Financial Services, Presentation, Privacy and Security

The Week in Cyber Security and Data Privacy: 6 – 12 November 2023

IT Governance

NOVEMBER 13, 2023

On 14 September, Mulkay discovered that the compromised files contained personal information, including “name, address, date of birth, Social Security number, driver’s license number or state ID, medical treatment information, and health insurance information”. Some patients also had their Social Security numbers exposed.”

Data Privacy

Data Privacy Privacy Security Data breaches

CFPB’s Proposed Data Rules

Schneier on Security

JANUARY 31, 2024

Beyond these economic effects, the rules have important data security benefits. The CFPB’s rules align with a key security idea: the decoupling principle. When you get a car loan or a house mortgage, that information, along with your Social Security number and other sensitive data, is also shared with unknown third parties.

Financial Services

Financial Services Privacy Personal data Marketing

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Thales Cloud Protection & Licensing

JANUARY 11, 2023

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List. Throughout 2022, Thales hosted more than 40 webinars on a wide variety of cybersecurity topics, including, cloud security, data sovereignty, compliance, data threat trends, and rethinking approaches to role-based authentication.

Compliance

Compliance Cloud Security Financial Services

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

NY Department of Financial Services Issues Guidance to Regulated Entities Regarding Cybersecurity During the COVID-19 Pandemic

Hunton Privacy

APRIL 22, 2020

On April 13, 2020, the New York Department of Financial Services (“NYDFS”) issued guidance (“April guidance”) to all New York State entities covered under NYDFS’s cybersecurity regulation regarding assessing and addressing heightened cybersecurity risks due to the COVID-19 pandemic.

Financial Services

Financial Services Cybersecurity Phishing Risk

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services

Financial Services Cybersecurity Insurance Risk

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

The Court of Justice of the European Union (CJEU) will determine the validity of the EU Standard Contractual Clauses (SCCs) ( Data Protection Commissioner v Facebook Ireland Limited, Maximillan Schrems ) whilst the General Court of the EU will consider the future of Privacy Shield (La Quadrature du Net v Commission). In the U.S.,

Privacy

Privacy GDPR Data breaches Risk

Navigating the digital wave: Understanding DORA and the role of confidential computing

IBM Big Data Hub

FEBRUARY 5, 2024

The Digital Operational Resilience Act (DORA) marks a significant milestone in the European Union’s (EU) efforts to bolster the operational resilience of the financial sector in the digital age. Ensuring end-to-end Protection To achieve total data privacy assurance, a key component is confidential computing and cryptography.

Encryption

Encryption Data Privacy Compliance Cloud

How Jamworks protects confidentiality while integrating AI advantages

IBM Big Data Hub

JANUARY 12, 2024

For enterprises dealing with sensitive information, it is vital to maintain state-of-the-art data security in order to reap the rewards,” says Stuart Winter, Executive Chairman and Co-Founder at Lacero Platform Limited, Jamworks and Guardian. . “AI is driving a revolution in education, accessibility and productivity.

Cloud

Cloud Data Privacy Encryption Privacy

The G7 expresses its concern over ransomware attacks

Security Affairs

OCTOBER 14, 2020

Cyber threats cause significant economic damage and threaten customer protection and data privacy. Experts are observing a significant increase in the number of Ransomware attacks against hospitals, financial institutions, schools, and other critical infrastructure in G7 countries. . ” continues the statement.

Ransomware

Ransomware IT Financial Services Data Privacy

The compliance challenges of hybrid working

IT Governance

AUGUST 26, 2021

Protecting employees’ privacy. For example, financial services firms may be worried about employees breaching insider trading laws. Although monitoring software comes with understandable privacy issues, remember that the GDPR (General Data Protection Regulation) doesn’t prohibit their use. Preventing data breaches.

