Financial Services, GDPR and IT - Information Management Today

Missing the GDPR deadline of May 2018: And then what?

Data Protector

AUGUST 19, 2017

As May 2018 looms, I’m aware of a growing number of companies that are seeking help with their GDPR compliance obligations. Many (me included) have been sent a stream of emails from self-styled “GDPR experts” containing dire warnings of ginormous fines for non-compliance. But enough of these GDPR ambulance chasers.

GDPR

GDPR Compliance Records Management Financial Services

4 Special Requirements Social Media and Collaboration Create for GDPR Compliance

AIIM

JANUARY 26, 2018

A new set of European rules and standards related to privacy and data protection (the General Data Protection Regulation , or GDPR ) has set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. 3 -- Governance and oversight.

GDPR

GDPR Compliance Archiving Privacy

DEEP TECH NEWS: Respecting individual rights by using ‘privacy preserving aggregate statistics’

The Last Watchdog

JANUARY 28, 2024

Europe’s General Data Protection Regulation (GDPR) and California’s Consumer Privacy Act (CCPA,) for instance, are two significant pieces of legislation aimed at protecting consumer privacy in the digital age. LW provides consulting services to the vendors we cover.) That’s just a starting point. I’ll keep watch and keep reporting.

Privacy

Privacy Data Privacy GDPR Personal data

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

GDPR automated decision-making and profiling: what are the requirements?

IT Governance

NOVEMBER 9, 2018

In addition to data subjects’ rights to be informed, of access, to rectification, to erasure, to restrict processing, to data portability and to object, the EU’s GDPR (General Data Protection Regulation) sets out requirements relating to automated individual decision-making, including profiling. What is profiling under the GDPR?

GDPR

GDPR Personal data Financial Services Compliance

Belgian DPA Publishes Post-GDPR Activity Review

Hunton Privacy

NOVEMBER 26, 2018

On November 23, 2018, the Belgian Data Protection Authority (the “Belgian DPA”) published a review of its activities since the EU General Data Protection Regulation (“GDPR”) became applicable on May 25, 2018 (the “Review”). In the Review, the Belgian DPA makes the following observations: The GDPR in Numbers. Opinions and Support.

GDPR

GDPR Data breaches Financial Services Insurance

BELGIUM: Belgian DPA provides first status update after six months of GDPR

DLA Piper Privacy Matters

NOVEMBER 26, 2018

The Belgian DPA has released a first status update six months after the GDPR became applicable. According to the Belgian DPA, the spectacular increase in the number of notified breaches can be explained by the mandatory notification that was expanded in the GDPR. Unlike in Portugal and Austria, no GDPR fines have been issued.

GDPR

GDPR Data breaches Financial Services Insurance

What (currently ignored) privacy area might result in early enforcement action when the GDPR is in force?

Data Protector

JANUARY 29, 2017

Does it really mean that in 481 days, European privacy regulators will be heralding the first megafine for non-compliance with one of the GDPR’s more obscure requirements? Because the other firm had decided to focus on some obscure GDPR issues that the original firm didn’t think were particularly relevant. I think not.

GDPR

GDPR Privacy Compliance Personal data

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR, the EU’s flagship data privacy and “right to be forgotten” regulation, has made the stakes of a data breach higher than ever. GDPR-style data privacy laws came to the U.S.

Data Privacy

Data Privacy Compliance Privacy Security

5 things to know: IBM Cloud’s mission to accelerate innovation for clients

IBM Big Data Hub

AUGUST 1, 2023

Dizzion, an innovator in the Managed Desktop as a Service (DaaS) industry, hosts its managed desktop offering on IBM Cloud to help enterprises manage their workforce. With its decades-long history of delivering electronic design innovation and offering hosted design services, Cadence Design Systems, Inc.

Financial Services

Financial Services Computer and Electronics Cloud Digital transformation

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Security Affairs

DECEMBER 26, 2023

Bad actors will leverage these regulations as tools for manipulation and extortion, echoing the tactics employed by certain ransomware operators who threaten victims with GDPR compliance violations and regulatory fines. This strategy goes beyond just deploying the latest technologies to combat AI and mobile threats.

