’s own GDPR.

Data Privacy

Data Privacy Privacy Compliance Analytics

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp.

Cybersecurity

Cybersecurity Insurance Phishing Financial Services

Collibra Data Intelligence: tackle 2023’s biggest data challenges

Collibra

JANUARY 31, 2023

The impact of regulation Growing regulation makes data privacy, protection, and transparency non-negotiable. Privacy and protection regulations are growing in numerous industries (such as financial services) and geographic regions (including the EU, Australia, California, and Nevada). And the noise keeps getting louder.

Digital transformation

Digital transformation Data Privacy Privacy Cloud

Tackling Data Sovereignty with DDR

Security Affairs

JUNE 20, 2023

Data sovereignty also encompasses the rights and regulations governing data storage, processing, and transfer and often intersects with privacy, security, and legal considerations. It employs encryption, tokenization, and data masking to ensure that sensitive information remains protected throughout its lifecycle, both in transit and at rest.

Compliance

Compliance Cybersecurity Risk Encryption

Q&A: Here’s how Google’s labeling HTTP websites “Not Secure” will strengthen the Internet

The Last Watchdog

AUGUST 15, 2018

In a move to blanket the Internet with encrypted website traffic, Google is moving forward with its insistence that straggling website publishers adopt HTTPS Secure Sockets Layer (SSL). It’s true that most financial services and big-name shopping websites have long ago moved to HTTPS. Related: How PKI can secure IoT.

Security

Security Encryption Authentication Financial Services

New York SHIELD Act $600,000 settlement

Data Protection Report

FEBRUARY 8, 2022

EyeMed’s privacy policy stated that the company would “follow generally accepted industry standards to protect the personal information submitted to us, and to guard that information against loss, misuse or alteration. EyeMed notified affected individuals and offered credit monitoring, fraud consultation, identity theft restoration.

Passwords

Passwords Financial Services Authentication Insurance

FTC amendment to Safeguards Rule

Data Protection Report

NOVEMBER 1, 2023

The only exemptions are “blind data” that contain no personal identifiers or publicly available information; and Customer information will be considered to be “unencrypted” in situations in which the encryption key was also accessed without authorization, regardless of whether the customer information was encrypted.

Encryption

Encryption Cybersecurity Data breaches Financial Services

Confidential Containers with Red Hat OpenShift Container Platform and IBM® Secure Execution for Linux

IBM Big Data Hub

JANUARY 10, 2024

This unique capability is designed for workloads that have strong data sovereignty, regulatory or data privacy requirements. So that records and sensitive medical data are encrypted and processed securely, protecting against data leaks and unauthorized access.

Security

Security Cloud Data Privacy Financial Services

2024 Tech and Cybersecurity Forecast: Navigating New Frontiers in Business

Thales Cloud Protection & Licensing

DECEMBER 20, 2023

This enhances data privacy and security and allows for greater control and efficiency in AI application deployment within the enterprise. To ensure data integrity and network security, businesses must adopt more sophisticated security protocols, including advanced encryption methods and AI-driven threat detection systems.

Cybersecurity

Cybersecurity Blockchain Artificial Intelligence Encryption

Marriott Breach: More than 500 Million Guest Affected

Adam Levin

NOVEMBER 30, 2018

Regis, Westin, Sheraton, W Hotels or anywhere else that operates on Marriot’s Starwood guest reservation database, it’s time to redouble your cybersecurity and privacy efforts, because this compromise is one of biggest we’ve seen—dwarfed only by the Yahoo breach that affected 2 billion users. Manage the damage.

Financial Services

Financial Services Encryption Passwords Communications

Healthcare Organizations Need to Adapt Their Data Protection Policies to the New Threat Environment

Thales Cloud Protection & Licensing

NOVEMBER 16, 2020

According to the report, almost all (97%) of financial services organizations store data in the cloud. These tools include smart technology-oriented solutions like encryption and tokenization. The survey data revealed that encryption and tokenization rates remain low. of total budget.

