Financial Services, GDPR, Personal data and Security

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S.

Data Privacy

Data Privacy Compliance Privacy Security

DEEP TECH NEWS: Respecting individual rights by using ‘privacy preserving aggregate statistics’

The Last Watchdog

JANUARY 28, 2024

Scientists at NTT Research are working on an advanced type of cryptography that enables businesses to perform aggregate data analysis on user data — without infringing upon individual privacy rights. Rising data privacy regulations underscores the need for such a capability, Boyle told me.

Privacy

Privacy Data Privacy GDPR Personal data

What (currently ignored) privacy area might result in early enforcement action when the GDPR is in force?

Data Protector

JANUARY 29, 2017

And, in assessing data controllers through different privacy prisms, I’m confident that some organisations might well “pass” a privacy review that was carried out by one consulting firm, yet “fail” the review that was carried out by another firm. But do (even) regulators take the issue of data retention that seriously?

GDPR

GDPR Privacy Compliance Personal data

Navigating the EU-US Data Protection Framework

Thales Cloud Protection & Licensing

JANUARY 10, 2024

That decision of adequacy provides in substance that there is an adequate level of protection—comparable to that in the EU—for personal data transferred from the EU to US companies that are participating in the DPF. However, European organizations need to dive with eyes wide open when transferring personal data to the US under the DPF.

Data Privacy

Data Privacy Personal data Privacy Cloud

Consumer concerns over GDPR should set alarm bells ringing for businesses

Thales Cloud Protection & Licensing

NOVEMBER 16, 2017

Today, putting the letters ‘GDPR’ into Google will generate over 420,000 news articles, some detailing the expected impact of the regulation, and others casting doubt on businesses and their readiness. and Germany to get to grips with what they know about GDPR, and more importantly, what they don’t. A lack of trust.

GDPR

GDPR Retail Data breaches Financial Services

CIPL and AvePoint Release Global GDPR Readiness Report

Hunton Privacy

NOVEMBER 10, 2016

On November 9, 2016, the Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP and AvePoint released the results of a joint global survey launched in May 2016 concerning organizational preparedness for implementing the EU General Data Protection Regulation (“GDPR”).

GDPR

GDPR Data Privacy Compliance Privacy

Improve your data relationships with third parties

Collibra

FEBRUARY 11, 2020

Regulators are focusing on the data relationships financial services organizations have with third parties, including how well personal information is being managed. And as with personal information regulations, the rulemaking has only just begun. Exploring third party data relationship risk.

Financial Services

Financial Services Digital transformation Personal data Compliance

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

Data Matters

SEPTEMBER 24, 2019

With its new data protection bill, Barbados is planning to join the ranks; this is a significant move, and it is one fueled at least in part by the entry into force of the European Union’s General Data Protection Regulation (“GDPR”) on May 25, 2018. A “ data subject ” is an individual who is the subject of personal data.

Personal data

Personal data GDPR Data Privacy Privacy

Striking a balance between security and usability of sensitive data

OpenText Information Management

DECEMBER 4, 2019

Last year, the number of personal records exposed by cyber attacks on the financial services industry was an incredible 446,575,334 – more than triple from the year before. The financial and reputational damage from these data breaches can be immense.

Financial Services

Financial Services Data breaches Security Personal data

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

Although the AG’s view was that the SCCs are valid, he suggested that those using them would need to examine the national security laws of the data importer’s jurisdiction to determine whether they can in fact comply with the terms of the SCCs. aka data and records retention). Address the ghost of Christmas past! In the U.S.,

Privacy

Privacy GDPR Data breaches Risk

Ireland: DPC Produces “Significant Outputs” for 2022 Concluding 17 Large Scale Inquiries

DLA Piper Privacy Matters

MARCH 30, 2023

Two-thirds of the GDPR fines issued by EU data protection authorities last year where from the DPC, illustrating a continued commitment to enforcement. This is the second highest fine (after Luxembourg’s regulators issued a fine of €746 million last year) since the GDPR came into effect, and the largest fine to date issued by the DPC.

Personal data

Personal data GDPR Compliance Financial Services

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Data Protection Report

DECEMBER 23, 2019

The most significant action came in October, when the Berlin Commissioner for Data Protection and Freedom of Information issued a €14.5million fine against German real estate company, Deutsche Wohnen SE, relating to the excessive retention of personal data. In the U.S., In the U.S.,

Privacy

Privacy Compliance Personal data Risk

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

Although the AG’s view was that the SCCs are valid, he suggested that those using them would need to examine the national security laws of the data importer’s jurisdiction to determine whether they can in fact comply with the terms of the SCCs. aka data and records retention). Address the ghost of Christmas past! In the U.S.,

Privacy

Privacy GDPR Data breaches Risk

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

To be clear, this is not China’s own GDPR. This aligns with other recent guidance putting clearer parameters around use of biometric data in China). However, certain personal information (and non-personal data) must still remain in (and cannot be accessed outside of) Mainland China.

