Events, GDPR and Insurance - Information Management Today

CJEU Rules on Processing of Sensitive Data and Compensation Under the GDPR

Hunton Privacy

JANUARY 5, 2024

Background The case related to the processing of an incapacitated employee’s personal data, including health data, by the medical service provider (“MDK”) of a health insurance fund in Germany. Under applicable law, the MDK draws up reports on the capacity of individuals insured by the health insurance fund to work.

GDPR

GDPR Personal data Insurance Access

Cyber-insurance – 72 hours for the insured party to file a criminal complaint: GDPR’s false friend

Data Protection Report

MARCH 21, 2023

2] In this context, the Directorate General of the French Treasury has put forward a plan of action with a view to clarifying the cyber-insurance legal framework, better gauging cyber-risks, and enhancing companies’ awareness as regards cyber-risks. 12-10-1 into the French Insurance code. However, in the end, Article L.12-10-1

Insurance

Insurance Data breaches Personal data GDPR

EUROPE: Are GDPR fines insurable in the countries where you operate?

DLA Piper Privacy Matters

MAY 17, 2018

DLA Piper and Aon have launched a guide ‘ The price of data security ‘, ahead of the General Data Protection Regulation (GDPR), effective from 25 May 2018. The guide reviews the insurability of GDPR fines across Europe, which can reach up to €20 million or, if higher, up to 4% of a group’s annual global turnover.

Insurance

Insurance GDPR Data breaches Personal data

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

AIIM

JULY 24, 2018

You might also be interested in: The Re-Permissioning Dilemma Under GDPR. Data Privacy and Open Data: Secondary Uses under GDPR. Three Critical Steps for GDPR Compliance. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. What Do the GDPR and new Privacy Laws Mean for U.S.

GDPR

GDPR Compliance Privacy Data Privacy

How to Manage Your Cyber Risks

IT Governance

OCTOBER 11, 2022

One of the most common mistakes that organisations make when addressing cyber security is that they consider it a one-off event. Why Cyber Insurance is Essential in 2022. ISO 27001 can also be used as a framework to help organisations achieve GDPR compliance.

Risk

Risk GDPR Information Security Personal data

GUEST ESSAY: A guide to implementing best security practices — before the inevitable breach

The Last Watchdog

OCTOBER 29, 2018

the Health Insurance Portability and Accountability Act (HIPAA)), the answer is generally that a company should implement a “reasonable data privacy and security program” under all circumstances. Insurability. In the absence of a law that contains prescriptive requirements (e.g.,

Security

Security Data Privacy Privacy Data breaches

Keeping Up with New Data Protection Regulations

erwin

APRIL 11, 2019

Keeping up with new data protection regulations can be difficult, and the latest – the General Data Protection Regulation (GDPR) – isn’t the only new data protection regulation organizations should be aware of. Compliance is an on-going requirement, so efforts to become compliant should not be treated as static events.

GDPR

GDPR e-Discovery Compliance Metadata

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

According to the bill’s author, it was consciously designed to emulate the new European General Data Protection Regulation (GDPR) that went into effect on May 25, and if and when it goes into effect, it would constitute the broadest privacy law in the United States. law, consumers and the marketplace have been comfortable with to date.

GDPR

GDPR Privacy Sales Data breaches

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

IT Governance

MAY 7, 2024

Source 1 ; source 2 (Update) Insurance USA Yes 75,101 Airsoftc3.com Source 1 ; source 2 (Update) Insurance USA Yes 75,101 Airsoftc3.com Source (New) Manufacturing USA Yes Unknown Human Events. Under the EU GDPR, the Czech supervisory authority issued a €13.9 Source (New) Media USA Yes Unknown GDI Services, Inc.

Data breaches

Data breaches Education Manufacturing Retail

UK: Liability Limits for GDPR in commercial contracts – the law and recent trends

DLA Piper Privacy Matters

FEBRUARY 7, 2019

Given the potential financial exposure under GDPR, it is no surprise that a great deal of time is being spent working out how to allocate the risk and liability when negotiating commercial contracts. Before we look at limiting liability, we need to first consider how liability can arise in the first place in the context of GDPR.

