Breaching the GDPR

Data Protector

GDPR 156

GDPR Compliance Used as Phishing Lure

Data Breach Today

Campaign Designed to Steal Credentials A recently uncovered phishing campaign used the European Union's General Data Protection Regulation as a lure to steal login credentials. The campaign enticed victims with subject lines indicating their email security system was not in compliance with the law, according to Area 1 Security

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Big GDPR Fines in UK and Ireland: What's the Holdup?

Data Breach Today

and Ireland each issued only one final GDPR fine to date Both Countries Have Each Issued Only a Single, Finalized Fine Under EU's Privacy Law The EU's General Data Protection Regulation was meant to finally bring in line organizations that didn't treat Europeans' personal data with respect.

GDPR 247

GDPR: Data Breach Notification 101

Data Breach Today

Brian Honan of BH Consulting on When to Notify - or Not Since the EU's new GDPR privacy law came into effect in May 2018, one challenge for organizations that suffer a breach is knowing whether or not they must report it to authorities, says Brian Honan, president and CEO of BH Consulting in Dublin

Is GDPR Compliance Tougher Than HIPAA Compliance?

Data Breach Today

Analysts: GDPR Case in Portugal Offers Lessons for U.S. Healthcare Entities An EU General Data Protection Regulation enforcement action against a hospital in Portugal demonstrates complying with GDPR may be even tougher than complying with HIPAA. Regulatory experts analyze the implications of the case

Google Will Appeal Latest GDPR Fine

Data Breach Today

Sweden's Privacy Watchdog Hits Company With $8 Million Penalty Google will appeal the latest GDPR fine levied against the company. The Swedish Data Protection Authority fined the company nearly $8 million for failure to remove search results related to "right-to-be-forgotten" requests

GDPR 169

Analysis: The Significance of GDPR Fines

Data Breach Today

The latest edition of the ISMG Security Report analyzes the significance of fines against British Airways and Marriott for violations of the EU's GDPR. Also featured are discussions of California's privacy law as a model for other states and the next generation of deception technologies

GDPR 200

Cisco Studies Global Impact of GDPR

Data Breach Today

Cisco is out with findings from its 2019 Data Privacy Benchmark Study, which shows the impact of GDPR compliance as well as how customers are asking more questions about how their data is secured. Cisco Chief Privacy Officer Michelle Dennedy analyzes the survey

GDPR 210

GDPR: $126 Million in Fines and Counting

Data Breach Today

GDPR 151

Under GDPR, UK Data Breach Reports Quadruple

Data Breach Today

After Privacy Law Went Into Full Effect, Data Security Complaints Doubled One year after Europe's tough new GDPR privacy law went into full effect last May, authorities in Britain have seen the number of annual data breach notifications more than quadruple.

Marriott Mega-Breach: Will GDPR Apply?

Data Breach Today

With GDPR in full effect since May, organizations with data security practices face the potential of massive fines Legal Experts Suspect So, But Investigation Could Take a Year or More Will Marriott be the first organization that lost control of Europeans' personal data to feel the full force of the EU's General Protection Regulation?

GDPR 196

GDPR Two Years On: Compliance Lessons Learned

Data Breach Today

Attorneys Discuss Gaps That Still Need To Be Addressed Now that it's been two years since enforcement of the European Union's General Data Protection Regulation began, three attorneys - Kelsey Finch, Jonathan Armstrong and David Dumont - reflect on the lessons learned so far and the compliance gaps that still need to be addressed

The GDPR for the Little Guy (or Gal)

Weissman's World

What is the GDPR? The GDPR is the European Union’s General Data Protection Regulation, and as the EU’s new take on privacy protection, it took effect a month ago to much fanfare. The post The GDPR for the Little Guy (or Gal) appeared first on Holly Group. GDPR infogov

GDPR 190

Using Strategic Data Governance to Manage GDPR/CCPA Complexity

erwin

for alleged violations of the European Union’s General Data Protection Regulation (GDPR). While not the first , it is the largest penalty levied since the GDPR went into effect in May 2018. cautions: “European regulators could accelerate the crackdown on GDPR violators, which in turn could accelerate demand for GDPR readiness. With all the advance notice and significant chatter for GDPR/CCPA, why aren’t organizations more prepared to deal with data regulations?

GDPR 85

GDPR: Europe Counts 65,000 Data Breach Notifications So Far

Data Breach Today

Privacy regulators have also imposed at least $63 million in GDPR fines $63 Million in Fines Imposed Since Privacy Law Went Into Full Effect European privacy authorities have received nearly 65,000 data breach notifications since the EU's General Data Protection Regulation went into full effect in May 2018.

