Events, Financial Services and Personal data - Information Management Today

Events

Financial Services

Personal data

NY Department of Financial Services Issues Guidance to Regulated Entities Regarding Cybersecurity During the COVID-19 Pandemic

Hunton Privacy

APRIL 22, 2020

On April 13, 2020, the New York Department of Financial Services (“NYDFS”) issued guidance (“April guidance”) to all New York State entities covered under NYDFS’s cybersecurity regulation regarding assessing and addressing heightened cybersecurity risks due to the COVID-19 pandemic.

Financial Services

Financial Services Cybersecurity Risk Phishing

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp. Since Carnival was licensed by the Department to sell insurance in NY State, it was treated as a covered entity under the Cybersecurity Regulation.

Cybersecurity

Cybersecurity Insurance Phishing Financial Services

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Launching LLM-Based Products: From Concept to Cash in 90 Days

Driving Responsible Innovation: How to Navigate AI Governance & Data Privacy

MORE WEBINARS

Trending Sources

NYDFS Fines EyeMed $4.5 Million for Cybersecurity Violations

Hunton Privacy

OCTOBER 24, 2022

On October 18, 2022, the New York State Department of Financial Services (“NYDFS”) announced that EyeMed Vision Care LLC (“EyeMed”) agreed to a $4.5

Cybersecurity

Cybersecurity Financial Services Risk Phishing

Webinars

Launching LLM-Based Products: From Concept to Cash in 90 Days

Driving Responsible Innovation: How to Navigate AI Governance & Data Privacy

MORE WEBINARS

The Impact of Data Protection Laws on Your Records Retention Schedule

ARMA International

APRIL 18, 2022

Introduction to Data Protection Laws. Data protection laws, regulations, and rules control the collection, use, transfer, and storage of personal and sensitive information. Personal data protection requirements may be issued by federal, state (provincial), or local governments.

Personal data

Personal data GDPR Privacy Records Management

What (currently ignored) privacy area might result in early enforcement action when the GDPR is in force?

Data Protector

JANUARY 29, 2017

So, what should be done to reduce the likelihood of such an event? The GDPR is (apparently) going to require data controllers to be more transparent about their records retention policies. The potential fine for not informing individuals, as their personal data is being collected, about retention periods is of course significant.

GDPR

GDPR Privacy Compliance Personal data

NYDFS settles with EyeMed for $4.5 million

Data Protection Report

OCTOBER 24, 2022

On October 18, 2022, the New York Department of Financial Services announced a settlement with EyeMed, a licensed life, accident, and health insurer, with respect to a security incident that occurred in 2020. Proper disposal processes minimize the amount of NPI accessible to an unauthorized third party during a Cyber Event.”

Cybersecurity

Cybersecurity Personal data Risk Financial Services

(Discussion Recap) A Perfect Storm? Panel Discussion on Handling a Cybersecurity Incident

HL Chronicle of Data Protection

MARCH 16, 2020

On Tuesday, 3 March 2020, we welcomed our financial services clients in London to a lively panel event, which covered the multitude of issues which arise in a cybersecurity incident. Peter Marta. Arwen Handley. Philip Parish. Nicola Fulford.

Cybersecurity

Cybersecurity Financial Services Risk Insurance

What is a Cyberattack? Types and Defenses

eSecurity Planet

JUNE 16, 2022

Crimeware is a type of malware that cyber criminals use to commit identity theft or gain financial information to execute transactions. Other techniques to steal personal data include the use of keyloggers that record all keystrokes and can reveal information. Security information and event management (SIEM).

Ransomware

Ransomware Cybersecurity Phishing Encryption

Webinar Invitation — Operationalizing the California Consumer Privacy Act

HL Chronicle of Data Protection

JUNE 14, 2019

As the first broad-based state law on consumers’ personal data in the U.S., The California Consumer Privacy Act of 2018 (CCPA) has been described as groundbreaking, watershed, and unprecedented since its passage on June 28, 2018.