Energy and Utilities

Energy and Utilities Artificial Intelligence Ransomware Data breaches

Consumer concerns over GDPR should set alarm bells ringing for businesses

Thales Cloud Protection & Licensing

NOVEMBER 16, 2017

Today, putting the letters ‘GDPR’ into Google will generate over 420,000 news articles, some detailing the expected impact of the regulation, and others casting doubt on businesses and their readiness. and Germany to get to grips with what they know about GDPR, and more importantly, what they don’t. A lack of trust.

GDPR

GDPR Retail Data breaches Financial Services

These 3 GDPR Requirements You Must Support Today are Nothing Compared With What’s Coming

Reltio

AUGUST 16, 2018

On May 25, 2018 GDPR (General Data Protection Regulation) went into effect. The primary objectives of the GDPR are to give control back to their EU citizens and residents over their personal data, to simplify the regulatory environment for international business, and to unify regulations within the European Union.

GDPR

GDPR MDM Compliance Personal data

GDPR: taking the long-term view

Preservica

SEPTEMBER 27, 2017

The theme was data protection and privacy, so naturally GDPR compliance was a hot topic amongst the 150 invited Simmons & Simmons clients that included Corporate Lawyers and General Counsels from major corporations across industries ranging from Financial Services to Technology, Media and Telecommunications.

GDPR

GDPR Compliance Financial Services Privacy

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Thales Cloud Protection & Licensing

JANUARY 11, 2023

Security & Compliance for SAP Data in Financial Services. Financial services companies keep some of their most valuable data in SAP applications, triggering the need for both additional security and taking steps toward meeting compliance requirements. Key Findings from 2022 Global Data Threat Report. Stay tuned!

Compliance

Compliance Cloud Security Financial Services

IBM Cloud delivers enterprise sovereign cloud capabilities

IBM Big Data Hub

FEBRUARY 22, 2024

IBM’s Enterprise Cloud for Regulated Industries Building on our expertise working with enterprise clients in industries such as financial services, government, healthcare and telco, we saw the need for a cloud platform designed with the unique needs of these heavily regulated industries in mind.

Cloud

Cloud Computer and Electronics Compliance Financial Services

News Alert: Vaultree partners with Tableau to uniquely blend encryption, data visualization

The Last Watchdog

AUGUST 3, 2023

Vaultree continues to push the boundaries of what’s possible in secure data collaboration and management, delivering solutions that address the evolving challenges of data privacy and security in both the financial services and healthcare sectors. Vaultree is also thrilled to announce its sponsorship at Black Hat USA 2023.

Encryption

Encryption Analytics Data Privacy Cybersecurity

CIPL and AvePoint Release Global GDPR Readiness Report

Hunton Privacy

NOVEMBER 10, 2016

On November 9, 2016, the Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP and AvePoint released the results of a joint global survey launched in May 2016 concerning organizational preparedness for implementing the EU General Data Protection Regulation (“GDPR”).

GDPR

GDPR Data Privacy Compliance Privacy

Keeping Up with New Data Protection Regulations

erwin

APRIL 11, 2019

Keeping up with new data protection regulations can be difficult, and the latest – the General Data Protection Regulation (GDPR) – isn’t the only new data protection regulation organizations should be aware of. Less than four months before GDPR came into effect, only 6 percent of enterprises claimed they were prepared for it.

GDPR

GDPR e-Discovery Compliance Metadata

How can banks succeed in the digital banking era?

Thales Cloud Protection & Licensing

NOVEMBER 22, 2021

The full digitization of contracts, subscriptions and consumption of services. This drive towards digital transformation allowed financial services to be one of the sectors that better weathered the Covid 19 pandemic. Financial institutions find themselves in a difficult situation. Tue, 11/23/2021 - 06:13.