GDPR

GDPR Risk Data breaches Personal data

eDiscovery and the GDPR: Ready or Not, Here it Comes: eDiscovery Best Practices

eDiscovery Daily

DECEMBER 3, 2017

Now, Tom has written a terrific informational overview on Europe’s General Data Protection Regulation (GDPR) titled eDiscovery and the GDPR: Ready or Not, Here it Comes. Part One: What is the GDPR? Europe’s General Data Protection Regulation (GDPR) is set to take effect in less than 200 days. Here’s the first part.

GDPR

GDPR IT Personal data Privacy

What Is Information Security Management?

IT Governance

FEBRUARY 22, 2022

By managing risks, organisations gain a comprehensive understanding of the specific ways that they could suffer data breaches and other disruptive events, and the steps they can take to protect themselves. Additionally, although the GDPR doesn’t expressly require organisations to implement an ISMS, doing so helps them achieve compliance.

Information Security

Information Security Security Data breaches Risk

California Enacts Broad Privacy Protections Modeled on GDPR

Data Matters

JUNE 29, 2018

According to the bill’s author, it was consciously designed to emulate the new European General Data Protection Regulation (GDPR) that went into effect on May 25, and if and when it goes into effect, it would constitute the broadest privacy law in the United States. law, consumers and the marketplace have been comfortable with to date.

GDPR

GDPR Privacy Sales Data breaches

Data Protection in Financial Services Week 2022

Data Matters

FEBRUARY 25, 2022

DPFS will be relevant to all those in financial services, including those in the banking, insurance, fintech, funds, payments, private equity, securities, wealth management, and other financial sectors. Hear from industry speakers on: How the latest privacy and cybersecurity developments in Europe and the U.S.

Financial Services

Financial Services Privacy Data Privacy Cybersecurity

2018 Global Data Regulations & Compliance Heat Up – Are you Ready?

Thales Cloud Protection & Licensing

MARCH 6, 2018

This year, the major regulation that will be implemented, is the European Union’s General Data Protection Regulation (GDPR) , which takes effect on May 25, 2018. GDPR enables consumers to view, limit and control how companies collect and process their personal data. In Europe, GDPR isn’t the only regulation impacting the region.

Compliance

Compliance GDPR Encryption Data Privacy

How to Develop an Incident Response Plan

eSecurity Planet

DECEMBER 9, 2021

An incident is an event that affects our scope of responsibility, and a response is how we deal with the incident. For IT managers, the scope might expand to encompass physical IT systems and events such as a flooded data center, a lost executive laptop, or squirrels chewing on network cables. Be in-line with insurance policies.

Insurance

Insurance Ransomware Data breaches Cloud

Stretching the boundaries through artificial intelligence: the European proposal for a dedicated regulation. The protection of personal data.

Privacy and Cybersecurity Law

SEPTEMBER 15, 2021

It is no coincidence, therefore, that the European Commission’s “ Proposal for a Regulation laying down harmonized rules on Artificial Intelligence ”, published on April 21, 2021 (the Proposal), has several points of contact with the GDPR. This is a fundamental goal of both the proposal and the GDPR. …and more.

Artificial Intelligence

Artificial Intelligence Personal data GDPR Compliance

RSA Conference 2023: Meet Thales Where the World Talks Security!

Thales Cloud Protection & Licensing

APRIL 18, 2023

Live Sessions With this in mind, we have scheduled a host of events and tech talks around our participation at RSA Conference 2023. When collaboration is our foundation, the future is bright. Meet us at Booth #N-5369 for demonstrations on data security, customer and workforce identity, and post quantum cryptography – just to name a few.

Security

Security Digital transformation Privacy Cybersecurity

Biden Cybersecurity Strategy: Big Ambitions, Big Obstacles

eSecurity Planet

MARCH 3, 2023

” Also read: MITRE ResilienCyCon: You Will Be Breached So Be Ready Big Goals: Critical Infrastructure, Liability, and GDPR-like Law A few items stand out as particularly ambitious and time-consuming to implement. Strategic Objective 1.1 is the creation of mandatory requirements for critical infrastructure security.

Cybersecurity

Cybersecurity Government Manufacturing Personal data

Trusting your supply chain with personal information

CGI

MARCH 3, 2019

It also gives the authorities the power to impose hefty fines in the event of a breach. Suppliers and GDPR. Late in 2017, CGI UK commissioned and directed the Centre for Economics and Business Research (CEBR) and Opinium to conduct a survey and research around attitudes towards and preparedness for GDPR.

