GDPR and Marketing - Information Management Today

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Even the world’s biggest businesses are not free from GDPR woes. Many businesses find it hard to implement GDPR requirements because the law is not only complex but also leaves a lot up to discretion.

GDPR

GDPR Compliance Personal data Privacy

GDPR for small business: the ultimate guide

IT Governance

JULY 2, 2020

What is the GDPR? First, the UK has implemented the UK DPA (Data Protection Act) 2018 , which adopts the GDPR into national law. Second, if you process EU residents’ personal data, the GDPR still applies. There is also a special category of personal data devoted to sensitive information. A quick overview.

GDPR

GDPR Personal data Data breaches Compliance

UK ICO Releases Draft Direct Marketing Code of Practice for Public Consultation

Data Matters

FEBRUARY 10, 2020

On 8 January 2020, the UK’s Information Commissioner’s Office ( ICO ) published a draft Direct Marketing Code of Practice ( Draft Code ) for public consultation. The Draft Code is intended to update existing guidance published pre-GDPR and provide clarity on certain important issues.

Marketing

Marketing GDPR Personal data Communications

The Digital Markets Act Is Almost Here: 10 Things to Know About the EU’s New Rules for Big Tech

Data Matters

JUNE 1, 2022

The Digital Markets Act (DMA) will impose a stringent regulatory regime on large online platforms (so-called “gatekeepers”) and give the European Commission (Commission) new enforcement powers, including an ability to impose severe fines and remedies for noncompliance. Designation Process. Interplay with other regulatory frameworks.

Marketing

Marketing Computer and Electronics Communications GDPR

Why risk assessments are essential for GDPR compliance

IT Governance

OCTOBER 15, 2019

Any organisation that’s required to comply with the GDPR (General Data Protection Regulation) must conduct regular risk assessments. However, the GDPR is clear that data is also vulnerable to accidental or unlawful destruction, loss or disclosure. The GDPR risk assessment methodology. Get started with vsRisk.

GDPR

GDPR Risk Compliance Personal data

Australia Privacy Act review – a blueprint for change?

DLA Piper Privacy Matters

FEBRUARY 20, 2023

Authors: Sarah Birkett , Nicholas Boyle The Australian Attorney-General has published the (long-awaited) results of the Privacy Act review. The report recommends a number of changes to the Australian privacy framework, including various changes to Australia’s core privacy legislation, the Privacy Act 1988 (Cth).

Privacy

Privacy Data breaches Marketing Government

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375). This legislation was enacted on an extraordinarily accelerated timeframe as part of compromise with the sponsor of a comparable privacy ballot initiative, which had qualified to be placed before state voters on Election Day in November 2018.

GDPR

GDPR Privacy Sales Data breaches

ITALY: the Garante aligns with CNIL and DSB holding that the use of Google Analytics leads to unlawful transfer of Personal Data

DLA Piper Privacy Matters

JUNE 27, 2022

The Italian privacy authority, the Garante, deemed that the use of Google Analytics results in unlawful transfers of personal data to the United States in violation of the principles outlined in the Schrems II ruling. In Order No. In Order No.

Personal data

Personal data Analytics GDPR Privacy

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

This is the fifth installment in Hogan Lovells’ series on the California Consumer Privacy Act. . As the most comprehensive privacy law to be enacted in the United States thus far, the California Consumer Privacy Act (CCPA) has inevitably invited comparisons to the European Union’s General Data Protection Regulation (GDPR).

GDPR

GDPR Privacy Personal data Sales

Automated Security and Compliance Attracts Venture Investors

eSecurity Planet

FEBRUARY 14, 2023

The vision was to automate security and compliance across 14 frameworks, including SOC 2, ISO 27001, HIPAA and GDPR. GRC Market Defies Downturn There are some powerful drivers for the compliance and security automation market. OneTrust is another company benefiting from the booming compliance market, rocketing to a $5.3

Compliance

Compliance Security Cybersecurity Marketing

Building cyber security careers

IT Governance

OCTOBER 21, 2021

The UK government’s Cyber security skills in the UK labour market 2021 report estimates that approximately 680,000 UK businesses (50% of those surveyed) have a basic skills gap. Information security is a broader category that protects all information assets, whether in hard copy or digital form. UK skills gap.