Privacy

Privacy GDPR Compliance Financial Services

Data Protection and the Draft EU-UK Withdrawal Agreement: Ten Initial Conclusions

HL Chronicle of Data Protection

NOVEMBER 15, 2018

This news should unquestionably be welcomed by international businesses that are looking for both certainty and consistency in the measures they have to take to protect personal data. What constitutes personal data that is subject to the withdrawal agreement is currently unclear. Transition period.

GDPR

GDPR Personal data Government Financial Services

The UK ICO’s Regulatory Sandbox Points to a Future of Pro-Active Engagement

HL Chronicle of Data Protection

JULY 9, 2019

The ICO intends to use its own Sandbox to support organisations that are looking to use personal data in innovative ways through the use of new technologies and approaches. In the UK financial services industry, the Financial Conduct Authority (FCA) introduced a regulatory sandbox in 2015.

GDPR

GDPR Personal data Privacy Financial Services

What is credential stuffing? And how to prevent it?

Security Affairs

MARCH 29, 2022

Earmarked by the FBI as a particular threat to the financial service industry just over a year ago, the increase of internet traffic, data breaches and API usage all contribute to the perfect conditions for successful credential stuffing attacks. In that event, you should probably also change your password.

IT Passwords Authentication Data Privacy

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

HL Chronicle of Data Protection

MAY 13, 2019

For example, the New York Department of Financial Services (‘NYDFS’) in March 2017 issued its Cybersecurity Regulation (23 NYCRR 500) (‘the NYDFS Cybersecurity Regulation’), a groundbreaking and far-reaching regulatory regime focused on financial institutions licensed in New York, including insurance companies.

Insurance

Insurance Cybersecurity Data breaches Financial Services

FRANCE: CNIL adopts new single authorization on fraud prevention systems

DLA Piper Privacy Matters

SEPTEMBER 29, 2017

The French data protection authority (CNIL) has just adopted Single Authorization No. AU-054 (the “AU-054”) on July 13, 2017 in order to cover the processing of personal data implemented in relation to these fraud prevention/detection systems. The broad range of personal data that can be processed under the AU-054.

Personal data

Personal data Financial Services Risk Insurance

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

Instead the PIPL is a robust data privacy framework designed to safeguard individuals’ personal data against abuse, but at the same time to reflect cultural and business attitudes to data in China, as well as new technologies (including advances in AI, biometrics and data analytics), and to enable flows of personal data.

Data Privacy

Data Privacy Privacy Compliance Analytics

The Economy of Things: the next value lever for telcos

IBM Big Data Hub

JULY 11, 2023

And what is the role telecommunications service providers play in enabling and scaling the EoT? Register for our LinkedIn Live event on telcos and the Economy of Things The Economy of Things has arrived The EoT is enabled by artificial intelligence, data, IoT and blockchain, bringing liquidity to the IoT.

IoT

IoT Artificial Intelligence Agriculture Blockchain

Sorting Through the Whirlwind of News on the Proposed Equifax Settlement and Capital One Breach

ARMA International

AUGUST 2, 2019

with Equifax in connection with a 2017 data breach that exposed sensitive, personal data of around 147 million people. According to the FTC’s press release, the data breach included “names and dates of birth, Social Security numbers, physical addresses, and other personal information that could lead to identity theft and fraud.”

Cloud

Cloud Data breaches Encryption Access

Capital Markets, AI, and the need for governance

Collibra

OCTOBER 31, 2023

With business and technology leaders from around the globe exploring how data fuels the industry, and presentations on everything related to accelerating financial data pipelines and delivering data in the cloud, the event offered executive thought leadership on emerging technologies. Already using AI?

Marketing

Marketing Government Financial Services Artificial Intelligence

Privacy and Cybersecurity Top 10 for 2018

Data Matters

JANUARY 2, 2018

The May 25, 2018 effective date for the EU’s General Data Protection Regulation (GDPR) will no doubt be a central focus of 2018. Europe’s omnibus new framework for data protection law applies to (almost) all entities that collect and process EU personal data regardless of where the data are processed.