GDPR

GDPR Insurance Data breaches Personal data

The Impact of Data Protection Laws on Your Records Retention Schedule

ARMA International

APRIL 18, 2022

Countries and organizations within the European Union (EU), must comply with the requirements of the General Data Protection Regulation (GDPR) 1. Many countries outside of the EU have created and implemented their own data protection laws that are similar to the GDPR 2. 12 GDPR Enforcement Tracker. 12 GDPR Enforcement Tracker.

Personal data

Personal data GDPR Privacy Records Management

When Do You Need to Report a Data Breach?

Security Affairs

NOVEMBER 26, 2018

Reporting an event is one action that can help. Reporting an event is one action that can help. This is based on the General Data Protection Regulation (GDPR), which applies to any organization that handles the data of European Union citizens. The number of data breaches that were tracked in the U.S. In the U.S.,

Data breaches

Data breaches Personal data GDPR Cybersecurity

UK data protection after Brexit – UK government Statement of Intent contains few surprises

Data Protection Report

AUGUST 16, 2017

The Statement anticipates the UK’s departure from the EU and makes it clear that following this, the Bill will transpose the General Data Protection Regulation (the GDPR ) into domestic law, stressing the importance of continued efficiency of data flow between the UK and the EU in a post-Brexit world.

Government

Government GDPR Personal data Insurance

UAE: Federal level data protection law enacted

DLA Piper Privacy Matters

DECEMBER 3, 2021

Reassuringly, the PDPL does not contain any major divergences from other well-known data protection regimes, including the GDPR. Notably, there is no broad “legitimate interests” style lawful basis for processing, as is found in the GDPR. issue guidance and instructions in relation to the PDPL.

Personal data

Personal data Data breaches GDPR Compliance

How Defence in Depth Can Help Organisations Tackle Complex Cyber Security Risks

IT Governance

SEPTEMBER 13, 2022

It also helps organisations comply with the GDPR (General Data Protection Regulation) , as many of the requirements overlap. That’s why organisations must adopt a layer of security that addresses what will happen in the event of a disruptive incident. Stage 4: Response.

Risk

Risk Security Data breaches Phishing

5 things you need to know about CIR management

IT Governance

MAY 1, 2018

Under the EU’s General Data Protection Regulation (GDPR) , organisations will need to implement an effective incident response plan to contain any damage in the event of a data breach, and to prevent future incidents from occurring. It’s a legal requirement. Benefits of CIR management. Reducing incident impact and response times.

Risk

Risk Information Security IoT Insurance

In Today’s Privacy Environment, That’s the Way the (Website) Cookie Crumbles: Data Privacy Trends

eDiscovery Daily

FEBRUARY 11, 2019

It’s only been three weeks, but we’ve already talked plenty about the first big GDPR fine of €50 million (or about $56.8 million ) fine to Google for failing to comply with GDPR. As covered in Alston & Bird’s Privacy and Data Security Blog ( Google-Style GDPR Fines for Everyone? Well, you may want to think again.

Privacy

Privacy Data Privacy GDPR Compliance

UK: The rise of privacy group action risk

DLA Piper Privacy Matters

DECEMBER 7, 2017

Two recent developments in the United Kingdom highlight the growing risk of privacy litigation and “group actions” which is likely to further increase following the enactment of the General Data Protection Regulation (“ GDPR “) in May 2018. Various Claimants v Wm Morrisons Supermarket PLC [2017] 3113.

Risk

Risk Privacy GDPR Data breaches

UK: How real is the threat of data protection group litigation in the UK?

DLA Piper Privacy Matters

NOVEMBER 6, 2018

Mr Skelton had taken personal data (including name, address, gender, date of birth, phone number, national insurance number, bank details and salary information) relating to nearly 100,000 employees and posted it on the internet. The solution is to insure against ruinous group claims….

Insurance

Insurance Data breaches Personal data GDPR

(Discussion Recap) A Perfect Storm? Panel Discussion on Handling a Cybersecurity Incident

HL Chronicle of Data Protection

MARCH 16, 2020

On Tuesday, 3 March 2020, we welcomed our financial services clients in London to a lively panel event, which covered the multitude of issues which arise in a cybersecurity incident. Peter Marta. Arwen Handley. Philip Parish. Nicola Fulford.

Cybersecurity

Cybersecurity Financial Services Risk Insurance

Automating Security Risk Assessments for Better Protection

eSecurity Planet

JANUARY 12, 2021

Cybersecurity preparedness/ insurance. what information assets could be impacted by a possible cyber attack, including hardware, systems, laptops, customer data and intellectual property), and then assesses the risks of losing control of these assets during a cyber event. Open ports and other vulnerabilities. Endpoint protection.