Compliance

Compliance Data breaches Privacy Risk

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

The Court of Justice of the European Union (CJEU) will determine the validity of the EU Standard Contractual Clauses (SCCs) ( Data Protection Commissioner v Facebook Ireland Limited, Maximillan Schrems ) whilst the General Court of the EU will consider the future of Privacy Shield (La Quadrature du Net v Commission). In the U.S.,

Privacy

Privacy GDPR Data breaches Risk

Tackling Data Sovereignty with DDR

Security Affairs

JUNE 20, 2023

Those who fail to take a proactive approach to secure their data often learn the hard way how vulnerable – and valuable – that data can be. Data sovereignty plays a crucial role in a robust security strategy. When data is sovereign, an organization retains control and ownership over that data.

Compliance

Compliance Cybersecurity Risk Encryption

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk

Risk Financial Services Insurance Cybersecurity

Privacy and Cybersecurity Top 10 for 2018

Data Matters

JANUARY 2, 2018

This past year was marked by ever more significant data breaches, growing cybersecurity regulatory requirements at the state and federal levels and continued challenges in harmonizing international privacy and cybersecurity regulations. As we begin this New Year, here is list of the top 10 privacy and cybersecurity issues for 2018: EU GDPR.

Cybersecurity

Cybersecurity Privacy Data breaches GDPR

MY TAKE: Why companies and consumers must collaborate to stop the plundering of IoT systems

The Last Watchdog

NOVEMBER 9, 2020

The challenge of the moment is that many companies already have their hands full trying to improve their security posture as they migrate their legacy, on premises, IT systems to the cloud. The operating systems of home IoT devices today typically get shipped with minimal logon security. This is a sign of IoT attacks to come.

IoT

IoT Passwords Artificial Intelligence Risk

Webinar Recording Available on the NYDFS Regulations

Hunton Privacy

MARCH 16, 2017

On March 9, 2017, AllClear ID hosted a webinar with Hunton & Williams partner and chair of the Global Privacy and Cybersecurity practice Lisa J. Sotto on the new cybersecurity regulations from the New York State Department of Financial Services (“NYDFS”).

Financial Services

Financial Services Insurance Cybersecurity Privacy

“Cryptoassets are here to stay”: EU Authorities to Provide Guidance on Cryptocurrencies and ICOs

Data Matters

SEPTEMBER 12, 2018

As part of the public discussion, the Commission, the European Securities and Markets Authority (ESMA), the European Banking Authority (EBA) and the UK Financial Conduct Authority (FCA) were present to provide their thoughts. Firms interested in cryptoassets should watch for EU regulatory guidance later this year.

Financial Services

Financial Services Marketing Privacy IT

How to Prevent Data Breaches: Data Breach Prevention Tips

eSecurity Planet

AUGUST 22, 2023

With the ever-present threat of data breaches, organizations need to adopt best practices to help prevent breaches and to respond to them when they occur to limit any damage. And breaches will occur – because bad guys make a living by figuring out ways to circumvent security best practices. But it requires different levels of security.

Data breaches

Data breaches Big data Cybersecurity Security

EU Parliament Approves Collective Redress Directive

Hunton Privacy

NOVEMBER 25, 2020

The Collective Redress Directive was presented in April 2018 by the European Commission and is part of the European Commission’s New Deal for Consumers. The Collective Redress Directive was proposed as a response to several scandals related to breaches of consumers’ rights by multinational companies.

Financial Services

Financial Services GDPR IT Information Security

FTC Seeks Comment on Proposed Changes to GLBA Implementing Rules

HL Chronicle of Data Protection

MARCH 14, 2019

The Federal Trade Commission (“FTC”) issued notices on March 5 seeking public comment on proposed amendments to the regulations implementing the Gramm-Leach-Bliley Act (“GLBA”), commonly known as the Safeguards Rule and Privacy Rule. It includes general, high level elements of a security program, but lacks detailed security steps.

Privacy

Privacy Risk Cybersecurity Information Security

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

Data Matters

SEPTEMBER 24, 2019

Today, more than 120 countries have privacy and data protection laws or regulations in place. This comprehensive data privacy law wave has already reached parts of Latin America and the Caribbean. As with all posts, this article is for your informational purposes only; Sidley Austin does not have offices in or practice law in Barbados.

