Hunton Privacy

DECEMBER 18, 2018

On December 13, 2018, the Dutch Data Protection Authority (“ Autoriteit Persoonsgegevens ”) (the “Dutch DPA”) published a report on the complaints it has received since the EU General Data Protection Regulation (“GDPR”) became applicable on May 25, 2018 (the “Report”). View the Report and the press release (in Dutch).

GDPR 59

GDPR Personal data Data collection Business Services 59

AIIM

AUGUST 8, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. How do they assess their progress in meeting the core requirements of GDPR?

GDPR 80

GDPR Compliance Digital preservation Artificial Intelligence 80

IT Governance

NOVEMBER 8, 2018

Updated 8 November 2018. This blog was originally published before the GDPR took effect in May 2018. An integral part of EU GDPR (General Data Protection Regulation) compliance is producing appropriate documentation. When should you provide a GDPR privacy notice? How do you write a GDPR privacy policy?

GDPR 76

GDPR Privacy Personal data Compliance 76

IT Governance

DECEMBER 1, 2017

There are only six months to go before the General Data Protection Regulation (GDPR) comes into effect, but some businesses are not even thinking about it yet, or are only just starting to. The board must understand the implications of the GDPR in order to support the project and allocate the resources required to complete it.

GDPR 75

GDPR Compliance Privacy Risk 75

The Last Watchdog

AUGUST 29, 2019

The EU slammed the UK airline with a $230 million fine , and then hammered the US hotel chain with a $125 million penalty – the first major fines under the EU’s toughened General Data Protection Regulation , which took effect May 25, 2018. Related: Will GDPR usher in new age of privacy? million, on average.

GDPR 153

GDPR Privacy Big data Personal data 153

IT Governance

MARCH 8, 2018

An integral part of your EU General Data Protection Regulation (GDPR) compliance project is producing appropriate documentation, which includes a privacy notice. If you are just beginning your GDPR project, it is unlikely that you will be fully compliant by the time the Regulation is enforced on 25 May 2018.

GDPR 76

GDPR Privacy Compliance Marketing 76

IT Governance

DECEMBER 18, 2017

Many organisations are struggling to fill a skills gap created by the EU General Data Protection Regulation (GDPR) and need staff with knowledge of the Regulation. IT Governance runs two levels of GDPR training courses across the UK to train staff on the Regulation, giving them the knowledge required to manage a GDPR compliance project.

GDPR 49

GDPR Personal data Compliance Data breaches 49

IT Governance

MARCH 27, 2018

Almost half (46%) of respondents identified at least one cyber security breach or attack in the past 12 months. The importance of penetration testing will become even more apparent when the EU General Data Protection Regulation (GPDR) takes effect on 25 May 2018. The GDPR and penetration testing. >>

GDPR 68

GDPR Compliance Data breaches Personal data 68

Thales Cloud Protection & Licensing

JANUARY 5, 2018

According to IDC, nearly 80% of IT organizations currently deploy multi-cloud or plan to implement multi-cloud environments within 12 months. Recently, executives from CenturyLink, Thales eSecurity and Park Legal LLC participated in a webinar about “preparing for GDPR in a multi-cloud world”. security controls in the GDPR regulation.

GDPR 91

GDPR Cloud Encryption Personal data 91

HL Chronicle of Data Protection

JUNE 11, 2018

Please join us for our June 2018 Privacy and Cybersecurity Events. Harriet Pearson , Michelle Kisloff , Joke Bodewits , and Martin Strauch will host a webinar entitled, “ Data Breach Response & Notification Under the EU GDPR and U.S. Breach Notification Under the GDPR and Privacy and Cybersecurity Litigation.

Cybersecurity 40

Cybersecurity Privacy GDPR Data breaches 40

Hunton Privacy

DECEMBER 1, 2020

million on Carrefour France and a fine of €800,000 on Carrefour Banque for various violations of the EU General Data Protection Regulation (“GDPR”) and Article 82 of the French Data Protection Act governing the use of cookies. GDPR and Cookie Violations. Background.

GDPR 91

GDPR Personal data Data collection Marketing 91

IT Governance

FEBRUARY 8, 2018

The Cyber Security Breaches Survey 2018 from the Department for Digital, Culture, Media and Sport (DCMS) has revealed that only 38% of businesses and 44% of charities have heard of the General Data Protection Regulation (GDPR). Are your staff aware of the GDPR? Key findings.