Risk

Risk Security Cybersecurity Compliance

How to improve your cyber resilience

IT Governance

FEBRUARY 15, 2019

Standards such as ISO 27001 and ISO 22301 provide a framework of activities that you must perform to achieve compliance and support your cyber resilience strategy, and they can be leveraged to help you meet regulatory requirements, such as the GDPR (General Data Protection Regulation) and the NIS (Network and Information Systems) Regulations 2018.

Risk

Risk GDPR Communications Insurance

UK: Supreme Court judgment in Morrisons – employer not vicariously liable for data breach

DLA Piper Privacy Matters

APRIL 1, 2020

The Court of Appeal held that, whilst Mr Skelton had the intention of harming his employer, there was both: (i) an unbroken thread that connected his employment to the unlawful disclosure; and (ii) a seamless and continuous sequence of events that lead to the data being leaked. Implications for employers.

Data breaches

Data breaches GDPR Personal data Information governance

Webinar on Hacking 101: How it works and how to mitigate risk

HL Chronicle of Data Protection

MAY 7, 2019

Legal data security obligations under the: European General Data Protection Regulation (GDPR). Health Insurance Portability and Accountability Act (HIPAA). We will also explore: Different types of hacks and how they may be exploited. Federal Trade Commission Act (FTC Act). California Consumer Privacy Act (CCPA).

Risk

Risk IT Compliance Privacy

Vicarious liability in the data breach context – bad news for UK employers?

Data Protection Report

OCTOBER 29, 2018

Subsequently, in 2014, he leaked payroll information of almost 100,000 employees which included names, addresses, national insurance numbers, bank accounts and salaries. He held a grudge against his employer following disciplinary proceedings. The employee was arrested and convicted for various criminal offences.

Data breaches

Data breaches Insurance Personal data GDPR

Written IT Security Policies: Why You Need Them & How to Create Them

eSecurity Planet

MARCH 18, 2022

Also read: How to Comply with GDPR, PIPL and CCPA. Still, an approved IT policy provides some insurance against the IT team becoming the scapegoat. Written policies do not need to be formal, but keep in mind that in the event of a breach, these policies may be used as exhibits in court. Compliance. Start Writing.

IT

IT Compliance Security Access

Privacy and Cybersecurity Top 10 for 2018

Data Matters

JANUARY 2, 2018

As we begin this New Year, here is list of the top 10 privacy and cybersecurity issues for 2018: EU GDPR. The May 25, 2018 effective date for the EU’s General Data Protection Regulation (GDPR) will no doubt be a central focus of 2018. The GDPR expands the rights of EU individuals and the obligations placed on organizations.

Cybersecurity

Cybersecurity Privacy Data breaches GDPR

We’re Less Than A Week Away From The CIGO Summit in Chicago, May 9-10!

IGI

MAY 3, 2018

The CIGO Summit is a by-invitation-only, executive event for senior leaders in cybersecurity, information management, law, privacy, data analytics, records management, compliance, and other IG-related disciplines. Our roster of 2018 speakers for the CIGO Summit will lend invaluable insight across the IG board.

e-Discovery

e-Discovery Analytics Information governance Compliance

Only A Few Weeks Until The CIGO Summit in Chicago, May 9-10!

IGI

APRIL 26, 2018

The CIGO Summit is a by-invitation-only, executive event for senior leaders in cybersecurity, information management, law, privacy, data analytics, records management, compliance, and other IG-related disciplines. Our roster of 2018 speakers for the CIGO Summit will lend invaluable insight across the IG board.

e-Discovery

e-Discovery Analytics Information governance Compliance

We’re Less Than A Month Away From The CIGO Summit in Chicago, May 9-10!

IGI

APRIL 20, 2018

The CIGO Summit is a by-invitation-only, executive event for senior leaders in cybersecurity, information management, law, privacy, data analytics, records management, compliance, and other IG-related disciplines. Our roster of 2018 speakers for the CIGO Summit will lend invaluable insight across the IG board.

e-Discovery

e-Discovery Analytics Information governance Compliance

We’re Less Than A Month Away From The CIGO Summit in Chicago, May 9-10!

