2016, Events and GDPR - Information Management Today

Europe: EDPB Guidelines on calculation of fines under GDPR – a case of evolution, not revolution?

DLA Piper Privacy Matters

MAY 23, 2022

A draft set of EDPB guidelines on the calculation of administrative fines under the GDPR is likely to lead to some further consistency among supervisory authorities on how fines are calculated – however, if adopted, the guidance leaves clear room for the current divergent approaches to continue.

GDPR

GDPR Personal data Risk IT

The Impact of Data Protection Laws on Your Records Retention Schedule

ARMA International

APRIL 18, 2022

Countries and organizations within the European Union (EU), must comply with the requirements of the General Data Protection Regulation (GDPR) 1. Many countries outside of the EU have created and implemented their own data protection laws that are similar to the GDPR 2. 2016/679 (EU, April 27). 2016/679, Art. 2 DLA Piper.

Personal data

Personal data GDPR Privacy Records Management

Cyber-insurance – 72 hours for the insured party to file a criminal complaint: GDPR’s false friend

Data Protection Report

MARCH 21, 2023

12-10-1 into the French Insurance code. 12-10-1 ended up having a much broader scope, as it is now to apply to all forms of cyberattacks and to many cyber-security incidents. Under the GDPR, the 72 hour time limit starts from the knowledge of a personal data breach, which may be identified days after compromise of the system.

Insurance

Insurance Data breaches Personal data GDPR

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Article 29 Working Party Published Guidelines on Transparency under the GDPR

Hunton Privacy

DECEMBER 20, 2017

On December 12, 2017, the Article 29 Working Party (“Working Party”) published its guidelines on transparency under Regulation 2016/679 (the “Guidelines”). The Guidelines aim to provide practical guidance and clarification on the transparency obligations introduced by the EU General Data Protection Regulation (“GDPR”).

GDPR

GDPR Personal data Privacy Communications

FRANCE: ONE MORE STEP TO ENSURE CONSISTENCY OF THE NEW FRENCH DATA PROTECTION LAW

DLA Piper Privacy Matters

JANUARY 21, 2019

On 12 December 2018, the French Government issued an ordinance [1] finalizing, at the legislative level [2] , the alignment of the French Data Protection Law (“FDPL”) with the General Data Protection Regulation [3] (“GDPR”) and the Directive 2016/680 [4].

GDPR

GDPR Personal data Communications Government

EU Council Agrees on Proposed ePrivacy Regulation

Data Matters

MARCH 10, 2021

Unlike the EU General Data Protection Regulation 2016/679 (GDPR), the ePrivacy legal framework applies only to electronic communications data — which may include both personal and non-personal data and is in that respect broader in scope than the GDPR.

GDPR

GDPR Metadata Communications Privacy

BELGIUM: NEW DATA PROTECTION COMMISSIONER

DLA Piper Privacy Matters

MARCH 28, 2019

Drawing up the list of processing operations that require an impact analysis with regard to data protection (DPIA) and giving advice in the context of a DPIA (in the event of prior consultation for high-risk processing activities) to a controller are part of its executive tasks. Prior to that, Hielke served for 12 years at the EDPS, a.o.

GDPR

GDPR Privacy Analytics Personal data

UK: Supreme Court judgment in Morrisons – employer not vicariously liable for data breach

DLA Piper Privacy Matters

APRIL 1, 2020

The Court of Appeal held that, whilst Mr Skelton had the intention of harming his employer, there was both: (i) an unbroken thread that connected his employment to the unlawful disclosure; and (ii) a seamless and continuous sequence of events that lead to the data being leaked. Implications for employers.

Data breaches

Data breaches GDPR Personal data Information governance

Weekly podcast: 2018 end-of-year roundup

IT Governance

DECEMBER 13, 2018

This week, in our last podcast of the year, we revisit some of the biggest information security stories from the past 12 months. As is now traditional, I’ve installed myself in the porter’s chair next to the fire in the library, ready to recap some of the year’s more newsworthy information security events. million payment cards and 1.2

Data breaches

Data breaches Personal data Access GDPR

Litigate or Settle? Info You Need to Make Case Decisions: eDiscovery Best Practices

eDiscovery Daily

JUNE 24, 2018

Tom has also written several terrific informational overview series for CloudNine, including eDiscovery and the GDPR: Ready or Not, Here it Comes (which we covered as a webcast ), Understanding eDiscovery in Criminal Cases (which we also covered as a webcast ), ALSP – Not Just Your Daddy’s LPO , Why Is TAR Like a Bag of M&M’s?

Paper

Paper GDPR Education IT

UK: How real is the threat of data protection group litigation in the UK?