Digital transformation

Digital transformation Financial Services Customer Experience Risk

Ireland: Large-scale inquiries progress as DPC budget and staff numbers ramp up

DLA Piper Privacy Matters

FEBRUARY 28, 2022

The WhatsApp Ireland decision, which resulted in a fine of €225 million along with an order directing WhatsApp to bring its processing into compliance with the GDPR, has resulted in many organisations re-reviewing data protection notices to meet the DPC’s granular approach to transparency highlighted in the decision.

Financial Services

Financial Services Data breaches Personal data Compliance

Navigating the EU-US Data Protection Framework

Thales Cloud Protection & Licensing

JANUARY 10, 2024

As stated by the International Association of Privacy Professional ( IAPP ) critical sectors such as financial services are therefore conspicuously excluded, leaving organizations without a clear pathway to data protection compliance and potentially exposing them to significant risks. But does it really?

Data Privacy

Data Privacy Personal data Privacy Cloud

EU Parliament Approves Collective Redress Directive

Hunton Privacy

NOVEMBER 25, 2020

The scope of the Collective Redress Directive covers all infringements of EU law by traders that harm or may harm the collective interests of consumers in a variety of areas such as data protection, travel and tourism, financial services, energy, telecommunications and health and the environment?including

Financial Services

Financial Services GDPR IT Information Security

Improve your data relationships with third parties

Collibra

FEBRUARY 11, 2020

Regulators are focusing on the data relationships financial services organizations have with third parties, including how well personal information is being managed. There are several areas that the international financial services regulatory community is engaged in that touch on third party personal data relationships.

Financial Services

Financial Services Digital transformation Personal data Compliance

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

There was guidance from data protection regulators in the UK, France and Germany which made clear that implied cookie consent mechanisms are not viable under the EU General Data Protection Regulation (GDPR). It’s time to take the “data and records retention project” out of the “too hard / I’ll do it after GDPR” tray. In the U.S.,

Privacy

Privacy GDPR Data breaches Risk

UK Government sets out proposals to shake up UK data protection laws

Data Protection Report

SEPTEMBER 28, 2021

The consultation is structured around 5 objectives: reducing barriers to innovation; reducing burdens on business and delivering better outcomes for people; boosting trade and reducing barriers to data flows; delivering better public services; and reform of the ICO. Core elements of the GDPR: legal bases / conditions.

Government

Government FOIA GDPR Compliance

MY TAKE: Here’s why we need ‘SecOps’ to help secure ‘Cloud Native’ companiess

The Last Watchdog

SEPTEMBER 21, 2018

Speed and agility is the name of the game — especially for Software as a Service (SaaS) companies. It’s rise in popularity has helped drive a new trend for start-ups to go “Cloud Native,” erecting their entire infrastructure, from the ground up, leveraging cloud services like Amazon Web Services, Microsoft Azure and Google Cloud.

Cloud

Cloud Security Mining Financial Services

My (somewhat unreliable) data protection predictions for 2017

Data Protector

DECEMBER 31, 2016

An increasing number of organisations will realise that, unless they start soon, they won’t have the time (or access to much external professional support) to fully prepare for the coming into force of the GDPR in May 2018. The final text of the GDPR was published some 750 days before the implementation date.

GDPR

GDPR Communications Financial Services Education

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk

Risk Financial Services Insurance Cybersecurity

NEW TECH: Security Compass streamlines the insertion of security best practices into DevOps

The Last Watchdog

MARCH 31, 2020

New laws, like Europe’s GDPR and California’s CPPA, established regulations like HIPPA, Sarbanes Oxley as well as industry standards like PCI-DSS do not mesh well with fast-and-risky. At RSA 2020 , I had an eye-opening discussion with Rohit Sethi, CEO of Security Compass , about this. That’s become the mantra of DevOps.

Security

Security Privacy Financial Services Risk

The Impact of Data Protection Laws on Your Records Retention Schedule

ARMA International

APRIL 18, 2022

Countries and organizations within the European Union (EU), must comply with the requirements of the General Data Protection Regulation (GDPR) 1. Many countries outside of the EU have created and implemented their own data protection laws that are similar to the GDPR 2.