IGI

APRIL 12, 2018

The CIGO Summit is a by-invitation-only, executive event for senior leaders in cybersecurity, information management, law, privacy, data analytics, records management, compliance, and other IG-related disciplines. Our roster of 2018 speakers for the CIGO Summit will lend invaluable insight across the IG board.

e-Discovery

e-Discovery Analytics Information governance Compliance

Register For The Chief Information Governance Officer Summit in Chicago May 9-10

IGI

APRIL 5, 2018

The CIGO Summit is a by-invitation-only, executive event for senior leaders in cybersecurity, information management, law, privacy, data analytics, records management, compliance, and other IG-related disciplines. Our roster of 2018 speakers for the CIGO Summit will lend invaluable insight across the IG board.

Information governance

Information governance Government e-Discovery Analytics

Register For The Chief Information Governance Officer Summit in Chicago May 9-10

IGI

MARCH 29, 2018

The CIGO Summit is a by-invitation-only, executive event for senior leaders in cybersecurity, information management, law, privacy, data analytics, records management, compliance, and other IG-related disciplines. Our roster of 2018 speakers for the CIGO Summit will lend invaluable insight across the IG board.

Information governance

Information governance Government e-Discovery Analytics

The 2018 CIGO Summit Announces Participating Speakers

IGI

MARCH 15, 2018

The CIGO Summit is a by-invitation-only, executive event for senior leaders in cybersecurity, information management, law, privacy, data analytics, records management, compliance, and other IG-related disciplines. Our roster of 2018 speakers for the CIGO Summit will lend invaluable insight across the IG board.

e-Discovery

e-Discovery Analytics Information governance Compliance

CJEU Rules on Processing of Sensitive Data and Compensation Under the GDPR

Cyber-insurance – 72 hours for the insured party to file a criminal complaint: GDPR’s false friend

Trending Sources

EUROPE: Are GDPR fines insurable in the countries where you operate?

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

How to Manage Your Cyber Risks

GUEST ESSAY: A guide to implementing best security practices — before the inevitable breach

Keeping Up with New Data Protection Regulations

California Enacts Broad Privacy Laws Modeled on GDPR

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

UK: Liability Limits for GDPR in commercial contracts – the law and recent trends

eDiscovery and the GDPR: Ready or Not, Here it Comes: eDiscovery Best Practices

What Is Information Security Management?

California Enacts Broad Privacy Protections Modeled on GDPR

Data Protection in Financial Services Week 2022

2018 Global Data Regulations & Compliance Heat Up – Are you Ready?

How to Develop an Incident Response Plan

Stretching the boundaries through artificial intelligence: the European proposal for a dedicated regulation. The protection of personal data.

RSA Conference 2023: Meet Thales Where the World Talks Security!

Biden Cybersecurity Strategy: Big Ambitions, Big Obstacles

Trusting your supply chain with personal information

The Impact of Data Protection Laws on Your Records Retention Schedule

When Do You Need to Report a Data Breach?

UK data protection after Brexit – UK government Statement of Intent contains few surprises

UAE: Federal level data protection law enacted

How Defence in Depth Can Help Organisations Tackle Complex Cyber Security Risks

5 things you need to know about CIR management

In Today’s Privacy Environment, That’s the Way the (Website) Cookie Crumbles: Data Privacy Trends

UK: The rise of privacy group action risk

UK: How real is the threat of data protection group litigation in the UK?

(Discussion Recap) A Perfect Storm? Panel Discussion on Handling a Cybersecurity Incident

Automating Security Risk Assessments for Better Protection

How to improve your cyber resilience

UK: Supreme Court judgment in Morrisons – employer not vicariously liable for data breach

Webinar on Hacking 101: How it works and how to mitigate risk

Vicarious liability in the data breach context – bad news for UK employers?

Written IT Security Policies: Why You Need Them & How to Create Them

Privacy and Cybersecurity Top 10 for 2018

We’re Less Than A Week Away From The CIGO Summit in Chicago, May 9-10!

Only A Few Weeks Until The CIGO Summit in Chicago, May 9-10!

We’re Less Than A Month Away From The CIGO Summit in Chicago, May 9-10!

We’re Less Than A Month Away From The CIGO Summit in Chicago, May 9-10!

Register For The Chief Information Governance Officer Summit in Chicago May 9-10

Register For The Chief Information Governance Officer Summit in Chicago May 9-10

The 2018 CIGO Summit Announces Participating Speakers

Stay Connected