Security

Security Information Security GDPR Data Privacy

California Enacts Broad Privacy Protections Modeled on GDPR

Data Matters

JUNE 29, 2018

Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375). This legislation was enacted on an extraordinarily accelerated timeframe as part of compromise with the sponsor of a comparable privacy ballot initiative, which had qualified to be placed before state voters on Election Day in November 2018.

GDPR

GDPR Privacy Sales Data breaches

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

This is the fifth installment in Hogan Lovells’ series on the California Consumer Privacy Act. . As the most comprehensive privacy law to be enacted in the United States thus far, the California Consumer Privacy Act (CCPA) has inevitably invited comparisons to the European Union’s General Data Protection Regulation (GDPR).

GDPR

GDPR Privacy Personal data Sales

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

This is the fifth installment in Hogan Lovells’ series on the California Consumer Privacy Act. . As the most comprehensive privacy law to be enacted in the United States thus far, the California Consumer Privacy Act (CCPA) has inevitably invited comparisons to the European Union’s General Data Protection Regulation (GDPR).

GDPR

GDPR Privacy Personal data Sales

Security Outlook 2023: Cyber Warfare Expands Threats

eSecurity Planet

JANUARY 5, 2023

“In 2022, governments fought wars online, businesses were affected by multiple ransomware gangs, and regular users’ data was constantly on hackers’ radars,” said NordVPN CTO Marijus Briedis. From a user perspective, this is great news, as it results in more online privacy. federal privacy statute.

Security

Security Ransomware Cybersecurity Privacy

BELGIUM: Belgian DPA reveals its strategy for the next 5 years.

DLA Piper Privacy Matters

FEBRUARY 11, 2020

It will focus its attention on specific industry sectors as well as on specific GDPR topics and societal themes. The DPA will be especially focussing on enhancing GDPR compliance in the following industry sectors: Telecom and media sector , due to the large amount of data they process. 3 GDPR TOPICS OF PARTICULAR ATTENTION.

IT

IT GDPR Compliance Personal data

ICO’s McDougall Warns Adtech Sector that Change Is Needed

Hunton Privacy

JULY 11, 2019

Although McDougall pointed to various areas of the industry that are causing the regulator concern, he stated that the ICO’s focus in the short-term is primarily on the use of special category (also known as sensitive) data processed as part of real-time bidding, such as race, religion and mental health. This is simple stuff.”.

GDPR

GDPR Marketing Personal data Compliance

ICO Warns of Increased Focus on Adtech

Hunton Privacy

JULY 1, 2019

The report focuses on whether and how organizations in the adtech sector can comply with the EU General Data Protection Regulation (“GDPR”) and the UK’s implementation of the e-Privacy Directive, known as the Privacy and Electronic Communications Regulations (“PECR”).

GDPR

GDPR Personal data Privacy Communications

Examples of data processing activities that require a DPIA

IT Governance

JUNE 19, 2019

The GDPR (General Data Protection Regulation) requires organisations to conduct a DPIA (data protection impact assessment) whenever processing is ‘likely to result in a high risk’ to the rights and freedoms of individuals. Damage : the effects on the individual if a data breach or privacy violation occurs. Online services.

GDPR

GDPR Personal data Risk Data breaches

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

The wait is finally over—this Friday the European Union General Data Protection Regulation (GDPR) will come into force. However, the challenges of GDPR certainly don’t end on the date this law goes into implementation. Many of our clients ask us when and how they may be called upon to demonstrate compliance with the GDPR.