Personal data

Personal data GDPR Data Privacy Privacy

CIPL and AvePoint Release Global GDPR Readiness Report

Hunton Privacy

NOVEMBER 10, 2016

The impetuses for the survey were the many significant changes the GDPR will bring to companies’ management and processing of personal data, their privacy compliance programs and their IT systems and infrastructure. The GDPR replaces Directive 95/46/EC and will become applicable in May 2018.

GDPR

GDPR Data Privacy Compliance Privacy

Institutional Investor’s Introduction to Blockchain and Digital Asset Investing

Data Matters

NOVEMBER 2, 2021

We will also discuss a developing range of services referred to as digital asset “prime brokerage” — describing the suite of services typically provided by these prime brokers and comparing them to traditional offerings of prime brokers in the securities space.

Blockchain

Blockchain Marketing Access Risk

Conversational AI use cases for enterprises

IBM Big Data Hub

FEBRUARY 23, 2024

Banking and financial services: AI-driven solutions are making banking more accessible and secure, from assisting customers with routine transactions to providing financial advice and immediate fraud detection. It should also provide the necessary tools and support for developing and maintaining your AI solution.

Analytics

Analytics Artificial Intelligence Marketing Education

Top GRC Tools & Software for 2021

eSecurity Planet

JANUARY 21, 2021

Data privacy regulations like the EU’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) can be hard to navigate for businesses of any size, but GRC tools can simplify and streamline compliance with all of the requirements. IT governance and security. Audit management. Riskonnect.

Compliance

Compliance Risk Government Retail

6 Best Threat Intelligence Feeds to Use in 2023

eSecurity Planet

AUGUST 10, 2023

Here are our picks for the top threat intelligence feeds that security teams should consider adding to their defensive arsenal: AlienVault Open Threat Exchange: Best for community-driven threat feeds FBI InfraGard: Best for critical infrastructure security abuse.ch

Cybersecurity

Cybersecurity Access Metadata Energy and Utilities

Top 10 Governance, Risk and Compliance (GRC) Vendors

eSecurity Planet

JANUARY 21, 2021

Data privacy regulations like the EU’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) can be hard to navigate for businesses of any size, but GRC tools can simplify and streamline compliance with all of the requirements. IT governance and security. Audit management. Riskonnect.

Compliance

Compliance Risk Government Retail

Archives Records 2018 RMS Annual Meeting

The Schedule

AUGUST 22, 2018

2 presentations for SAA student chapters. ” The first speaker was Lauren Gaines from Thrivent Financial, which is a fraternal benefit society and Fortune 500 financial services organization. Perhaps one of the most interesting points she raised was about the potential impact of the new EU right to privacy rule.

Archiving

Archiving FOIA Records Management Compliance

Ireland: DPC Produces “Significant Outputs” for 2022 Concluding 17 Large Scale Inquiries

DLA Piper Privacy Matters

MARCH 30, 2023

The Judge, on hearing the nature of the claim, found that proof of more than minimal loss was necessary and that no evidence was presented of any actual loss suffered resulting from the email distribution.

Personal data

Personal data GDPR Compliance Financial Services

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

HL Chronicle of Data Protection

MAY 13, 2019

The entering into effect of multiple state laws in this area may present challenges for insurance providers operating in states where such cybersecurity requirements are provided for. Of particular concern to state-level policymakers and enforcement authorities are business practices that in their view may contribute to security incidents.

Insurance

Insurance Cybersecurity Data breaches Financial Services

Tuesday’s Relativity Fest 2019 Sessions: eDiscovery Trends

eDiscovery Daily

OCTOBER 21, 2019

This year’s International Panel will present legal perspectives from across the globe, updating you on the latest developments in cross-border e-discovery, conflict of laws, and data privacy and protection. Find out: How they really feel about security? How law firms can provide more valuable services?

e-Discovery

e-Discovery e-Delivery GDPR Education

Capital Markets, AI, and the need for governance

Collibra

OCTOBER 31, 2023

With business and technology leaders from around the globe exploring how data fuels the industry, and presentations on everything related to accelerating financial data pipelines and delivering data in the cloud, the event offered executive thought leadership on emerging technologies. Already using AI?

