Hunton Privacy

JANUARY 19, 2021

On January 18, 2021, the European Data Protection Board (“EDPB”) released draft Guidelines 01/2021 on Examples regarding Data Breach Notification (the “Guidelines”).

Data breaches 99

Data breaches Personal data GDPR Risk 99

DLA Piper Privacy Matters

MARCH 1, 2022

Experiencing a global pandemic has provided us with many examples of the importance of scientific research to our lives. Meanwhile, a sometimes popular (mis)conception is that data protection laws – and particularly the GDPR – are a barrier to the effective use of personal data for research. Transparency.

Personal data 104

Personal data GDPR Data collection Archiving 104

Data Protection Report

FEBRUARY 28, 2020

The Personal Data Protection Act B.E. However, most of the operational provisions, including provisions relating to the rights of a data subject, the obligations of a data controller and the penalties for non-compliance, will become effective on 27 May 2020, 1 year after the PDPA is published. Definition of Personal Data.

Personal data 91

Personal data Compliance Privacy Access 91

Data Protection Report

FEBRUARY 25, 2020

Outbreak of the coronavirus and personal data privacy. There have been several data breach incidents which have given rise to concerns over privacy and potential discrimination against people from Wuhan and Hubei Province. Highlights of the CAC Circular.

Personal data 133

Personal data Big data Data Privacy Data breaches 133

Collibra

NOVEMBER 13, 2020

The General Data Protection Regulation (GDPR), in force since May 25, 2018, requires businesses to protect the personal data and privacy of European Union (EU) citizens, for transactions that occur within EU Member States. The GDPR also regulates the exportation of personal data outside the EU. Location data .

Personal data 59

Personal data GDPR Data Privacy Privacy 59

Thales Cloud Protection & Licensing

FEBRUARY 1, 2023

How to Address the Requirements of Personal Data Protection (PDP) Law of Indonesia divya Thu, 02/02/2023 - 06:35 In response to the increased number of attacks targeting the personal data of millions of Indonesian citizens, the government passed the first Personal Data Protection (PDP) Law in 2022.

Personal data 71

Personal data Encryption Data breaches Authentication 71

IT Governance

MARCH 13, 2020

Under the EU GDPR (General Data Protection Regulation) , you need to identify a lawful basis before processing personal data. Do you always need individuals’ consent to process their data? Freely given’ means the data subject has to have genuine choice: they must not suffer any detriment if they refuse consent.

GDPR 92

GDPR Personal data Compliance Marketing 92

IT Governance

APRIL 10, 2019

On 25 May 2018, the EU’s GDPR (General Data Protection Regulation) superseded the UK’s DPA (Data Protection Act) 1998. With the Regulation expanding the definition of personal data, many organisations were uncertain as to what the new definition includes. The scope of personal data.

Personal data 95

Personal data GDPR Education Government 95

Data Protection Report

JUNE 1, 2020

But this is a tricky area to navigate, particularly following the General Data Protection Regulation ( GDPR ), since both the ICO and the FCA have started to pay more attention to this area. What are the legal mechanisms to sell or utilise personal data in an insolvency situation? Asset sales.

Personal data 99

Personal data Sales Marketing GDPR 99

Hunton Privacy

MARCH 10, 2021

On March 2, 2021, the Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth submitted its response to the European Data Protection Board (“EDPB”) consultation on draft guidelines on examples regarding data breach notification (the “Guidelines”).

Data breaches 96

Data breaches GDPR Personal data Risk 96

Hunton Privacy

MARCH 30, 2021

The Draft Guidance, issued on December 20, 2020, adds to a growing body of work carried out by regulators, including the UK Information Commissioner’s Office (“ICO”) in their Code of Practice for Age Appropriate Design for Online Services (the “ICO Age Appropriate Code”).

Personal data 111

Personal data GDPR Risk Privacy 111

Data Protection Report

FEBRUARY 13, 2024

In both cases, the FTC’s complaint alleged that the companies retained personal data for longer than was necessary, and that conduct violated Section 5 of the Federal Trade Commission Act as an unfair act or practice. Under the proposed consent orders, both companies do not confirm or deny the allegations.

Personal data 48

Personal data Privacy Marketing Data collection 48

Data Protector

OCTOBER 16, 2020

Some countries that have already enacted data protection laws that do not recognise the concept of special category data. Indonesia, Hong Kong and Singapore are examples of such countries. Some countries have extended their lists of special category data beyond those set out in European law.