DLA Piper Privacy Matters

NOVEMBER 6, 2018

In the run up to the implementation of the EU General Data Protection Regulation 2016/679, there were various dystopian predictions of huge fines and the rise of US style class action. Defendants may also prefer to agree quantum to avoid having to pay their opponents’ legal fees in the event a court sides with the claimant.

Insurance

Insurance Data breaches Personal data GDPR

The Burden of Privacy In Discovery

Data Matters

SEPTEMBER 29, 2021

To pick just two recent examples of the latter, the EU’s General Data Protection Regulation1 (GDPR) and the California Consumer Privacy Act2 (CCPA) both impose sweeping requirements on businesses with the aim of increasing consumers’ privacy and control over how their personal data is used. L119/1), [link]. Code § 1798.100. 5 Advisory Comm.

Privacy

Privacy e-Discovery Computer and Electronics e-Delivery

2017 Retrospective

Troy Hunt

JANUARY 1, 2018

" I've just re-read my 2016 retrospective and to the point about progress, I'm pretty stoked about what I've done since then ?? The focus on shorter local trips is more apparent when you see I went from 9 trips in 2016 to 17 trips in 2017. Here's how I feel about 2017: Blogging.

IT

IT Mining Libraries Analytics

EUROPE: ECJ and responsibility for personal data processing on Facebook fan pages

DLA Piper Privacy Matters

JUNE 13, 2018

The case itself was in the regime of Directive 95/46/ES [3] (the “original directive”), however, as the definitions of data controller and data processor are identical in both the original directive and EU General Data Protection Regulation (GDPR) [4] , the conclusions are fully applicable in the current GDPR regime as well.

Personal data

Personal data GDPR Privacy Risk

A Decade of Have I Been Pwned

Troy Hunt

DECEMBER 3, 2023

These are often mainstream news events and what reporters often want to impart to people is along the lines of "Here's what you should do if you've been impacted", which often boils down to checking HIBP. How does the little site with the weird name end up in the press? And then ensured could never happen again.

Data breaches

Data breaches Passwords Sales IT

Top Cybersecurity Companies for 2021

eSecurity Planet

AUGUST 13, 2021

IBM offers plenty of cybersecurity solutions, including Security Information and Event Management (SIEM), orchestration and incident response platform, cloud security and lots more. Appearances on eSecurity Planet ‘s Top Vendors lists: 12. Security information and event management (SIEM). Founded: 2016.

Cybersecurity

Cybersecurity Cloud Encryption Marketing

Top Cybersecurity Startups to Watch in 2022

eSecurity Planet

JANUARY 11, 2022

Deduce offers actionable identity intelligence through event-level telemetry to act against abnormal user activity. Series A Evervault 2018 Dublin, Ireland 12 $19.4 Series A SolCyber 2017 Dallas, TX 12 $20.0 Series D OneTrust 2016 Atlanta, GA 2,000 $926.4 Best DevOps and AppSec Startups. Seed Wabbi 2018 Boston, MA 14 $2.2

Cybersecurity

Cybersecurity Cloud Compliance Analytics

Belgium: Digital fingerprints on ID cards – no violation of the right to privacy according to the Belgian Constitutional Court

DLA Piper Privacy Matters

JANUARY 18, 2021

Furthermore, the Court stated that all these objectives constitute “reasons of substantial public interests” in the sense of Article 9(1), g) GDPR, thus allowing for the processing of these biometric data. The right to respect of private life and to protection of personal data, however, is not an absolute right.

Privacy

Privacy GDPR Risk Personal data

Information Management Today

Europe: EDPB Guidelines on calculation of fines under GDPR – a case of evolution, not revolution?

The Impact of Data Protection Laws on Your Records Retention Schedule

Webinars

Trending Sources

Cyber-insurance – 72 hours for the insured party to file a criminal complaint: GDPR’s false friend

Webinars

Article 29 Working Party Published Guidelines on Transparency under the GDPR

FRANCE: ONE MORE STEP TO ENSURE CONSISTENCY OF THE NEW FRENCH DATA PROTECTION LAW

EU Council Agrees on Proposed ePrivacy Regulation

BELGIUM: NEW DATA PROTECTION COMMISSIONER

UK: Supreme Court judgment in Morrisons – employer not vicariously liable for data breach

Weekly podcast: 2018 end-of-year roundup

Litigate or Settle? Info You Need to Make Case Decisions: eDiscovery Best Practices

UK: How real is the threat of data protection group litigation in the UK?

The Burden of Privacy In Discovery

2017 Retrospective

EUROPE: ECJ and responsibility for personal data processing on Facebook fan pages

A Decade of Have I Been Pwned

Top Cybersecurity Companies for 2021

Top Cybersecurity Startups to Watch in 2022

Belgium: Digital fingerprints on ID cards – no violation of the right to privacy according to the Belgian Constitutional Court

Stay Connected