Cybersecurity, Events and Personal data - Information Management Today

ICYMI –December in privacy and cybersecurity

Data Protection Report

JANUARY 4, 2024

For those making this quiz a competitive event, we have included a tie-breaker/bonus question.) a. Which one does NOT require a minimum number of residents’ personal data for the “controller” to be in-scope for the law? See SEC, Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure, 88 Fed.

Privacy

Privacy Cybersecurity Artificial Intelligence e-Discovery

Singapore’s Public Consultation on proposed changes to the Singapore Personal Data Protection Act

Data Protection Report

MAY 21, 2020

On 14 May 2020, the Singapore Ministry of Communications and Information ( MCI ) and the Personal Data Protection Commission of Singapore ( PDPC ) announced a public consultation (the Public Consultation ) on the draft Personal Data Protection (Amendment) Bill (the Draft Bill ) and related amendments to the Spam Control Act ( SCA ).

Personal data

Personal data Data breaches Compliance Cybersecurity

China Releases Draft Regulations on Network Data Security Management

Hunton Privacy

JANUARY 26, 2022

On November 14, 2021, the Cyberspace Administration of China (“CAC”) released for public comment its draft Regulations on Network Data Security Management (the “Draft Regulations”). Data Breach. In addition, records or logs regarding sharing, trading or selling of “important data” must be maintained at least five years.

Security

Security Data breaches Personal data Cybersecurity

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The GDPR puts forth a litany of rules for how organizations in and outside of Europe handle the personal data of EU residents. The details of any organization’s plan to become fully GDPR compliant will vary based on the data the organization collects and what it does with that data.

GDPR

GDPR Compliance Personal data Privacy

Top 8 Cyber Insurance Companies for 2022

eSecurity Planet

APRIL 22, 2022

As the number and severity of data breaches continues to rise, organizations are recognizing that those costs are not theoretical. If your company has not already experienced a significant cybersecurity event, it is probably only a matter of time before it does. Also read: The Top Cybersecurity Companies. That’s a 29.1%

Insurance

Insurance Ransomware Cybersecurity Marketing

Think Ransomware Can’t Put You Out of Business?

Adam Levin

JUNE 30, 2020

No industry, category, size, or group is safe from this cyber scourge. In the same survey, 35 percent thought CEOs should be fined for a cyber failure, and 30 percent wanted to see a CEO lose his or her right to run any company following a serious cyber event. 1-99-employee companies are a target. We hear about the big ones.

Ransomware

Ransomware Insurance Cybersecurity Manufacturing

European Commission Publishes Draft Data Governance Act

Hunton Privacy

DECEMBER 2, 2020

“Data” under the Data Governance Act means any digital representation of acts, facts or information and any compilation of the same, including in the form of sound, visual or audiovisual recording. Below are some key takeaways from the draft Data Governance Act: Re-Use of Protected Data by Public Sector Authorities.

Government

Government Personal data Compliance GDPR

California Privacy Law Overhaul – Proposition 24 Passes

Data Matters

NOVEMBER 4, 2020

Third, it creates a new category of businesses: those that voluntarily agree to be subject to the CCPA. Entities must annually buy sell, or share personal information of 100,000 consumers, not 50,000 as under the CCPA, to qualify as a business under the second prong of the test. New Rights for Sensitive Personal Information.

Privacy

Privacy B2B Sales Data breaches

List of data breaches and cyber attacks in July 2018 – 139,731,894 million records leaked

IT Governance

JULY 30, 2018

Another month passes where I’m left thinking ‘I should really create a Healthcare category’. I imagine human error will continue to be the main cause of data breaches for decades to come – damn humans. Carvajal, MD Provides Notice to Individuals of Data Security Event. So, from next month – I’ll be doing exactly that.

Data breaches

Data breaches Ransomware Personal data Phishing

List of Data Breaches and Cyber Attacks in October 2022 – 9.9 Million Records Breached

IT Governance

NOVEMBER 1, 2022

By contrast, comparatively little personal data was breached, with our figures confirming that at least 9,990,855 records were compromised. As always, you can find the full list of data breaches and cyber attacks below, divided into their respective categories. Cyber attacks.

Data breaches

Data breaches Ransomware Insurance Phishing

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

Instead the PIPL is a robust data privacy framework designed to safeguard individuals’ personal data against abuse, but at the same time to reflect cultural and business attitudes to data in China, as well as new technologies (including advances in AI, biometrics and data analytics), and to enable flows of personal data.