Personal data 156

Personal data GDPR IT Privacy 156

Data Matters

OCTOBER 15, 2019

On 22 August 2019, the Cyberspace Administration of China (CAC) announced the implementation of the Online Protection of Children’s Personal Data Regulation (????????????), (“the Regulation”) which came into force on 1 October 2019. In contrast with COPPA in the U.S., Consequences of the Regulation.

Personal data 68

Personal data Privacy Compliance Cybersecurity 68

Data Matters

MARCH 25, 2020

On 20 March 2020, the European Data Protection Board (“ EDPB ”) released a statement on the protection of personal data in connection with measures that public authorities and business organizations (including employers) are taking to address the Coronavirus (COVID-19) pandemic. Data protection principles.

Personal data 74

Personal data GDPR Communications Privacy 74

IT Governance

JULY 29, 2019

Now that the EU GDPR (General Data Protection Regulation) has been in effect for over a year, you’ve likely become acquainted with the term ‘personal data’ But what exactly does personal data mean? What is personal data? What is sensitive personal data? A home address.

Personal data 75

Personal data GDPR Encryption Compliance 75

Data Matters

JANUARY 24, 2022

Considering the serious risk of fragmentation that could arise from dozens of distinct privacy statutes, the Uniform Law Commission has proposed a model bill – the Uniform Personal Data Protection Act (“UPDPA”). Certain data, like public records or employment processing, are exempt from the law. Colorado Privacy Act (“CPO”).

Personal data 88

Personal data Privacy Risk Compliance 88

IT Governance

JUNE 19, 2019

The GDPR (General Data Protection Regulation) requires organisations to conduct a DPIA (data protection impact assessment) whenever processing is ‘likely to result in a high risk’ to the rights and freedoms of individuals. Before we crack on with our examples, we should explain how you can identify high-risk data processing activities.

GDPR 73

GDPR Personal data Risk Data breaches 73

IT Governance

OCTOBER 15, 2018

Under the GDPR, all personal data breaches need to be recorded by the organisation and there should be a clear and defined process for doing so. Understanding what constitutes a personal data breach. The ICO defines a personal data breach as. “…a Examples of personal data breaches in schools.

Personal data 78

Personal data Data breaches Data collection GDPR 78

IT Governance

APRIL 18, 2018

An integral part of your EU General Data Protection Regulation (GDPR) compliance project is producing appropriate documentation, which includes a personal data breach notification procedure. What is a personal data breach? Loss of availability of personal data.

Personal data 79

Personal data Data breaches GDPR Compliance 79

Security Affairs

JULY 15, 2020

CyberNews reported the discovery of an unsecured Amazon S3 bucket containing users’ passports, driver’s licenses and other personal data. Example of passport: Example of Australian passport: Example of driver’s license: Who had access to the bucket? The original post available here: [link]. Pierluigi Paganini.

Personal data 101

Personal data Phishing Access Risk 101

Security Affairs

JULY 23, 2021

Pictured: Example of Leaked Documents: Real Estate Tax Bill. Pictured: Example of Leaked Documents: an emergency and hazardous chemical inventory form. Pictured: An example of exposed documents: a drivers license. Pictured: an example of exposed documents: a property registration form. Sensitive information redacted.

Personal data 99

Personal data Data breaches Phishing Government 99

IT Governance

JULY 18, 2018

Now that the EU GDPR (General Data Protection Regulation) has been in effect for a couple of months, you’ve hopefully become acquainted with its definition of personal data: “any information relating to an identified or identifiable natural person”. What is personal data? Location data. IP address.

Personal data 74

Personal data GDPR Encryption Compliance 74

IT Governance

JUNE 15, 2018

Like the Data Protection Act 1998 (DPA 1998) that it superseded, the General Data Protection Regulation (GDPR) sets out six lawful bases for processing personal data. For example, when you process staff data for payroll purposes, contractual obligations will apply, as staff will have signed a contract of employment.

GDPR 70

GDPR Personal data Compliance Privacy 70

IT Governance

NOVEMBER 8, 2018

Article 13 of the GDPR states that: When you collect personal data directly from data subjects, you must provide a privacy notice at the time of collection. When you get personal data from another source, you must provide a privacy notice without undue delay, and within a month. Free of charge.

