Data Matters

OCTOBER 30, 2017

Securities and Exchange Commission has issued specific guidance on disclosures related to cybersecurity risk and incidents[2] and the manner in which boards exercise responsibility for overseeing and managing risk.[3] [1] The U.S. 5] Legislators are likewise interested in the cybersecurity obligations of boards.[6].

Compliance 60

Compliance Cybersecurity Risk Government 60

IT Governance

DECEMBER 13, 2018

Also in January, the ICO (Information Commissioner’s Office) fined Carphone Warehouse £400,000 – one of the largest fines it issued under the DPA (Data Protection Act) 1998 – for multiple security inadequacies that led to a 2015 data breach in which three million customers’ personal data was compromised.

Data breaches 71

Data breaches Personal data Access GDPR 71

Data Protection Report

OCTOBER 9, 2019

In its decision of 10 March 2016 the CNIL had imposed a fine of €100,000 on Google Inc. the right to the protection of personal data, not being an absolute right, must be balanced against other fundamental rights in line with the principle of proportionality. The CJEU has ruled in Google’s favour. The Court found that it did.

Personal data 40

Personal data Privacy GDPR Access 40