Personal data

Personal data GDPR Privacy Records Management

Protecting Sensitive Data with Luna Key Broker for Microsoft Double Key Encryption

Thales Cloud Protection & Licensing

APRIL 1, 2021

Meeting Security and Compliance : Help meet internal policy and compliance mandates including regulations such as GDPR, HIPAA and Schrems II, by ensuring master encryption keys are held in a Luna HSM separate from where sensitive data resides. Enhanced control and security over sensitive data in Microsoft Azure with Luna HSMs.

Encryption

Encryption Compliance Cloud GDPR

Webinar Invitation — Operationalizing the California Consumer Privacy Act

HL Chronicle of Data Protection

JUNE 14, 2019

Please join the Hogan Lovells Privacy and Cybersecurity team and LexisNexis on June 19 for the webinar, Operationalizing the California Consumer Privacy Act – Key Decisions and Compliance Strategies. As the first broad-based state law on consumers’ personal data in the U.S.,

Privacy

Privacy GDPR Compliance Financial Services

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

There was guidance from data protection regulators in the UK, France and Germany which made clear that implied cookie consent mechanisms are not viable under the EU General Data Protection Regulation (GDPR). It’s time to take the “data and records retention project” out of the “too hard / I’ll do it after GDPR” tray. In the U.S.,

Privacy

Privacy GDPR Data breaches Risk

Ireland: DPC Produces “Significant Outputs” for 2022 Concluding 17 Large Scale Inquiries

DLA Piper Privacy Matters

MARCH 30, 2023

Two-thirds of the GDPR fines issued by EU data protection authorities last year where from the DPC, illustrating a continued commitment to enforcement. This is the second highest fine (after Luxembourg’s regulators issued a fine of €746 million last year) since the GDPR came into effect, and the largest fine to date issued by the DPC.

Personal data

Personal data GDPR Compliance Financial Services

The compliance challenges of hybrid working

IT Governance

AUGUST 26, 2021

For example, financial services firms may be worried about employees breaching insider trading laws. Although monitoring software comes with understandable privacy issues, remember that the GDPR (General Data Protection Regulation) doesn’t prohibit their use. In this blog, we look at the key issues that you will face.

Compliance

Compliance Data breaches Privacy Risk

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

Data Matters

SEPTEMBER 24, 2019

With its new data protection bill, Barbados is planning to join the ranks; this is a significant move, and it is one fueled at least in part by the entry into force of the European Union’s General Data Protection Regulation (“GDPR”) on May 25, 2018. An Overview of the BDPA.

Personal data

Personal data GDPR Data Privacy Privacy

EU: Binding Corporate Rules are Generating Greater Interest

DLA Piper Privacy Matters

OCTOBER 16, 2019

The EU General Data Protection Regulation (“GDPR”) brought about stricter data protection rules, and increased penalties for breaching these rules. Article 47 GDPR lays down several criteria that BCRs need to meet in order to be approved by a supervisory authority. Following market leaders.

GDPR

GDPR Personal data Marketing Healthcare

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Data Protection Report

DECEMBER 23, 2019

The authority claimed a violation of data minimisation and privacy by design principles under the EU General Data Protection Regulation (GDPR). . However, this is not a new concern or one limited to the EU or the GDPR. This sends a clear message that organisations can no longer ignore their obligations relating to data retention.

Privacy

Privacy Compliance Personal data Risk

Sophisticated cyber attacks are biggest technology concern in 2018

IT Governance

JANUARY 10, 2018

According to a recent study from Invotra , the financial services industry and the public sector both fear sophisticated, harmful cyber threats in 2018. 94% of respondents in the financial sector and 88% in the public sector say they have a strong line of defence to protect their organisation against cyber attacks.

Customer Experience

Customer Experience Financial Services GDPR Phishing

erwin’s Predictions for 2021: Data Relevance Shines at the End of the Tunnel

erwin

JANUARY 7, 2021

However, challenges persist if your organization doesn’t take proper precautions in supporting a remote workforce — from human resources to productivity and IT security – especially when regulations such as the European Union’s General Data Protection Regulation (GDPR) are involved.