GDPR and COVID-19: Privacy Regulator Promises 'Flexibility'

Data Breach Today

While Breach Notification Rules Still Apply, Expect Lower Fines As the COVID-19 pandemic continues, Britain's privacy watchdog has signaled that although privacy rights and transparency - as enshrined under GDPR - remain paramount, it will take a more "flexible" regulatory approach.

GDPR 109

Why Isn't GDPR Being Enforced?

Schneier on Security

Politico has a long article making the case that the lead GDPR regulator, Ireland, has too cozy a relationship with Silicon Valley tech companies to effectively regulate their privacy practices. cybersecurity gdpr ireland loopholes nationalsecuritypolicy

GDPR 87

The Reasons Behind Google's GDPR Fine

Data Breach Today

The latest edition of the ISMG Security Report features an analysis of why Google was one of the first companies to be hit with a major GDPR fine, plus a global update on GDPR compliance trends and an in-depth report on shifts in malware

GDPR 142

Consequences of GDPR Noncompliance: Steep Fines and Expensive Lessons

InfoGoTo

It’s unlikely the regulated community wants to learn the consequences of GDPR noncompliance the hard way. The Dutch Data Protection Authority’s July 2020 action is a noteworthy reminder of just how costly GDPR rule-breaking can be. Why Did This Violate GDPR?

GDPR 52

Auditing your GDPR practices

IT Governance

Follow our advice to make sure your organisation is GDPR-compliant and avoids disciplinary action. After a relatively quiet few months, the EU GDPR (General Data Protection Regulation) is back in the news. They got their answer last week, when German chat app Knuddels became the first organisation to receive a substantial penalty under the GDPR. Our GDPR Audit Service includes everything you need to review your compliance posture. EU GDPR GDPR

GDPR 65

GDPR Compliance: Should CISO Serve as DPO?

Data Breach Today

Sorting Out the Role of the Data Protection Officer As organizations settle into the third year of enforcement of the EU's General Data Protection Regulation, some are struggling to define and understand the role of a data protection officer as required under the regulation - including whether the CISO should take on the extra role of DPO.

GDPR: Is Australia Ready?

Data Breach Today

With Europe's GDPR enforcement set to take effect on May 25, Australian organizations vary in readiness. Steve Ingram of PwC says it's not too late for companies to prepare for GDPR, but it will be too late to ask regulators for forgiveness if something goes wrong

GDPR 100

GDPR: Still Plenty of Lessons to Learn

Data Breach Today

RSA Conference Panel: Organizations Worldwide Face Long List of Challenges Nearly 10 months after the beginning of enforcement of the EU's GDPR privacy regulation, organizations around the world are still learning plenty of compliance lessons - including how to locate all personal data so it can be protected, according to regulatory experts on a panel at RSA Conference 2019

GDPR 152

French Court Upholds $57 Million Google GDPR Fine

Data Breach Today

The fine is the biggest yet for a GDPR privacy policy violation Largest Penalty Levied So Far Under EU's Privacy Regulation France's top court has upheld a $56 million fine against Google for violating the EU's General Data Protection Regulation with its advertising personalization model that lacked adequate user consent measures.

GDPR 122

Data Breach Reports in Europe Under GDPR Exceed 59,000

Data Breach Today

Netherlands, Germany and UK Have Logged the Most Data Breach Reports Since the EU's GDPR went into full effect, European data protection authorities have received over 59,000 data breach reports, with the Netherlands, Germany and the U.K. receiving the greatest number of notifications, according to the law firm DLA Piper

Facebook Submits GDPR Breach Notification to Irish Watchdog

Data Breach Today

Report Into 50 Million Breached Accounts Is Incomplete, Privacy Watchdog Warns To comply with GDPR, Facebook has notified Ireland's data privacy watchdog about the massive breach it has suffered, resulting in 50 million accounts being exposed.

GDPR 219

The Effects of GDPR's 72-Hour Notification Rule

Schneier on Security

The EU's GDPR regulation requires companies to report a breach within 72 hours. disclosure facebook gdpr

GDPR 113

GDPR Compliance Site Leaks Git Data, Passwords

Threatpost

Researchers discovered a.git folder exposing passwords and more for a website that gives advice to organizations about complying with the General Data Protection Regulation (GDPR) rules. Privacy Web Security.git directory data exposure data leak Data Privacy GDPR gdpr.eu git Passwords pen test partners

ITALY: First GDPR fine issued!

