Events, Financial Services, Insurance and Personal data

Events

Financial Services

Insurance

Personal data

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp. Since Carnival was licensed by the Department to sell insurance in NY State, it was treated as a covered entity under the Cybersecurity Regulation.

Cybersecurity

Cybersecurity Insurance Phishing Financial Services

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. NYDFS: Setting a new bar for state cybersecurity regulation.

Insurance

Insurance Cybersecurity Data breaches Financial Services

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Trending Sources

NYDFS settles with EyeMed for $4.5 million

Data Protection Report

OCTOBER 24, 2022

On October 18, 2022, the New York Department of Financial Services announced a settlement with EyeMed, a licensed life, accident, and health insurer, with respect to a security incident that occurred in 2020. Proper disposal processes minimize the amount of NPI accessible to an unauthorized third party during a Cyber Event.”

Cybersecurity

Cybersecurity Personal data Risk Financial Services

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

The Impact of Data Protection Laws on Your Records Retention Schedule

ARMA International

APRIL 18, 2022

Introduction to Data Protection Laws. Data protection laws, regulations, and rules control the collection, use, transfer, and storage of personal and sensitive information. Personal data protection requirements may be issued by federal, state (provincial), or local governments.

Personal data

Personal data GDPR Privacy Records Management

(Discussion Recap) A Perfect Storm? Panel Discussion on Handling a Cybersecurity Incident

HL Chronicle of Data Protection

MARCH 16, 2020

On Tuesday, 3 March 2020, we welcomed our financial services clients in London to a lively panel event, which covered the multitude of issues which arise in a cybersecurity incident. Peter Marta. Arwen Handley. Philip Parish. Nicola Fulford.

Cybersecurity

Cybersecurity Financial Services Risk Insurance

What is a Cyberattack? Types and Defenses

eSecurity Planet

JUNE 16, 2022

Crimeware is a type of malware that cyber criminals use to commit identity theft or gain financial information to execute transactions. Other techniques to steal personal data include the use of keyloggers that record all keystrokes and can reveal information. Security information and event management (SIEM).

Ransomware

Ransomware Cybersecurity Phishing Encryption

FRANCE: CNIL adopts new single authorization on fraud prevention systems

DLA Piper Privacy Matters

SEPTEMBER 29, 2017

The French data protection authority (CNIL) has just adopted Single Authorization No. AU-054 (the “AU-054”) on July 13, 2017 in order to cover the processing of personal data implemented in relation to these fraud prevention/detection systems. 311-2 of the Code Monétaire et Financier. .

Personal data

Personal data Financial Services Risk Insurance

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

Instead the PIPL is a robust data privacy framework designed to safeguard individuals’ personal data against abuse, but at the same time to reflect cultural and business attitudes to data in China, as well as new technologies (including advances in AI, biometrics and data analytics), and to enable flows of personal data.

Data Privacy

Data Privacy Privacy Compliance Analytics

Sorting Through the Whirlwind of News on the Proposed Equifax Settlement and Capital One Breach

ARMA International

AUGUST 2, 2019

with Equifax in connection with a 2017 data breach that exposed sensitive, personal data of around 147 million people. According to the FTC’s press release, the data breach included “names and dates of birth, Social Security numbers, physical addresses, and other personal information that could lead to identity theft and fraud.”

Cloud

Cloud Data breaches Encryption Access

Privacy and Cybersecurity Top 10 for 2018

Data Matters

JANUARY 2, 2018

The May 25, 2018 effective date for the EU’s General Data Protection Regulation (GDPR) will no doubt be a central focus of 2018. Europe’s omnibus new framework for data protection law applies to (almost) all entities that collect and process EU personal data regardless of where the data are processed.

Cybersecurity

Cybersecurity Privacy Data breaches GDPR

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

IT Governance

DECEMBER 11, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Compromised information includes patients’ personal data, health and medical records, financial data, internal emails and software source code. and Robert W.

Data Privacy

Data Privacy Energy and Utilities Privacy Manufacturing

ICYMI – Late December in privacy and cybersecurity

Data Protection Report

JANUARY 30, 2023

3. Does an insurance policy that covers direct physical loss or damage to media cover the situation where ransomware renders downloaded software useless because it could not be decrypted? to report this event to the Department within 72 hours of its being discovered.”) Which one is NOT on the list? 7. a (Yes).

Privacy

Privacy Cybersecurity Personal data Insurance

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

IT Governance

JANUARY 23, 2024

Source (New) Real estate USA Yes 46,906 Hampton-Newport News Community Services Board Source 1 ; source 2 ; source 3 (New) Healthcare USA Yes 44,312 Air Methods Source 1 ; source 2 (New) Healthcare USA Yes 34,016 GREYHOURS Source (New) Retail France Yes 18,700 Groveport Madison Schools Source 1 ; source 2 ; source 3 (Update) Education USA Yes 15.5

Data Privacy

Data Privacy Privacy Manufacturing Retail

Information Management Today

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

Webinars

Trending Sources

NYDFS settles with EyeMed for $4.5 million

Webinars

The Impact of Data Protection Laws on Your Records Retention Schedule

(Discussion Recap) A Perfect Storm? Panel Discussion on Handling a Cybersecurity Incident

What is a Cyberattack? Types and Defenses

FRANCE: CNIL adopts new single authorization on fraud prevention systems

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

Sorting Through the Whirlwind of News on the Proposed Equifax Settlement and Capital One Breach

Privacy and Cybersecurity Top 10 for 2018

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

ICYMI – Late December in privacy and cybersecurity

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

Stay Connected