GDPR

GDPR Personal data Compliance Data breaches

CIPL and its GDPR Project Stakeholders Discuss DPOs and Risk under GDPR

Hunton Privacy

OCTOBER 5, 2016

In September, the Centre for Information Policy Leadership (“CIPL”) held its second GDPR Workshop in Paris as part of its two-year GDPR Implementation Project. There was a sense of shared responsibility for the successful and timely implementation of the GDPR between industry, DPAs, national governments and the EU Commission.

GDPR

GDPR Risk IT Compliance

Why every organisation needs data protection impact assessments

IT Governance

NOVEMBER 23, 2018

They are a useful accountability tool: the results of a DPIA will help you demonstrate that you have taken the appropriate technical and organisational measures required by the GDPR (General Data Protection Regulation). Data controllers are responsible for conducting DPIAs as required by Article 35 of the GDPR.

GDPR

GDPR Personal data Risk Marketing

ICO update report into adtech and real time bidding

DLA Piper Privacy Matters

JULY 3, 2019

On 20 June the ICO issued its interim report into a its review of the adtech industry and real time bidding process (“RTB”) that forms an integral part of the online advertising ecosystem. RTB – what is it? RTB is the process which culminates in targeted adverts displayed to website and app users (“ users “).

GDPR

GDPR Data collection Personal data Marketing

U.S. states pass data protection laws on the heels of the GDPR

Data Protection Report

JULY 9, 2018

states have recently introduced and passed legislation to expand data breach notification rules and to mirror some of the protections provided by Europe’s newly enacted General Data Protection Regulation (“GDPR”). See our previous blog posts on GDPR here and here. Several U.S. On the security front, as of March 2018, all 50 U.S.

GDPR

GDPR Data breaches Personal data Insurance

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

Rather than bringing substantial changes to the existing China data privacy framework, the PIPL helpfully consolidates and clarifies obligations on processing of personal information at a national law level. To be clear, this is not China’s own GDPR.

Data Privacy

Data Privacy Privacy Compliance Analytics

FRANCE: A new phase in European privacy law enforcement – CNIL fined Google LLC 50 million euros!

DLA Piper Privacy Matters

JANUARY 24, 2019

On 21 January 2019, the restricted committee of the French Data Protection Supervisory Authority (CNIL) fined Google LLC 50 million euros for breaching GDPR for lack of transparency, inadequate information and lack of valid consent regarding personalized advertising. . Both organizations were regrouping the claims of 9974 data subjects.

Privacy

Privacy GDPR Personal data Compliance

When Is Data "Public"? (And 2.5M Public Factual Records in HIBP)

Troy Hunt

DECEMBER 24, 2019

Willingly publishing your personal data online in a specific context is one thing, an organisation then taking it providing it another context is. Factual is "a location data company that helps marketers and their organizations use location to better understand, reach and engage consumers". So what's the problem?

Personal data

Personal data Privacy Data breaches GDPR

Spanish DPA on Use of Cookies: Continued Browsing is Consent

HL Chronicle of Data Protection

NOVEMBER 19, 2019

The Guidelines have been prepared in collaboration with different organisations in the marketing and online advertising industries ( e.g. , Adigital , Iab Spain , etc.), This consideration is particularly important for online business activities. Categories of cookies.

Compliance

Compliance Personal data GDPR Privacy

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

Consumer privacy rights in California are well established. The California Constitution expressly grants California citizens a right to privacy. The International Association of Privacy Professionals estimates at least 500,000 U.S. The ballot initiative largely mirrored what is now the language in the CCPA.

Privacy

Privacy Sales Compliance Cybersecurity

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

Consumer privacy rights in California are well established. The California Constitution expressly grants California citizens a right to privacy. The International Association of Privacy Professionals estimates at least 500,000 U.S. The ballot initiative largely mirrored what is now the language in the CCPA.