DLA Piper Privacy Matters

The first GDPR fine was issued in Italy by the Garante for the lack of implementation of privacy security measures following a data breach on the so-called Rousseau platform operating the websites of the Movimento 5 Stelle party. The first GDPR fine issued in Italy. Uncategorized GDPR Italy Privacy

GDPR 81

Exploiting GDPR to Get Private Information

Schneier on Security

A researcher abused the GDPR to get information on his fiancee: It is one of the first tests of its kind to exploit the EU's General Data Protection Regulation (GDPR) , which came into force in May 2018. But the kind of mid-sized businesses that knew about GDPR, but maybe didn't have much of a specialised process [to handle requests], failed.". cybersecurity gdpr privacy

GDPR 87

GDPR for small business: the ultimate guide

IT Governance

What is the GDPR? First, the UK has implemented the UK DPA (Data Protection Act) 2018 , which adopts the GDPR into national law. Second, if you process EU residents’ personal data, the GDPR still applies. Because this information could be particularly damaging if breached, the GDPR requires that organisations take extra steps to protect it. Does the GDPR apply to small businesses? What does the GDPR mean for my business? GDPR compliance checklist.

GDPR 57

French Court Upholds $56 Million Google GDPR Fine

Data Breach Today

The fine is the biggest yet for a GDPR privacy policy violation Largest Penalty Levied So Far Under EU's Privacy Regulation France's top court has upheld a $56 million fine against Google for violating the EU's General Data Protection Regulation with its advertising personalization model that lacked adequate user consent measures.

GDPR 116

Kickstart your GDPR program

OpenText Information Management

The role of Data Discovery in General Data Protection Regulation (GDPR) compliance is the essential first step to building a successful GDPR program, but it’s one that many companies are struggling to take. Companies are faced with terabytes or petabytes of data spread throughout their organization – and beyond – and don’t clearly know what … The post Kickstart your GDPR program appeared first on OpenText Blogs.

GDPR 59

GDPR Compliance: Common Misconceptions

Data Breach Today

Attorney Elizabeth Harding clears up confusion about certain provisions of the EU's General Data Protection Regulation, including the issue of when organizations need to obtain a European consumer's consent to process their data

Data Governance Best Practices in the GDPR Era

Data Breach Today

Matt Lock of Varonis on the Need to Have a Baseline for Data Access Behavior GDPR requires organizations to "have a governance model in terms of access and control and accountability," says Matt Lock of Varonis, who describes essential steps

GDPR 195

UK's Brexit Transition Period: Keep Complying With GDPR

Data Breach Today

Privacy Rules Remain in Effect Pending Eventual Outcome of UK-EU Negotiations As former U.K. Prime Minister Theresa May famously declared: "Brexit means Brexit." But what Britain's exit from the EU means for the nation's data privacy rules and future EU-U.K.

GDPR 209

Marriott Faces $125 Million GDPR Fine Over Mega-Breach

Data Breach Today

Breach Persisted 4 Years - and Through Acquisition - Before Being Discovered Britain's privacy watchdog says it plans to fine hotel giant Marriott $125 million under GDPR for security failures tied to a 2014 breach of the guest reservation database for Starwood, which Marriott acquired in 2016.

GDPR 165

GDPR: 8,000 Data Breach Reports Filed So Far in UK

Data Breach Today

Privacy Watchdog Counts 41 Daily Breach Reports Since GDPR Enforcement Began The U.K.'s s privacy watchdog says that six months after enforcement of the EU's General Data Protection Regulation began, it's seen a dramatic increase in data breach reports - as well as privacy complaints from the public

15 GDPR Probes in Ireland Target Facebook, Twitter, Others

Data Breach Today

Ten of the 15 major investigations that the Data Protection Commission launched since the EU's tough new privacy law, GDPR, went into full effect in May 2018 are focused on Facebook Facebook Alone the Focus of 10 Separate Regulatory Investigations by Privacy Watchdog Ireland's privacy watchdog has its eye on Facebook.

GDPR 179

Free Game: This Is GDPR Jeopardy!

MediaPro

The post Free Game: This Is GDPR Jeopardy! Blog FAQ Foundational GDPR Resources Privacy Awareness Resources Thought Leadership games GDPR privacy awareness resourcesappeared first on MediaPRO.

GDPR 47