Data Privacy

Data Privacy Privacy Compliance Analytics

(Discussion Recap) A Perfect Storm? Panel Discussion on Handling a Cybersecurity Incident

HL Chronicle of Data Protection

MARCH 16, 2020

On Tuesday, 3 March 2020, we welcomed our financial services clients in London to a lively panel event, which covered the multitude of issues which arise in a cybersecurity incident. Peter Marta. Arwen Handley. Philip Parish. Nicola Fulford.

Cybersecurity

Cybersecurity Financial Services Risk Insurance

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Data Protection Report

DECEMBER 23, 2019

The most significant action came in October, when the Berlin Commissioner for Data Protection and Freedom of Information issued a €14.5million fine against German real estate company, Deutsche Wohnen SE, relating to the excessive retention of personal data. In the U.S., In the U.S.,

Privacy

Privacy Compliance Personal data Risk

Privacy and Cybersecurity Top 10 for 2018

Data Matters

JANUARY 2, 2018

As we begin this New Year, here is list of the top 10 privacy and cybersecurity issues for 2018: EU GDPR. The May 25, 2018 effective date for the EU’s General Data Protection Regulation (GDPR) will no doubt be a central focus of 2018. The GDPR expands the rights of EU individuals and the obligations placed on organizations.

Cybersecurity

Cybersecurity Privacy Data breaches GDPR

Countdown to GDPR: it’s time for action

CGI

MAY 25, 2017

Countdown to GDPR: it’s time for action. Right now if there is one thing looming large on the radar of senior banking executives, it’s GDPR. The General Data Protection Regulation comes into force a year from now. It will usher in a new data management regime for any organisation collecting, storing or processing personal data.

GDPR

GDPR Personal data Financial Services Compliance

Executive Order on access to Americans’ bulk sensitive data and Attorney General proposed regulations – Part 2

Data Protection Report

MARCH 7, 2024

The proposed definition of “listed identifier” is Full or truncated government identification or account number (such as a Social Security Number, driver’s license or state identification number, passport number, or Alien Registration Number) [Note that this definition apparently includes truncated Social Security Numbers.]

Access

Access Military Compliance Personal data

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

IT Governance

DECEMBER 11, 2023

Researchers from the German cyber security company Aplite discovered 3,806 servers from 111 countries accessible on the Internet. Compromised information includes patients’ personal data, health and medical records, financial data, internal emails and software source code. Data breached: 5 TB.

Data Privacy

Data Privacy Energy and Utilities Privacy Manufacturing

Capital Markets, AI, and the need for governance

Collibra

OCTOBER 31, 2023

With every financial services organization focused on making better and faster decisions, data professional and business leaders are eager to better understand how AI can facilitate their strategic goals. Not surprisingly, everyone was talking about Artificial Intelligence (AI). Already using AI?

Marketing

Marketing Government Financial Services Artificial Intelligence

Ireland: DPC Annual Report 2020: Enforcement & Transfers Dominate Agenda

DLA Piper Privacy Matters

MARCH 4, 2021

In its second full year overseeing and regulating the GDPR in Ireland, the Data Protection Commission ( DPC ) has published its 2020 Annual Report , highlighting key observations, emerging guidance, and large scale inquiries and decisions of 2020. Around 60% of the data breaches notified occurred in the private sector.

GDPR

GDPR Compliance Data breaches Marketing

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

IT Governance

JANUARY 23, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. The data set is a collection of 1 billion credentials sourced from stealer logs and hosted on the illicit.services website. million customers’ data.

Data Privacy

Data Privacy Privacy Manufacturing Retail

EU’s possible Data Act: What can we anticipate from the Inception Impact Assessment and the Consultation?

Data Protection Report

JULY 5, 2021

The Data Act will complement other European Union (EU) measures to create a solid framework for digital trust, opening up public sector data, removing digital borders, encouraging trade in data, opening up competition and facilitating better security within the EU single market. Data Act Consultation.

B2B

B2B Personal data Cloud Access

Living in a data sovereign world

IBM Big Data Hub

OCTOBER 16, 2023

Before explaining data sovereignty, let us understand a broader concept—digital sovereignty—first. Digital sovereignty revolves around a value-driven, ordered, regulated and secure digital destination for all data, hardware and software, infrastructure components and application operations.

Cloud

Cloud Compliance Data Privacy Privacy

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

Data Protection Report

DECEMBER 17, 2020

The DGR does not create a right to re-use such data, but provides for a set of harmonized basic conditions under which the re-use of such data may be allowed. The DGR does not create a right to re-use such data, but provides for a set of harmonized basic conditions under which the re-use of such data may be allowed.