GDPR 54

GDPR Government Education Compliance 54

HL Chronicle of Data Protection

SEPTEMBER 28, 2018

Please join us for our October 2018 Privacy and Cybersecurity Events. GDPR Compliance. Bret Cohen will speak on the panel, “ GDPR Compliance 2.0 ,” at the Privacy + Security Forum. Highlights From the GDPR. October 11-12. Location : Silicon Valley – October 11 and Los Angeles – October 12.

Privacy 40

Privacy Cybersecurity GDPR Data Privacy 40

IT Governance

JULY 23, 2018

The General Data Protection Regulation, which came into force in May 2018, has reformed the laws around processing the personal data of EU residents. Let’s start with the basics: a DPO is appointed by an organisation to monitor the application of GDPR and ensure compliance. So, what exactly is a DPO and what do they do?

GDPR 63

GDPR Personal data Compliance Privacy 63

IT Governance

JUNE 29, 2018

This week, we discuss the apparent leak of 340 million data records, a vulnerability that exposed sensitive BetVictor data, a data breach affecting up to 40,000 Ticketmaster customers, and the number of GDPR complaints since 25 May. Hello and welcome to the IT Governance podcast for Friday, 29 June 2018. Here are this week’s stories.

GDPR 67

GDPR Passwords Data breaches Access 67

HL Chronicle of Data Protection

MAY 29, 2019

Following the one-year anniversary of the coming into effect of the GDPR, Hogan Lovells’ Privacy and Cybersecurity practice has prepared summaries of key GDPR-related developments of the past 12 months. The summaries cover regulatory guidance, enforcement actions, court proceedings, and various reports and materials.

GDPR 40

GDPR Personal data Privacy Information architecture 40

Hunton Privacy

JUNE 1, 2018

On May 30, 2018, the European Data Protection Board (“EDPB”), replacing the Article 29 Working Party , published the final version of Guidelines 2/2018 on derogations in the context of international data transfers and draft Guidelines 1/2018 on certification under the EU General Data Protection Regulation (“GDPR”). .

GDPR 58

GDPR Personal data Compliance Risk 58

Hunton Privacy

APRIL 17, 2017

On April 12, 2017, the Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP issued a discussion paper on Certifications, Seals and Marks under the GDPR and Their Roles as Accountability Tools and Cross-Border Data Transfer Mechanisms (the “Discussion Paper”). The GDPR will become effective on May 25, 2018.

Paper 60

Paper GDPR Compliance Privacy 60

HL Chronicle of Data Protection

MARCH 25, 2019

On 12 March 2019 at its Eighth Plenary Session , the European Data Protection Board (“EDPB”) adopted its Opinion 5/2019 on the interplay between the ePrivacy Directive (“ePD”) and the General Data Protection Regulation (“GDPR”).

GDPR 40

GDPR Personal data Communications Access 40

Hunton Privacy

JUNE 13, 2019

2019-536 (the “Implementing Decree”) took force, enabling the French Data Protection Act, as amended by an Ordinance of December 12, 2018, likewise to enter into force. The Ordinance of December 12, 2018, completely redrafted the French Data Protection Act to correct inconsistencies with the new EU data protection framework.

Personal data 80

Personal data GDPR IT 80

Hunton Privacy

OCTOBER 18, 2022

On October 12, 2022, the UK Information Commissioner’s Office (“ICO”) launched a public consultation on its draft guidance on employers’ obligations when monitoring at work (“Draft Guidance”). The public consultation on the Draft Guidance and Impact Scoping Document will remain open until 5pm on January 11, 2023.

GDPR 58

GDPR Personal data Compliance Access 58

Security Affairs

MAY 22, 2023

This is the biggest fine since the adoption of the General Data Protection Regulation (GDPR) by the European Union (EU) on May 25, 2018. The European Union fined Meta $1.3 billion for transferring user data to the US.

GDPR 79

GDPR Personal data Privacy Data Privacy 79

Hunton Privacy

JULY 15, 2020

The Dutch DPA found that BKR had infringed the GDPR on the following grounds: Free of charge access requests: The Dutch DPA found that BKR had infringed Article 12(5) of the GDPR by charging a fee to data subjects wishing to access personal data in a digital format. The Dutch DPA’s Decision.

Compliance 65

Compliance GDPR Personal data Paper 65

CGI

DECEMBER 19, 2017

GDPR: It’s Christmas – A time of good FEAR! Tue, 12/19/2017 - 14:18. The biggest regulatory driver in 2018 will be the introduction of the General Data Protection Regulation (GDPR) in May. But smaller companies don’t seem to have gotten to grips with what they need to do to comply with GDPR. That’s a concern.