GDPR 76

GDPR Privacy Compliance Personal data 76

Data Protection Report

JANUARY 6, 2021

Amid headlines about data transfer issues and a potential adequacy decision for the UK in the coming months, businesses also need to be aware of significant changes to the way in which cross-border personal data breaches with a UK angle will need to be notified to data protection authorities (DPAs) in future.

Personal data 75

Personal data Data breaches GDPR Compliance 75

Collibra

MAY 1, 2019

When it comes to personal data privacy, it can be hard to see the forest for the trees. Headlines and social media are dominated by data breaches, resulting in both reputational and financial loss. In all of this, the customer’s relationship with both personal data privacy and the organization itself can get lost.

Personal data 58

Personal data Data Privacy Privacy GDPR 58

Privacy and Cybersecurity Law

JULY 26, 2021

On July 5, 2021, the Italian supervisory authority (“ Garante ”) published an injunction against a company operating a food delivery app (“ Company ”) over the processing of riders’ personal data with respect to the use of algorithms for the management of the orders. Retention period. The need for a DPIA.

Personal data 52

Personal data GDPR e-Delivery Communications 52

Collibra

JANUARY 28, 2019

For companies, getting data privacy right is no longer just a compliance exercise – a box to be ticked. Instead, having a robust approach to managing personal data well is beginning to be seen as an important competitive advantage for organizations. Today – January 28 – is Data Privacy Day around the globe.

Personal data 40

Personal data Compliance Data Privacy Artificial Intelligence 40

Hunton Privacy

JUNE 22, 2020

On June 16, 2020, the European Data Protection Board (the “EDPB”) released a statement on the processing of personal data in the context of reopening borders following the COVID-19 outbreak (the “Statement”).

Personal data 59

Personal data GDPR Risk Security 59

Hunton Privacy

FEBRUARY 24, 2023

As the EDPB notes, the GDPR does not define what constitutes a “transfer of personal data to a third country or to an international organization”. In addition, further examples were included in the adopted Guidelines to provide better understanding.

GDPR 123

GDPR Personal data 123

Hunton Privacy

MARCH 16, 2023

For example, the DPIA should include evidence of consideration of “less risky alternatives” to achieve the same purpose and why those alternatives were not chosen. The new content in this chapter relates to AI and inferences, affinity groups and special category data. A new annex has been added related to fairness in the AI lifecycle.

Personal data 123

Personal data Paper IT Artificial Intelligence 123

Data Protection Report

AUGUST 6, 2018

Data protection laws in Asia continue to be introduced and updated. On 22 May 2018, the Thai Cabinet approved in principle a revised draft of Thailand’s first personal data protection act (Draft Act). Thailand currently does not have any specific law regulating data protection. Collection of personal data.

Personal data 40

Personal data Data collection Compliance GDPR 40

Security Affairs

JUNE 30, 2020

Further analysis of the URLs revealed that a short link takes a victim to another URL which already demonstrates their personal data, such as the phone number, first or/and last name, and sometimes an email address, and used for redirects to fake websites masquerading as a local media outlet. Pierluigi Paganini.

Personal data 100

Personal data Blockchain Data breaches Phishing 100

Hunton Privacy

NOVEMBER 9, 2023

These include, for example, to ensure the ICO and EDPS are able to deliver the regulatory cooperation necessary to underpin the data-based society and protect the fundamental rights of individuals in the UK and the EU, and to cooperate with respect to the enforcement of their respective data protection and privacy laws.

Personal data 118

Personal data Education Privacy Government 118

Hunton Privacy

MAY 10, 2022

On May 10, 2022, Connecticut Governor Ned Lamont signed An Act Concerning Personal Data Privacy and Online Monitoring , after the law was previously passed by the Connecticut General Assembly in April. Connecticut is now the fifth state to enact a consumer privacy law.

Privacy 118

Privacy Personal data Sales B2B 118

DLA Piper Privacy Matters

JANUARY 25, 2018

The key issue was the uncertainty of whether the result of an exam may or may not be considered a certain type of personal data. CAI provided him with 17 various documents in June 2010 but refused to release his examination script because it allegedly did not contain any personal data.

Personal data 40

Personal data Privacy Communications GDPR 40