Government

Government Personal data Marketing Artificial Intelligence

California Consumer Privacy Act: The Challenge Ahead — Introduction to Hogan Lovells’ Blog Series

HL Chronicle of Data Protection

SEPTEMBER 12, 2018

Critics have remarked that the burden and cost of compliance for small and mid-sized companies that have recently undergone massive compliance overhauls related to the GDPR may be impracticably high. provide additional CCPA analyses and reports.

Privacy

Privacy Compliance GDPR Data breaches

Is Your Customer Experience Future-Ready?

Reltio

APRIL 25, 2019

How do you ensure security and privacy while personalizing the customer experience? If the digital transformation doesn’t have an end date, then is your data platform able to scale infinitely to support your long-term, evolving customer experience? Do you have fail-safe processes to guarantee security of customer data?

Customer Experience

Customer Experience Digital transformation B2B B2C

The Tension between GDPR and Blockchain: Are they Polar Opposites or Can they Co-exist

AIIM

JANUARY 10, 2019

One of the most notable blockchain skeptics – David Gerard –argues that if “you were silly enough to put personal data into an append-only ledger which is a proof-of-work blockchain — that’d be flat-out insane.”. Both blockchain and GDPR are designed to “democratize” data by giving more control over its use to individuals.

Blockchain

Blockchain GDPR Privacy Personal data

India’s Digital Future Is Bright

Thales Cloud Protection & Licensing

DECEMBER 23, 2019

According to the 2019 Thales Data Threat Report-India Edition , digital transformation is well underway in India, with 41% of Indian respondents saying they are either aggressively disrupting the markets they participate in or embedding digital capabilities that enable greater organizational agility. Complexity is a Barrier to Data Security.

Digital transformation

Digital transformation Cloud Encryption Data Privacy

Keeping Customer Data Safe: AI's Privacy Paradox

Thales Cloud Protection & Licensing

MARCH 14, 2024

Putting Personal Data at Risk The results were not all positive, however. The Thales study highlighted how nearly six out of ten (57%) of global consumers were anxious that brands using generative AI would be putting their personal data at risk.

Privacy

Privacy Data Privacy Analytics Risk

Data Governance Tools: What Are They? Are They Optional?

erwin

NOVEMBER 14, 2019

Data governance refers to the strategic and ongoing efforts by an organization to ensure that data is discoverable and its quality is good. It is also used to make data more easily understood and secure. Difference between GDPR and CCPA, and why you should expect CCPA to go national. It’s not just breaches.

Government

Government Data breaches Metadata GDPR

Data Governance Tools: What Are They? Are They Optional?

erwin

NOVEMBER 14, 2019

Data governance refers to the strategic and ongoing efforts by an organization to ensure that data is discoverable and its quality is good. It is also used to make data more easily understood and secure. Difference between GDPR and CCPA, and why you should expect CCPA to go national. It’s not just breaches.

Government

Government Data breaches Metadata GDPR

Information Management Today

Security Compliance & Data Privacy Regulations

DEEP TECH NEWS: Respecting individual rights by using ‘privacy preserving aggregate statistics’

Trending Sources

What (currently ignored) privacy area might result in early enforcement action when the GDPR is in force?

Navigating the EU-US Data Protection Framework

Consumer concerns over GDPR should set alarm bells ringing for businesses

CIPL and AvePoint Release Global GDPR Readiness Report

Improve your data relationships with third parties

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

Striking a balance between security and usability of sensitive data

The Privacy Officers’ New Year’s Resolutions

Ireland: DPC Produces “Significant Outputs” for 2022 Concluding 17 Large Scale Inquiries

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

The Privacy Officers’ New Year’s Resolutions

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

(Discussion Recap) A Perfect Storm? Panel Discussion on Handling a Cybersecurity Incident

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Privacy and Cybersecurity Top 10 for 2018

Countdown to GDPR: it’s time for action

Executive Order on access to Americans’ bulk sensitive data and Attorney General proposed regulations – Part 2

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

Capital Markets, AI, and the need for governance

Ireland: DPC Annual Report 2020: Enforcement & Transfers Dominate Agenda

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

EU’s possible Data Act: What can we anticipate from the Inception Impact Assessment and the Consultation?

Living in a data sovereign world

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

California Consumer Privacy Act: The Challenge Ahead — Introduction to Hogan Lovells’ Blog Series

Is Your Customer Experience Future-Ready?

The Tension between GDPR and Blockchain: Are they Polar Opposites or Can they Co-exist

India’s Digital Future Is Bright

Keeping Customer Data Safe: AI's Privacy Paradox

Data Governance Tools: What Are They? Are They Optional?

Data Governance Tools: What Are They? Are They Optional?

Stay Connected