GDPR 40

GDPR Insurance Risk Privacy 40

Data Matters

JUNE 29, 2018

On June 28, 2018, California Gov. Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375). However, unlike the European Union’s GDPR, AB 375 generally permits opt-out rather than opt-in consent as a basis for collection, use or sale of personal information and does not prohibit specific practices.

GDPR 79

GDPR Privacy Sales Data breaches 79

IT Governance

APRIL 23, 2018

Discussion Podcast Episode 12 – Security in the Digital World, Social Networking Security: “Every social networking application has security settings that must be assessed before being applied.” The closing date for entries (this week) is midnight on Thursday 26th April 2018. One winning entry will be selected at random.

Security 47

Security Security awareness Information Security Government 47

Hunton Privacy

DECEMBER 20, 2017

On December 12, 2017, the Article 29 Working Party (“Working Party”) published its guidelines on transparency under Regulation 2016/679 (the “Guidelines”). The Guidelines aim to provide practical guidance and clarification on the transparency obligations introduced by the EU General Data Protection Regulation (“GDPR”).

GDPR 62

GDPR Personal data Privacy Communications 62

IT Governance

DECEMBER 13, 2018

This week, in our last podcast of the year, we revisit some of the biggest information security stories from the past 12 months. Hello and welcome to the final IT Governance podcast of 2018. Equifax issued its financial report for the first quarter of 2018, revealing that its huge 2017 data breach had so far cost it $242.7

Data breaches 64

Data breaches Personal data Access GDPR 64

Archive Document Data Storage

JULY 31, 2017

Yes, educating staff about the GDPR and raising awareness is the all-important step that will unite your organisation and team members in the GDPR fight for survival! Have some decent sandwiches, nibbles and soft drinks, and give the team the ICO’s overview of the GDPR (download this from our GDPR page ).

GDPR 45

GDPR Education Archiving 45

Hunton Privacy

JUNE 11, 2019

On August 12, 2018, the CNIL received a web user complaint that, when logged in to his personal account, the user was able to access the documents of other users by slightly amending the URL displayed in the browser bar.

Personal data 104

Personal data Security GDPR Archiving 104

HL Chronicle of Data Protection

SEPTEMBER 27, 2017

Ensuring that the GDPR, as implemented by the bill, will continue to apply to the U.K. Data Protection Act 1998, the bill replicates much of the content of the 1998 Act, particularly in relation to derogations and exemptions from the GDPR. First and foremost, the bill applies the GDPR to U.K. after Brexit. domestic law.

GDPR 40

GDPR Personal data Government Privacy 40

Hunton Privacy

OCTOBER 5, 2016

In September, the Centre for Information Policy Leadership (“CIPL”) held its second GDPR Workshop in Paris as part of its two-year GDPR Implementation Project. There was a sense of shared responsibility for the successful and timely implementation of the GDPR between industry, DPAs, national governments and the EU Commission.

GDPR 49

GDPR Risk IT Compliance 49

IT Governance

MAY 29, 2018

Remember when I said last month that “with the GDPR less than a month away I imagine future lists will be even longer thanks to the introduction of mandatory data breach notifications”? Well, May’s list of incidents is very long, and the GDPR only came into effect at the end of the month. I’m not, though. I’m entirely guileless.

Data breaches 89

Data breaches GDPR Ransomware Passwords 89

Data Protection Report

JULY 8, 2019

The issue giving rise to the financial penalty was a security breach relating to the company’s website notified by a user to the CNIL on 12 August 2018. In view of this, the CNIL identified two breaches of the General Data Protection Regulation [3] ( GDPR ): 1.

GDPR 40

GDPR Personal data Compliance Security 40

Hunton Privacy

APRIL 28, 2017

The new BDSG is intended to adapt the current German data protection law to the EU General Data Protection Regulation (“GDPR”), which will become effective on May 25, 2018. The GDPR allows for certain EU Member State deviations from the text of the GDPR.

GDPR 49

GDPR Personal data Information Security Security 49

ARMA International

APRIL 18, 2022

Countries and organizations within the European Union (EU), must comply with the requirements of the General Data Protection Regulation (GDPR) 1. Many countries outside of the EU have created and implemented their own data protection laws that are similar to the GDPR 2. 12 GDPR Enforcement Tracker. 2016/679, Art.

Personal data 100

Personal data GDPR Privacy Records Management 100

Data Matters

JUNE 29, 2018

On June 28, 2018, California Gov. Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375). However, unlike the European Union’s GDPR, AB 375 generally permits opt-out rather than opt-in consent as a basis for collection, use or sale of personal information and does not prohibit specific practices.

GDPR 60

GDPR Privacy Sales Data breaches 60