GDPR, Marketing and Security - Information Management Today

Maintaining GDPR and Data Privacy Compliance in 2024

IT Governance

FEBRUARY 16, 2024

Expert tips from Alan Calder Alan is the Group CEO of GRC International Group PLC, the parent company of IT Governance, and is an acknowledged international security guru. In addition, 14 US states now have their own data privacy laws, and GDPR-like legislation has proliferated across the world.

Data Privacy

Data Privacy GDPR Compliance Privacy

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. Any company operating in the EU or handling EU residents’ data must adhere to GDPR requirements. However, GDPR compliance is not necessarily a straightforward matter.

GDPR

GDPR Compliance Personal data Privacy

CNIL Fines Groupe Canal+ 600,000 Euros For Direct Marketing and GDPR Infringements

Hunton Privacy

OCTOBER 31, 2023

October 12, 2023, the French Data Protection Authority (the “CNIL”) announced a €600,000 fine for mass media company Groupe Canal+ for failing to comply with its commercial prospecting obligations applicable under the French Post and Electronic Communications Code and several obligations of the EU General Data Protection Regulation (“GDPR”).

GDPR

GDPR Marketing Personal data Communications

A guide to cyber security for marketing agencies

IT Governance

FEBRUARY 9, 2021

If your marketing agency is under the impression that cyber security is strictly an IT issue, you should think again. Effective security is a company-wide commitment, and marketers play one of the most crucial roles. So, what should marketing agencies do to reduce the risk of cyber attacks and protect their reputation?

Marketing

Marketing Security GDPR Privacy

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Even the world’s biggest businesses are not free from GDPR woes. Many businesses find it hard to implement GDPR requirements because the law is not only complex but also leaves a lot up to discretion.

GDPR

GDPR Compliance Personal data Privacy

GDPR for small business: the ultimate guide

IT Governance

JULY 2, 2020

What is the GDPR? Second, organisations must implement security measures to protect personal data from being breached or misused, and they must disclose any security incidents involving this data. First, the UK has implemented the UK DPA (Data Protection Act) 2018 , which adopts the GDPR into national law.

GDPR

GDPR Personal data Data breaches Compliance

The Re-Permissioning Dilemma Under GDPR

AIIM

JUNE 26, 2018

Now that the EU General Data Protection Regulation (GDPR) is in force organizations are ramping up their efforts to re-fresh data subject consent obtained prior to GDPR and under the EU Data Protection Directive 95/46/EC by virtue of which opt-out, or implied consent was permissible. Furthermore, the.

GDPR

GDPR Privacy Marketing Sales

Belgian DPA Finds IAB Europe Transparency and Consent Framework in Violation of the GDPR

Hunton Privacy

FEBRUARY 3, 2022

The TCF is a GDPR consent solution developed by IAB Europe that has become a widely used approach to collecting and managing consent for targeted advertising cookies in the EU. Accountability, Security, and Data Protection by Design and By Default. Audit participating organizations to ensure they comply with the GDPR.

GDPR

GDPR Personal data Marketing IT

The European Commission’s GDPR review in short

Privacy and Cybersecurity Law

JULY 22, 2020

Two years after the GDPR entered into force, the European Commission ( EC ) issued its first evaluation of the GDPR. Individuals are increasingly aware of the GDPR and their GDPR rights. The GDPR’s international data transfer toolbox. We have addressed the key points from the EC’s evaluation below.

GDPR

GDPR Privacy Personal data Compliance

Security Affairs Newsletter is back!

Security Affairs

DECEMBER 13, 2020

Security Affairs newsletter is back, it is the right time to subscribe to it. Every day I receive several emails asking me to resume the Security Affairs newsletter, for this reason, I decided to open it again for the first 2000 users. GDPR disclaimer. We use Mailchimp as our marketing platform. indicates required.

Security

Security GDPR Privacy Marketing

ICO Publishes Report on Compliance in Direct Marketing Data Broking Sector

Hunton Privacy

NOVEMBER 5, 2020

On October 27, 2020, the UK Information Commissioner’s Office (“ICO”) published a report following its investigation into data protection compliance in the direct marketing data broking sector, alongside its enforcement action against Experian. Three such hubs were the three CRAs audited as part of this investigation.