Digital transformation

Digital transformation Encryption Cloud Data breaches

Top 12 Cloud Security Best Practices for 2021

eSecurity Planet

SEPTEMBER 10, 2021

Does the provider encrypt data while in transit and at rest? Specifically, these tools address a number of security requirements, including patch management , endpoint encryption, VPNs , and insider threat prevention among others. Encrypt data in motion and at rest. Encryption is a key part of any cloud security strategy.

Cloud

Cloud Security Encryption Risk

Tokenization: Ready for Prime Time

Thales Cloud Protection & Licensing

JULY 9, 2018

Financial Services. In financial services, anti-money laundering initiatives require analyzing data while maintaining privacy and security for PII, but also being able to securely return to the original data for post-analysis follow-up. Encryption and Tokenization.

Digital transformation

Digital transformation Financial Services Encryption Insurance

Blockchain, Cybersecurity and Global Finance

Hunton Privacy

SEPTEMBER 30, 2015

In the near future, blockchain may become the new architecture of a reinvented global financial services infrastructure. Blockchain’s potential for disruptive innovation within the financial services industry and beyond is great. It will be greater still if network security remains foremost in mind.

Blockchain

Blockchain Cybersecurity Financial Services Encryption

CENTRAL BANK DIGITAL CURRENCIES

Thales Cloud Protection & Licensing

FEBRUARY 27, 2023

Government & Central Banks Central banks are exploring the use of central bank digital currencies as a way to take advantage of the benefits of cryptocurrencies for economic growth, while also minimizing the potential risks to financial stability: 1. This could ultimately benefit banks by reducing the risk of financial instability.

Financial Services

Financial Services Access Risk Security

China: Navigating China episode 16: New data lifecycle guidelines for financial institutions in China – detailed assessments, additional security measures and some data localisation introduced

DLA Piper Privacy Matters

APRIL 20, 2021

This introduces a data lifecycle security framework, and represents the key guideline for handling personal and other financial information by financial institutions (i.e. similar to the PIS Specification, but focused on the banking and financial services industry). Level 1: public data.

Compliance

Compliance Security Financial Services Data collection

CIPL Publishes Discussion Paper on Digital Assets and Privacy

Hunton Privacy

JANUARY 20, 2023

On January 20, 2023, The Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth published “Digital Assets and Privacy,” a discussion paper compiling insights from workshops with CIPL member companies that explored the intersection of privacy and digital assets, with a particular focus on blockchain technology.

Paper

Paper Blockchain Privacy Financial Services

NYDFS Files First Cybersecurity Enforcement Action

Hunton Privacy

JULY 24, 2020

On Wednesday, July 22, the New York Department of Financial Services (the “NYDFS”) announced that it had filed administrative charges against First American Title Insurance Co. under the NYDFS Cybersecurity Regulation , marking the agency’s first enforcement action since the rules went into effect in March 2017. NYCRR 500.14(b):

Cybersecurity

Cybersecurity Risk Financial Services Insurance

What is credential stuffing? And how to prevent it?

Security Affairs

MARCH 29, 2022

Earmarked by the FBI as a particular threat to the financial service industry just over a year ago, the increase of internet traffic, data breaches and API usage all contribute to the perfect conditions for successful credential stuffing attacks. She has written for Bora , Venafi, Tripwire and many other sites. .

IT

IT Passwords Authentication Data Privacy

Transition period under New York Cybersecurity Regulation ends March 1, 2019

Data Protection Report

JANUARY 7, 2019

The two-year transitional period under the New York State Department of Financial Services (“DFS””) Cybersecurity Regulation , 23 NYCRR 500 (the “Regulation”), will expire on March 1, 2019, with the final remaining requirement becoming effective.

Cybersecurity

Cybersecurity Compliance Financial Services Risk

DOL Puts Plan Sponsors and Other Fiduciaries on Notice: ERISA Requires Appropriate Precautions to Mitigate Cybersecurity Threats

Data Matters

APRIL 20, 2021

The post DOL Puts Plan Sponsors and Other Fiduciaries on Notice: ERISA Requires Appropriate Precautions to Mitigate Cybersecurity Threats appeared first on Data Matters Privacy Blog.

