Data Protection Report

JANUARY 13, 2020

access, deletion, or opt-out) and a few companies seem to use the same tool, third party, and/or infrastructure for GDPR requests. There are a few outliers; however, with some companies requesting notarized signatures, social security numbers, VIN numbers, and others refusing to accept requests unless the user has an account with the company.

Privacy 49

Privacy B2B Sales Compliance 49

Hunton Privacy

AUGUST 12, 2021

On August 11, 2021, the UK Information Commissioner’s Office (“ICO”) launched a consultation on its draft international data transfer agreement (“IDTA”) and guidance for organizations on international transfers (the “Guidance”). Once finalized, the IDTA will replace the existing EU Standard Contractual Clauses (“SCCs”) in the UK.

GDPR 78

GDPR Personal data Risk Access 78

ARMA International

DECEMBER 26, 2019

For 2019, 34% of RIM professionals reported they had restructured their programs, with an additional 31% planning to do so into 2020. Other responses include a center of excellence or dedicated program team (16%) and “multiple, coordinated cross-role committees” (11%). Governance structures for RIM programs remain in flux.

Content services 76

Content services Cloud Records Management Privacy 76

IT Governance

DECEMBER 21, 2023

Also note that this blog only accounts for the data from 2020–2022, because these are the only years the ICO has released its full data set on. Bigger sectors are likely to have more breaches; it doesn’t automatically follow that they’re less secure, or that staff working within those sectors are more careless.

Data breaches 52

Data breaches Personal data Government GDPR 52

DLA Piper Privacy Matters

JUNE 23, 2021

On 21 June 2021, the European Data Protection Board (“ EDPB ”) published the final Recommendations 01/2020 on measures that supplement transfer tools to ensure compliance with the EU level of protection of personal data (“ Recommendations ”). This appears to rule out transfers to some countries, for example, the U.S.,

GDPR 99

GDPR Personal data Compliance Risk 99

Data Protection Report

JUNE 7, 2021

This approach was disputed by the European Data Protection Board (EDPB) and the European Data Protection Supervisor in their joint opinion on the Commission’s draft SCCs which was published in November 2020 (the Joint Opinion) who consider that even theoretical access to personal data is of concern. Article 4 of Implementing Decision ).

Personal data 119

Personal data GDPR Data breaches Access 119

Thales Cloud Protection & Licensing

NOVEMBER 16, 2020

Tue, 11/17/2020 - 06:44. For example, data sprawl has significantly increased due to all of the new patient data that has been created during the pandemic. Given this, healthcare organizations need to advance their security efforts to adapt to this shifting environment. ransomware). of total budget.

Digital transformation 62

Digital transformation Encryption Cloud Data breaches 62

Hunton Privacy

JUNE 29, 2020

Zeyn Bhyat of ENSafrica reports that on June 22, 2020, it was announced that South Africa’s comprehensive privacy law known as the Protection of Personal Information Act, 2013 (the “POPIA”) will become effective on July 1, 2020.

Compliance 85

Compliance Privacy GDPR Personal data 85

Data Protection Report

FEBRUARY 27, 2019

On January 21, 2019, in one of the largest privacy fines announced globally, the French National Data Protection Commission (CNIL) imposed a €50 million penalty against a tech giant for violation of the General Data Protection Regulation (GDPR). For example, the American Data Dissemination Act (S.

Data Privacy 40

Data Privacy GDPR Privacy Risk 40

Thales Cloud Protection & Licensing

NOVEMBER 28, 2022

Tue, 11/29/2022 - 06:08. The European Union enacted the Network and Information System (NIS) regulation in July 2016 with the intention of ensuring a specific level of security for networks and information systems belonging to critical and sensitive infrastructures in EU member states. Strengthened security requirements.

IT 71

IT Encryption Compliance Cybersecurity 71

Hunton Privacy

NOVEMBER 22, 2019

On November 13, 2019, the European Data Protection Board (“EDPB”) published its draft guidelines 4/2019 (the “Guidelines”) on the obligation of Data Protection by Design and by Default (“DPbDD”) set out under Article 25 of the EU General Data Protection Regulation (“GDPR”). Background and Scope.

Personal data 50

Personal data GDPR Compliance Risk 50

Data Matters

APRIL 20, 2020

Case: WM Morrison Supermarkets plc v Various Claimants [2020] UKSC 12. This is particularly important as enforcement actions and significant fines by European supervisory authorities under the GDPR, as well as moves to bring mass privacy claims, are increasing. Conclusion and Practical Impact for Employers.

Data breaches 68

Data breaches GDPR Privacy IT 68

Data Matters

JULY 24, 2020

to ensure compliance with a level of protection “essentially equivalent” to that guaranteed within the EU by the GDPR). for national security purposes, encroaches on the protections on personal data provided by EU law and rights of data subjects. domestic law, in particular the ability for U.S.

Personal data 97

Personal data GDPR Privacy Access 97

DLA Piper Privacy Matters

MAY 16, 2018

Despite a lack of agreement between the Senate and the National Assembly, France has finally passed its new data protection law , 11 days prior to the entry into application of the EU General Data Protection Regulation (GDPR) on May 25. Processing of the social security number.

GDPR 40

GDPR Personal data Compliance Data Privacy 40

IT Governance

DECEMBER 27, 2019

IT Governance is closing out the year by rounding up 2019’s biggest information security stories. Countless office workers were forced to get back to their jobs after Reddit suspended a host of accounts in light of security concerns. Facebook said that the breach was discovered in January 2019 as part of an internal security review.

Data breaches 69

Data breaches GDPR Passwords Personal data 69

DLA Piper Privacy Matters

JULY 1, 2019

If this happens, many organisations will be left without any practical solution to legitimise the international transfer of personal data outside the EEA and exposure to the threat of GDPR revenue based fines, regulatory sanctions including injunctions and third party claims for compensation. Why are SCCs and Privacy Shield important?

Privacy 94

Privacy Personal data GDPR Risk 94

Data Matters

SEPTEMBER 29, 2021

To pick just two recent examples of the latter, the EU’s General Data Protection Regulation1 (GDPR) and the California Consumer Privacy Act2 (CCPA) both impose sweeping requirements on businesses with the aim of increasing consumers’ privacy and control over how their personal data is used. For example, in John B.

Privacy 97

Privacy e-Discovery Computer and Electronics e-Delivery 97

ARMA International

SEPTEMBER 27, 2021

Take the example of the pandemic: only some governments engaged pandemic experts to develop actions plans. Consider another example: the 1972 Summer Olympics in Munich, when terrorists took Israeli athletes hostage. As an example of a CSF, Table 1 defines the capabilities for CS to progress from Level 1 to Level 5.

Digital transformation 54

Digital transformation Risk IT Computer and Electronics 54

Data Protection Report

AUGUST 27, 2020

On 11 August 2020, the Court of Appeal ( CA ) handed down its judgement in the case of R (on the application of Edward BRIDGES) v The Chief Constable of South Wales Police. For example, regular reviews, oversight mechanisms and clear (and narrow) criteria setting out when and where AFT may be used.

Risk 59

Risk Retail IT GDPR 59

eDiscovery Daily

OCTOBER 20, 2019

Here are some of the eDiscovery-related sessions for today: 11:00 AM – 12:00 PM: The Business of Law 2020: The FTI-Relativity General Counsel Survey. What does the future hold for law and business in 2020 and beyond? 3:55 PM – 4:55 PM: CFIUS: A Guide to Navigating National Security Requirements in the Data Economy.

e-Discovery 40

e-Discovery Data Privacy Education Privacy 40