Privacy

Privacy Cybersecurity Data breaches GDPR

Network Encryption Keeps Our Data in Motion Secure for Business Services

Thales Cloud Protection & Licensing

JULY 24, 2023

Data-in-motion encryption is vital to all businesses but let’s explore some verticals in the private sector, each with its own requirements and needs for protecting data in motion. Financial Services Financial organizations operate in a highly regulated environment and undergo frequent audits to prove compliance.

Business Services

Business Services Encryption Security Manufacturing

ICYMI – Late December in privacy and cybersecurity

Data Protection Report

JANUARY 30, 2023

to report this event to the Department within 72 hours of its being discovered.”) Which one is NOT on the list? 7. a (Yes). In the Matter of Coinbase , Consent Order, ¶ 67 (Jan. Coinbase was required by 23 NYCRR § 500.17 8. b.

Privacy

Privacy Cybersecurity Personal data Insurance

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

IT Governance

DECEMBER 11, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Compromised information includes patients’ personal data, health and medical records, financial data, internal emails and software source code.

Data Privacy

Data Privacy Energy and Utilities Privacy Manufacturing

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

IT Governance

JANUARY 23, 2024

Source (New) Real estate USA Yes 46,906 Hampton-Newport News Community Services Board Source 1 ; source 2 ; source 3 (New) Healthcare USA Yes 44,312 Air Methods Source 1 ; source 2 (New) Healthcare USA Yes 34,016 GREYHOURS Source (New) Retail France Yes 18,700 Groveport Madison Schools Source 1 ; source 2 ; source 3 (Update) Education USA Yes 15.5

Data Privacy

Data Privacy Privacy Manufacturing Security

Keeping Customer Data Safe: AI's Privacy Paradox

Thales Cloud Protection & Licensing

MARCH 14, 2024

Putting Personal Data at Risk The results were not all positive, however. The Thales study highlighted how nearly six out of ten (57%) of global consumers were anxious that brands using generative AI would be putting their personal data at risk.

Privacy

Privacy Data Privacy Risk Analytics

List of data breaches and cyber attacks in September 2021 – 91 million records breached

IT Governance

SEPTEMBER 30, 2021

Hacked hospital patients’ data ‘not important’ (bangkokpost.com) (10,000). Nevada Restaurant Services, Inc. Provides Notice Of Data Privacy Event | | djournal.com (0). Desorden Group claims to have stolen 200 GB of data from ABX Express (databreaches.net) (15,000,000).

Data breaches

Data breaches Ransomware Financial Services Privacy

NY Department of Financial Services Issues Guidance to Regulated Entities Regarding Cybersecurity During the COVID-19 Pandemic

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Webinars

Trending Sources

NYDFS Fines EyeMed $4.5 Million for Cybersecurity Violations

Webinars

The Impact of Data Protection Laws on Your Records Retention Schedule

What (currently ignored) privacy area might result in early enforcement action when the GDPR is in force?

NYDFS settles with EyeMed for $4.5 million

(Discussion Recap) A Perfect Storm? Panel Discussion on Handling a Cybersecurity Incident

What is a Cyberattack? Types and Defenses

Webinar Invitation — Operationalizing the California Consumer Privacy Act

Data Protection and the Draft EU-UK Withdrawal Agreement: Ten Initial Conclusions

The UK ICO’s Regulatory Sandbox Points to a Future of Pro-Active Engagement

What is credential stuffing? And how to prevent it?

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

FRANCE: CNIL adopts new single authorization on fraud prevention systems

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

The Economy of Things: the next value lever for telcos

Sorting Through the Whirlwind of News on the Proposed Equifax Settlement and Capital One Breach

Capital Markets, AI, and the need for governance

Privacy and Cybersecurity Top 10 for 2018

Network Encryption Keeps Our Data in Motion Secure for Business Services

ICYMI – Late December in privacy and cybersecurity

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

Keeping Customer Data Safe: AI's Privacy Paradox

List of data breaches and cyber attacks in September 2021 – 91 million records breached

Stay Connected