Marketing

Marketing Government Financial Services Artificial Intelligence

US: Coronavirus – Cybersecurity considerations for your newly remote workforce

DLA Piper Privacy Matters

APRIL 2, 2020

Working remotely, or “teleworking,” presents unique cybersecurity challenges to the employer, the employee and the supply chain, especially when being done for the first time in a rapidly changing environment. Various laws and best practices speak of the need to train network users on the latest security best practices.

Cybersecurity

Cybersecurity Phishing Authentication Access

Target Data Breach Litigation: District Court Certifies Class of Financial Institutions

Hunton Privacy

SEPTEMBER 23, 2015

District Court for the District of Minnesota certified a Federal Rule of Civil Procedure 23(b)(3) class of financial services institutions claiming damages from Target Corporation’s 2013 data breach. On September 15, 2015, Judge Magnuson of the U.S. The court also rejected Target’s damages arguments under the Seventh Amendment.

Data breaches

Data breaches Financial Services Retail IT

European instant payments in harmony: Traditional wisdom meets innovative thinking

IBM Big Data Hub

APRIL 11, 2024

A cloud-based infrastructure that uses IBM Cloud® for Financial Services can be the answer to ensure the security, privacy and flexibility needed to keep up with these changes in the industry. Privacy and data security are the primary concerns regarding AI in instant payments transactions.

Cloud

Cloud Financial Services Privacy Compliance

Regulatory Update: NAIC Summer 2019 National Meeting

Data Matters

SEPTEMBER 4, 2019

Securities and Exchange Commission on June 5, 2019, broker-dealers and associated persons are required to act in the best interest of a retail customer when recommending a securities transaction or investment strategy involving securities to a retail customer.

Insurance

Insurance Paper Risk Analytics

California Consumer Privacy Act: The Challenge Ahead — Introduction to Hogan Lovells’ Blog Series

HL Chronicle of Data Protection

SEPTEMBER 12, 2018

We have heard the California Consumer Privacy Act of 2018 (CCPA) called all these things and more since its enactment on June 28, ?2018. The series builds on the CCPA overview we recently presented via webinar. All such proceeds will go to the new “Consumer Privacy Fund” within the State Treasury’s General Fund. Groundbreaking.

Privacy

Privacy Compliance GDPR Data breaches

Living in a data sovereign world

IBM Big Data Hub

OCTOBER 16, 2023

Digital sovereignty revolves around a value-driven, ordered, regulated and secure digital destination for all data, hardware and software, infrastructure components and application operations. Data sovereignty addresses legal, privacy, security and governance concerns associated with the storage, processing and transfer of data.

Cloud

Cloud Compliance Data Privacy Privacy

SEC Requests Comment on Regulation of Information Providers Under the U.S. Investment Advisers Act

Data Matters

JUNE 24, 2022

Securities and Exchange Commission (Commission) issued a request for comment with respect to whether certain index, model, pricing, and other information providers should be regulated as investment advisers under the Investment Advisers Act of 1940. 17, 1995); Media General Financial Services, Inc. ,

Marketing

Marketing Financial Services Analytics Sales

European Commission publishes long-awaited draft Regulation on Artificial Intelligence

DLA Piper Privacy Matters

APRIL 26, 2021

These are technologies anticipated to present significant risk of harm and so permitted only on a restricted basis, with specific controls in place to support safe use. It may be expanded in the future to cover other AI systems which the EC consider to present similarly high risks of harm. High Risk AI systems. d) Sanctions.

Artificial Intelligence

Artificial Intelligence Risk Marketing GDPR

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

IT Governance

APRIL 29, 2024

Keyboard app vulnerabilities reveal keystrokes to network eavesdroppers Security researchers have identified critical security vulnerabilities in Cloud-based pinyin keyboard apps from Baidu, Inc., We identified certain accounts that we believe are affiliated with the Spy.pet website, which we have subsequently banned.”