Privacy

Privacy Sales Education Compliance

eDiscovery Expert Tom O’Connor Reviews CloudNine Platform

eDiscovery Daily

FEBRUARY 14, 2018

In my 30 plus years of experience as a consultant, author, and speaker in the field of automated litigation support systems, I’ve used almost every software program deployed for the litigation market. Platform Category: CloudNine is an eDiscovery product in the Cloud Platform category. Privacy Shield Framework.

Computer and Electronics

Computer and Electronics Analytics Cloud Compliance

“Dark patterns?” EDPB draft guidance sets out its expectations on subliminal privacy eroding practices

Data Protection Report

MAY 3, 2022

The Guidelines consider in detail common social media interfaces that present the content of privacy policies and collect consent in ways which substantively violate the GDPR requirements, while still pretending to formally comply with them (these methods now termed “dark patterns”) and explain how the GDPR applies in this context.

Privacy

Privacy IT GDPR Data collection

Welcome to Relativity Fest 2019!: eDiscovery Trends

eDiscovery Daily

OCTOBER 20, 2019

Speakers Include: Daniel Pelc – Senior Manager, Industry Marketing, Relativity; John Koss – Special Counsel, Mintz Levin; Kimberly Fisher – Senior Practice Support Manager, Dickinson Wright PLLC; Kevin Clark – Litigation Support Manager, Thompson & Knight LLP. Internal perception. Attorney carve outs.

e-Discovery

e-Discovery Data Privacy Education Privacy

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

Data is not just a resource for better marketing, better service and delivery. The new right to be forgotten will allow children to enjoy their childhood without having every personal event, achievement, failure, antic or prank that they posted online to be digitally recorded for ever more. Data is used to build products themselves.

GDPR

GDPR Personal data Government IT

ICO’s draft Age Appropriate Design Code could seriously impact processing of under 18’s personal data

Data Protection Report

MAY 16, 2019

However, its potential impact is in fact wider, and is perhaps better described as applying to all online services that are not demonstrably unlikely to be accessed by children, which it controversially defines as individuals under 18. It includes small businesses, provided that products are sold, or a service is mainly transacted, online.

Personal data

Personal data Privacy GDPR Access

EU data governance regulation – A wave of digital, regulatory and antitrust reform begins – Part Two

Data Protection Report

DECEMBER 17, 2020

On 25 November 2020, the European Commission ( EC ) published its proposed Data Governance Regulation (the DGR ), which will create a new legal framework to encourage the development of a European single market for data. What are the other excluded categories? This is part two of a series of three blog posts. Is consent required?

Government

Government Personal data GDPR Access

ICO’s update report into adtech and real time bidding – a sobering read for participants in the adtech industry

Data Protection Report

JUNE 25, 2019

On 20 June, the UK’s Information Commissioner (the ICO ) published a report setting out its views on adtech, specifically the use of personal data in “real time bidding”, and the key privacy compliance challenges arising from it. It also criticised the industry initiatives for being too focussed on GDPR compliance rather than PECR.

Personal data

Personal data GDPR Compliance Privacy

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

Data Protection Report

DECEMBER 17, 2020

On 25 November 2020, the European Commission ( EC ) published its proposed Data Governance Regulation (the DGR ), which will create a new legal framework to encourage the development of a European single market for data. The EC’s Data Strategy sets out a vision of common European data spaces, a Single Market for data.

Government

Government Personal data Marketing Artificial Intelligence

Part 3: OMG! Not another digital transformation article! Is it about effecting risk management and change management?

ARMA International

SEPTEMBER 27, 2021

This part also discusses managing CS risks such as ransomware, privacy, change management, and user adoption. Thus, common tools and techniques are risk matrices, risk registers, risk logs, risk breakdown structures, risk categories, Monte Carlo simulations, and sensitivity analyses. Jurisdiction and Privacy Data Risks.