Marketing

Marketing Compliance Personal data GDPR

GDPR After the Deadline — Part 1 of 3 — The emerging challenges tied to information privacy and security

AIIM

JULY 25, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. What kinds of special pain points does unstructured information (i.e.,

GDPR

GDPR Privacy Artificial Intelligence Security

GDPR and The Data Governance Imperative

AIIM

SEPTEMBER 12, 2018

You might also be interested in: The Re-Permissioning Dilemma Under GDPR. Data Privacy and Open Data: Secondary Uses under GDPR. Three Critical Steps for GDPR Compliance. Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR Compliance Starts with Data Discovery.

GDPR

GDPR Government Information governance Compliance

Differences in App Security/Privacy Based on Country

Schneier on Security

SEPTEMBER 30, 2022

The apps we downloaded from Google Play also showed differences based on country in their security and privacy capabilities. Users in countries not covered by data protection regulations, such as GDPR in the EU and the California Consumer Privacy Act in the U.S., are at higher privacy risk.

Privacy

Privacy Security GDPR Communications

GDPR After the Deadline — Part 1 of 3 — The emerging challenges tied to information privacy and security

AIIM

JULY 25, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. What kinds of special pain points does unstructured information (i.e.,

GDPR

GDPR Privacy Artificial Intelligence Security

Automated Security and Compliance Attracts Venture Investors

eSecurity Planet

FEBRUARY 14, 2023

I remember the first time we were asked for a SOC 2 report, which quickly became the minimum bar requirement in our industry for proof of an effective security program,” he said. The vision was to automate security and compliance across 14 frameworks, including SOC 2, ISO 27001, HIPAA and GDPR. Growth has definitely been robust.

Compliance

Compliance Security Cybersecurity Marketing

Guest Post - Three Critical Steps for GDPR Compliance

AIIM

JANUARY 17, 2018

You might also be interested in: Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. What Do the GDPR and new Privacy Laws Mean for U.S. GDPR Compliance Starts with Data Discovery.

GDPR

GDPR Compliance Data collection Privacy

Securing the Cloud Frontier: Navigating the Complexities of SaaS Data Protection in the Multi-Cloud Era

Thales Cloud Protection & Licensing

DECEMBER 6, 2023

Securing the Cloud Frontier: Navigating the Complexities of SaaS Data Protection in the Multi-Cloud Era madhav Thu, 12/07/2023 - 05:34 In the rapidly evolving digital landscape, Software as a Service (SaaS) has emerged as a cornerstone of modern business operations. cloud platforms and 97 SaaS applications.

Cloud

Cloud Encryption Security Data Privacy

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

AIIM

AUGUST 8, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. GDPR after the Deadline — Progress, But a Long Way to Go.

GDPR

GDPR Compliance Digital preservation Artificial Intelligence

GDPR After the Deadline — Part 2 of 3 — Where are organizations in their GDPR journey and how much did they spend to get there?

AIIM

AUGUST 1, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. While 11% of organizations are completely prepared for GDPR (i.e.,

GDPR

GDPR Compliance Privacy Marketing

How GDPR Forces Marketers to Rethink Data & Security

Dark Reading

APRIL 16, 2018

The European regulation is making marketing technology companies re-examine their security, and that's a good thing.

Marketing

Marketing GDPR Security

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

AIIM

AUGUST 8, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. GDPR after the Deadline — Progress, But a Long Way to Go.

GDPR

GDPR Compliance Digital preservation Artificial Intelligence

Guest Post -- GDPR Compliance starts with Data Discovery

AIIM

NOVEMBER 16, 2017

You might also be interested in: Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. What Do the GDPR and new Privacy Laws Mean for U.S. 50% of organizations not ready for GDPR.

GDPR

GDPR Compliance Privacy Paper

GDPR After the Deadline — Part 2 of 3 — Where are organizations in their GDPR journey and how much did they spend to get there?

AIIM

AUGUST 1, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. While 11% of organizations are completely prepared for GDPR (i.e.,

GDPR

GDPR Compliance Privacy Marketing

MY TAKE: Six-figure GDPR privacy fines reinforce business case for advanced SIEM, UEBA tools

The Last Watchdog

AUGUST 29, 2019

Related: Will GDPR usher in new age of privacy? It’s no wonder security analysts toiling in security operations centers (SOCs) are depressed. I had an evocative discussion about this with Sam Humphries, senior product marketing manager for Exabeam. based supplier of advanced security management systems.