Data Privacy

Data Privacy Privacy Manufacturing Security

The Hacker Mind Podcast: Going Passwordless

ForAllSecure

JANUARY 19, 2022

Is there something more secure? Simon Moffatt from CyberHut joins The Hacker Mind to discuss how identity and access management (IAM) is fundamental to everything we do online today, and why even multi-factor access, while an improvement, needs to yield to more effortless and more secure passwordless technology that’s coming soon.

Passwords

Passwords Authentication Access Data breaches

Survey Says…Cybersecurity Remains A Critical Challenge For Business

Privacy and Cybersecurity Law

MARCH 23, 2018

On March 14, 2018, IBM Security announced the results of a new global study on organizational cybersecurity readiness and resiliency entitled “The 2018 Cyber Resilient Organization.” 23% of respondents say they do not currently have a CISO or security leader. .” Is this confidence misplaced?

Cybersecurity

Cybersecurity Artificial Intelligence Data breaches IoT

Congress Passes Cyber Incident Reporting for Critical Infrastructure Act of 2022

Data Matters

MARCH 21, 2022

Congress has passed a significant new cybersecurity law that will require critical infrastructure entities to report material cybersecurity incidents and ransomware payments to the Cybersecurity and Infrastructure Security Agency (CISA) within 72 and 24 hours, respectively. 651, et seq. Cybersecurity Reporting Harmonization.

Ransomware

Ransomware Cybersecurity Agriculture Communications

The Week in Cyber Security and Data Privacy: 6 – 12 November 2023

CFPB’s Proposed Data Rules

Webinars

Trending Sources

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Webinars

NY Department of Financial Services Issues Guidance to Regulated Entities Regarding Cybersecurity During the COVID-19 Pandemic

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

The Privacy Officers’ New Year’s Resolutions

Navigating the digital wave: Understanding DORA and the role of confidential computing

How Jamworks protects confidentiality while integrating AI advantages

The G7 expresses its concern over ransomware attacks

The compliance challenges of hybrid working

The Privacy Officers’ New Year’s Resolutions

Tackling Data Sovereignty with DDR

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

Privacy and Cybersecurity Top 10 for 2018

MY TAKE: Why companies and consumers must collaborate to stop the plundering of IoT systems

Webinar Recording Available on the NYDFS Regulations

“Cryptoassets are here to stay”: EU Authorities to Provide Guidance on Cryptocurrencies and ICOs

How to Prevent Data Breaches: Data Breach Prevention Tips

EU Parliament Approves Collective Redress Directive

FTC Seeks Comment on Proposed Changes to GLBA Implementing Rules

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

CIPL and AvePoint Release Global GDPR Readiness Report

Institutional Investor’s Introduction to Blockchain and Digital Asset Investing

Conversational AI use cases for enterprises

Top GRC Tools & Software for 2021

6 Best Threat Intelligence Feeds to Use in 2023

Top 10 Governance, Risk and Compliance (GRC) Vendors

Archives Records 2018 RMS Annual Meeting

Ireland: DPC Produces “Significant Outputs” for 2022 Concluding 17 Large Scale Inquiries

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

Tuesday’s Relativity Fest 2019 Sessions: eDiscovery Trends

Capital Markets, AI, and the need for governance

US: Coronavirus – Cybersecurity considerations for your newly remote workforce

Target Data Breach Litigation: District Court Certifies Class of Financial Institutions

European instant payments in harmony: Traditional wisdom meets innovative thinking

Regulatory Update: NAIC Summer 2019 National Meeting

California Consumer Privacy Act: The Challenge Ahead — Introduction to Hogan Lovells’ Blog Series

Living in a data sovereign world

SEC Requests Comment on Regulation of Information Providers Under the U.S. Investment Advisers Act

European Commission publishes long-awaited draft Regulation on Artificial Intelligence

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

The Hacker Mind Podcast: Going Passwordless

Survey Says…Cybersecurity Remains A Critical Challenge For Business

Congress Passes Cyber Incident Reporting for Critical Infrastructure Act of 2022

Stay Connected