Digital transformation

Digital transformation Risk IT Computer and Electronics

EU Data Governance Act – Edging Closer to a European Single Market for Data

Data Matters

APRIL 27, 2022

Some of the key objectives of the new legislation include enabling the re-use of certain categories of protected public sector data and making it easier and safer for citizens and businesses to share their data with relevant stakeholders. The DGA is part of the European Commission’s broader digital and data strategy.

Marketing

Marketing Government Personal data Artificial Intelligence

California’s GDPR? Sweeping California Privacy Ballot Initiative Could Bring Sea Change to U.S. Privacy Regulation and Enforcement

Data Matters

JUNE 26, 2018

On June 25, 2018, California Secretary of State Alex Padilla announced that a potentially significant privacy initiative is eligible for the Nov. If passed, the ballot initiative — the California Consumer Privacy Act (CCPA) — would immediately make sweeping changes to California’s privacy laws. 6 general election ballot.

Privacy

Privacy GDPR Sales Data breaches

US: The CCPA ‘Moving Target’ One Month Before Privacy Enforcement Begins

DLA Piper Privacy Matters

JUNE 18, 2020

With the California Consumer Privacy Act (CCPA) enforcement deadline only a month away, Chief Privacy Officers still must grapple with significant uncertainties about what exactly the law requires. Third, it is now clear that Congress will not rush in to preempt the CCPA with a federal privacy law this year. By Jim Halpert.

Privacy

Privacy Compliance Sales Risk

How to implement the General Data Protection Regulation (GDPR)

GDPR for small business: the ultimate guide

Trending Sources

UK ICO Releases Draft Direct Marketing Code of Practice for Public Consultation

The Digital Markets Act Is Almost Here: 10 Things to Know About the EU’s New Rules for Big Tech

Why risk assessments are essential for GDPR compliance

Australia Privacy Act review – a blueprint for change?

California Enacts Broad Privacy Laws Modeled on GDPR

ITALY: the Garante aligns with CNIL and DSB holding that the use of Google Analytics leads to unlawful transfer of Personal Data

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

Automated Security and Compliance Attracts Venture Investors

Building cyber security careers

California Enacts Broad Privacy Protections Modeled on GDPR

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

Security Outlook 2023: Cyber Warfare Expands Threats

BELGIUM: Belgian DPA reveals its strategy for the next 5 years.

ICO’s McDougall Warns Adtech Sector that Change Is Needed

ICO Warns of Increased Focus on Adtech

Examples of data processing activities that require a DPIA

GDPR is upon us: are you ready for what comes next?

CIPL and its GDPR Project Stakeholders Discuss DPOs and Risk under GDPR

Why every organisation needs data protection impact assessments

ICO update report into adtech and real time bidding

U.S. states pass data protection laws on the heels of the GDPR

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

FRANCE: A new phase in European privacy law enforcement – CNIL fined Google LLC 50 million euros!

When Is Data "Public"? (And 2.5M Public Factual Records in HIBP)

Spanish DPA on Use of Cookies: Continued Browsing is Consent

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

eDiscovery Expert Tom O’Connor Reviews CloudNine Platform

“Dark patterns?” EDPB draft guidance sets out its expectations on subliminal privacy eroding practices

Welcome to Relativity Fest 2019!: eDiscovery Trends

The debate on the Data Protection Bill in the House of Lords

ICO’s draft Age Appropriate Design Code could seriously impact processing of under 18’s personal data

EU data governance regulation – A wave of digital, regulatory and antitrust reform begins – Part Two

ICO’s update report into adtech and real time bidding – a sobering read for participants in the adtech industry

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

Part 3: OMG! Not another digital transformation article! Is it about effecting risk management and change management?

EU Data Governance Act – Edging Closer to a European Single Market for Data

California’s GDPR? Sweeping California Privacy Ballot Initiative Could Bring Sea Change to U.S. Privacy Regulation and Enforcement

US: The CCPA ‘Moving Target’ One Month Before Privacy Enforcement Begins

Stay Connected