Metadata

Metadata Artificial Intelligence Compliance Government

Hindsight is 2020. Looking back so we can move forward

Thales Cloud Protection & Licensing

FEBRUARY 11, 2020

Some of our first customers were in financial services and government agencies, where our technologies were used to create a “need to know” in a system that obeys a strict privilege hierarchy and where “root” owns all things. In 2000, there was no PCI DSS, no HIPAA-HITECH, no NIST 800-53, no GDPR, or anything like them.

Cloud

Cloud Government Financial Services Access

UK: The ICO and the FCA Agree on Strengthened Co-operation and Collaboration

DLA Piper Privacy Matters

MARCH 1, 2019

The Information Commissioner’s Office ( ICO ) has announced that it has signed an updated Memorandum of Understanding ( MoU ) with the Financial Conduct Authority ( FCA ). The FCA is the conduct regulator for 58,000 financial services firms and financial markets in the UK and the prudential regulator for over 18,000 of those firms.

Financial Services

Financial Services Marketing GDPR Data breaches

The UK ICO’s Regulatory Sandbox Points to a Future of Pro-Active Engagement

HL Chronicle of Data Protection

JULY 9, 2019

As companies continue to grapple with interpreting how the GDPR’s principles apply to their own businesses, in particular contexts, there is a growing need for data protection regulators to provide clarity on the practical application of the regulation. This step shouldn’t be taken lightly though.

GDPR

GDPR Personal data Privacy Financial Services

Missing the GDPR deadline of May 2018: And then what?

4 Special Requirements Social Media and Collaboration Create for GDPR Compliance

Webinars

Trending Sources

DEEP TECH NEWS: Respecting individual rights by using ‘privacy preserving aggregate statistics’

Webinars

GDPR automated decision-making and profiling: what are the requirements?

Belgian DPA Publishes Post-GDPR Activity Review

BELGIUM: Belgian DPA provides first status update after six months of GDPR

What (currently ignored) privacy area might result in early enforcement action when the GDPR is in force?

Security Compliance & Data Privacy Regulations

5 things to know: IBM Cloud’s mission to accelerate innovation for clients

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Consumer concerns over GDPR should set alarm bells ringing for businesses

These 3 GDPR Requirements You Must Support Today are Nothing Compared With What’s Coming

GDPR: taking the long-term view

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

IBM Cloud delivers enterprise sovereign cloud capabilities

News Alert: Vaultree partners with Tableau to uniquely blend encryption, data visualization

CIPL and AvePoint Release Global GDPR Readiness Report

Top 7 Data Governance Blog Posts of 2018

Keeping Up with New Data Protection Regulations

How can banks succeed in the digital banking era?

Ireland: Large-scale inquiries progress as DPC budget and staff numbers ramp up

Navigating the EU-US Data Protection Framework

EU Parliament Approves Collective Redress Directive

Improve your data relationships with third parties

The Privacy Officers’ New Year’s Resolutions

UK Government sets out proposals to shake up UK data protection laws

MY TAKE: Here’s why we need ‘SecOps’ to help secure ‘Cloud Native’ companiess

My (somewhat unreliable) data protection predictions for 2017

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

NEW TECH: Security Compass streamlines the insertion of security best practices into DevOps

The Impact of Data Protection Laws on Your Records Retention Schedule

Protecting Sensitive Data with Luna Key Broker for Microsoft Double Key Encryption

Webinar Invitation — Operationalizing the California Consumer Privacy Act

The Privacy Officers’ New Year’s Resolutions

Ireland: DPC Produces “Significant Outputs” for 2022 Concluding 17 Large Scale Inquiries

The compliance challenges of hybrid working

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

EU: Binding Corporate Rules are Generating Greater Interest

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Sophisticated cyber attacks are biggest technology concern in 2018

erwin’s Predictions for 2021: Data Relevance Shines at the End of the Tunnel

Hindsight is 2020. Looking back so we can move forward

UK: The ICO and the FCA Agree on Strengthened Co-operation and Collaboration

The UK ICO’s Regulatory Sandbox Points to a Future of Pro-Active Engagement

Stay Connected