Data Privacy

Data Privacy Privacy Compliance Analytics

Everyone is using ChatGPT what does my organisation need to watch out for

Data Protection Report

APRIL 27, 2023

Second, OpenAI does not give any security assurances in its terms of use (although, there is an extensive security portal and a statement that commercially reasonable security measures will be applied in the privacy policy that would help found a claim for misrepresentation in the event of a security breach).

Risk

Risk Personal data Privacy Data Privacy

When And How Cos. Should Address Cyber Legal Compliance

Data Matters

OCTOBER 30, 2017

They can, however, engage in probing internal due diligence of their companies’ cyber governance and compliance posture before it is too late — that is, before a cyber event occurs. Responsibility for corporate cybersecurity extends from the chief information security officer’s office, to the C-suite, to the corporate boardroom.

Compliance

Compliance Cybersecurity Risk Government

China Releases National Standard on Personal Information Security

Hunton Privacy

JANUARY 26, 2018

In effect, the Specification constitutes a best practices guide for the collection, retention, use, sharing and transfer of personal information, and for the handling of related information security incidents. The Specification divides personal information into two categories: personal information and sensitive personal information.

Information Security

Information Security Security Privacy Personal data

State Activity on Privacy: Vermont Is First to Regulate Data Brokers

Data Matters

JUNE 11, 2018

Washington State notably adopted a law on net neutrality and there is the prospect of a ballot initiative in California that would give individuals the right to know which categories of their or their children’s personal data have been collected or traded by businesses. The law will go into effect on January 1, 2019.

Privacy

Privacy Sales Data breaches Personal data

ICYMI – Late December in privacy and cybersecurity

Data Protection Report

JANUARY 30, 2023

to report this event to the Department within 72 hours of its being discovered.”) Which one is NOT on the list? The other four requirements were already present in New York’s General Business Law § 399-z. 7. a (Yes). In the Matter of Coinbase , Consent Order, ¶ 67 (Jan. Coinbase was required by 23 NYCRR § 500.17 8. b.

Privacy

Privacy Cybersecurity Personal data Insurance

CHINA: Privacy, Security and Content Regulation to Increase in 2020

DLA Piper Privacy Matters

JANUARY 13, 2020

The changes specifically introduce the following: Broader scope of prohibited content: in addition to the currently existing categories (e.g., defaming national integrity and unity), the new law prohibits publication of additional categories of content (e.g., New Personal Data Protection Law and Data Security Law.

Privacy

Privacy Security Personal data Compliance

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

The new right to be forgotten will allow children to enjoy their childhood without having every personal event, achievement, failure, antic or prank that they posted online to be digitally recorded for ever more. Of course, as new rights like this are created, the Bill will ensure that they cannot be taken too far.

GDPR

GDPR Personal data Government IT

Provisions on the Governance of Network Information Content Ecology Goes Into Effect in China

Hunton Privacy

MARCH 3, 2020

Network Information Content – Categories of Information. The Provisions govern China’s network information content ecology—including content producers (the “Producers”), content service platforms (the “Platforms”), content service users (the “Users”), industry organizations and Departments of Cyberspace Administration at all levels.

Government

Government Content services Marketing Privacy

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Data Matters

MARCH 4, 2021

Rather, to be covered by the VCDPA, an entity must either “(i) during a calendar year, control or process personal data of at least 100,000 consumers or (ii) control or process personal data of at least 25,000 consumers and derive over 50 percent of gross revenue from the sale of personal data.”. Exemptions.

Personal data

Personal data GDPR Sales Privacy

Information Management Today

ICYMI –December in privacy and cybersecurity

Singapore’s Public Consultation on proposed changes to the Singapore Personal Data Protection Act

Trending Sources

China Releases Draft Regulations on Network Data Security Management

How to implement the General Data Protection Regulation (GDPR)

Top 8 Cyber Insurance Companies for 2022

Think Ransomware Can’t Put You Out of Business?

European Commission Publishes Draft Data Governance Act

California Privacy Law Overhaul – Proposition 24 Passes

List of data breaches and cyber attacks in July 2018 – 139,731,894 million records leaked

List of Data Breaches and Cyber Attacks in October 2022 – 9.9 Million Records Breached

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

Everyone is using ChatGPT what does my organisation need to watch out for

When And How Cos. Should Address Cyber Legal Compliance

China Releases National Standard on Personal Information Security

State Activity on Privacy: Vermont Is First to Regulate Data Brokers

ICYMI – Late December in privacy and cybersecurity

CHINA: Privacy, Security and Content Regulation to Increase in 2020

The debate on the Data Protection Bill in the House of Lords

Provisions on the Governance of Network Information Content Ecology Goes Into Effect in China

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Stay Connected