Cybersecurity

Cybersecurity Insurance Risk Compliance

Turning Aspiration into Action to Protect Financial Institutions

Thales Cloud Protection & Licensing

DECEMBER 4, 2019

Data security professionals also make ambitious plans, but implementation rates are too low – a key finding in the 2019 Thales Data Threat Report-Financial Services Edition. Here’s a look at four common issues highlighted in the 2019 Thales Data Threat Report-Financial Services Edition and tips for overcoming them.

Financial Services

Financial Services Encryption Cloud Digital transformation

New York Publishes FAQs and Key Dates for Cybersecurity Regulation

Hunton Privacy

APRIL 27, 2017

Earlier this month, the New York State Department of Financial Services (“NYDFS”) recently published FAQs and key dates for its cybersecurity regulation (the “NYDFS Regulation”) for financial institutions that became effective on March 1, 2017. September 3, 2018 – the eighteen month transitional period ends.

Cybersecurity

Cybersecurity Compliance Financial Services Insurance

DEEP TECH NEWS: Respecting individual rights by using ‘privacy preserving aggregate statistics’

DORA: 1 year to go! Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds

Webinars

Trending Sources

News Alert: Vaultree partners with Tableau to uniquely blend encryption, data visualization

Webinars

CHINA: New draft proposes more stringent requirements for processing data in the financial services industry

Security Compliance & Data Privacy Regulations

GUEST ESSAY: 7 tips for protecting investor data when it comes to alternative asset trading

The Week in Cyber Security and Data Privacy: 6 – 12 November 2023

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Protecting Sensitive Data with Luna Key Broker for Microsoft Double Key Encryption

Slack Launched Encryption Key Addon For Businesses

Navigating the digital wave: Understanding DORA and the role of confidential computing

IBM Cloud delivers enterprise sovereign cloud capabilities

How Jamworks protects confidentiality while integrating AI advantages

5 things to know: Driving innovation with AI and hybrid cloud in the year ahead

Delivering security and scalability in today’s business landscape requires more than setting up a front line of defense

FTC Seeks Comment on Proposed Changes to its GLBA Safeguards and Privacy Rules

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Navigating the EU-US Data Protection Framework

5 things to know: IBM Cloud’s mission to accelerate innovation for clients

NYDFS Cybersecurity Regulations: A glimpse into the future

The Many Challenges of a Multi-Cloud Business Environment

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Collibra Data Intelligence: tackle 2023’s biggest data challenges

Tackling Data Sovereignty with DDR

Q&A: Here’s how Google’s labeling HTTP websites “Not Secure” will strengthen the Internet

New York SHIELD Act $600,000 settlement

FTC amendment to Safeguards Rule

Confidential Containers with Red Hat OpenShift Container Platform and IBM® Secure Execution for Linux

2024 Tech and Cybersecurity Forecast: Navigating New Frontiers in Business

Marriott Breach: More than 500 Million Guest Affected

Healthcare Organizations Need to Adapt Their Data Protection Policies to the New Threat Environment

Top 12 Cloud Security Best Practices for 2021

Tokenization: Ready for Prime Time

Blockchain, Cybersecurity and Global Finance

CENTRAL BANK DIGITAL CURRENCIES

China: Navigating China episode 16: New data lifecycle guidelines for financial institutions in China – detailed assessments, additional security measures and some data localisation introduced

CIPL Publishes Discussion Paper on Digital Assets and Privacy

NYDFS Files First Cybersecurity Enforcement Action

What is credential stuffing? And how to prevent it?

Transition period under New York Cybersecurity Regulation ends March 1, 2019

DOL Puts Plan Sponsors and Other Fiduciaries on Notice: ERISA Requires Appropriate Precautions to Mitigate Cybersecurity Threats

Turning Aspiration into Action to Protect Financial Institutions

New York Publishes FAQs and Key Dates for Cybersecurity Regulation

Stay Connected