GDPR

GDPR Privacy Big data Personal data

EDPB Publishes Draft Guidelines on the Concepts of Controller and Processor under the GDPR

Data Matters

SEPTEMBER 18, 2020

On 2 September 2020, the European Data Protection Board ( EDPB ) published draft guidelines on the concepts of controller and processor under the GDPR ( Draft Guidelines ). technical expertise with regard to security measures and data breaches); (ii) reliability; and (iii) resources. The Draft Guidelines consist of two parts.

GDPR

GDPR Personal data Compliance Access

Building cyber security careers

IT Governance

OCTOBER 21, 2021

The need for experienced and qualified cyber security professionals is a highlight of Cybersecurity Career Awareness Week , led by NICE (National Initiative for Cybersecurity Education). Cyber security focuses on protecting computer systems from unauthorised access or being otherwise damaged. Build your cyber security career.

Security

Security Information Security GDPR Data Privacy

What Is Data Minimisation? Definition & Examples

IT Governance

APRIL 18, 2023

Data minimisation is a key part of information security and the GDPR (General Data Protection Regulation) in particular. Its principles are at the heart of effective data protection practices, and are intended to prevent privacy breaches and minimise the damage when security incidents occur. What is data minimisation?

GDPR

GDPR Personal data Data breaches Marketing

Security Outlook 2023: Cyber Warfare Expands Threats

eSecurity Planet

JANUARY 5, 2023

Also read: SANS Outlines Critical Infrastructure Security Steps as Russia, U.S. Given its broader availability combined with the right exploit, wiper malware could cause massive destruction in a short period of time, said Derek Manky, chief security strategist and VP of global threat intelligence at FortiGuard Labs. Trade Cyberthreats.

Security

Security Ransomware Cybersecurity Privacy

FIRST SANCTION OF AN ONLINE SHOES COMPANY BY CNIL ACTING AS A LEAD AUTHORITY FOR SEVERAL INFRINGEMENTS TO GDPR REQUIREMENTS

DLA Piper Privacy Matters

AUGUST 12, 2020

On 28 July 2020, the French Supervisory Authority (the “CNIL”) sanctioned the online shoes retail company, SPARTOO SAS, by a €250,000 fine and an injunction to comply with GDPR within 3 months under penalty for various non-compliances with the GDPR of the personal data processing related to clients, prospects and employees [1].

GDPR

GDPR Personal data Compliance Passwords

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

AIIM

JULY 24, 2018

You might also be interested in: The Re-Permissioning Dilemma Under GDPR. Data Privacy and Open Data: Secondary Uses under GDPR. Three Critical Steps for GDPR Compliance. Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR Compliance Starts with Data Discovery.

GDPR

GDPR Compliance Privacy Data Privacy

Sam McNicholls-Novoa on CyberComply

IT Governance

DECEMBER 20, 2023

Making compliance easy with our Cloud-based solution CyberComply is a Cloud-based, end-to-end solution that simplifies compliance with a range of cyber security and data privacy standards and laws, including ISO 27001 , the GDPR (General Data Protection Regulation), and more. We want to make compliance easy for our customers.

GDPR

GDPR Compliance Data Privacy Privacy

Don’t neglect the PECR when addressing your GDPR compliance requirements

IT Governance

DECEMBER 19, 2019

With all the attention that’s been paid to the GDPR (General Data Protection Regulation) over the past two years, organisations are neglecting other data protection laws, according to figures released by the ICO (Information Commissioner’s Office). The GDPR complicates PECR compliance.

GDPR

GDPR Compliance Marketing Communications

NEW TECH: Security Compass streamlines the insertion of security best practices into DevOps

The Last Watchdog

MARCH 31, 2020

Related: A firewall for microservices DevSecOps arose to insert security checks and balances into DevOps, aiming to do so without unduly degrading speed and agility. If you’re thinking that speed and security are like oil and water, you’re right. Security Compass’ mission is to help bridge that gap.

Security

Security Privacy Financial Services Risk

GDPR: it’s the final countdown

Thales Cloud Protection & Licensing

APRIL 25, 2018

Jim DeLorenzo, Solutions Marketing Manager, Thales eSecurity. By now, few businesses can be unaware that there is just one month to go until the EU General Data Protection Regulation, better known as the GDPR, comes into force. The GDPR is almost upon us. Don’t waste any time.

GDPR

GDPR Encryption Data breaches Personal data

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Hunton Privacy

DECEMBER 1, 2020

million on Carrefour France and a fine of €800,000 on Carrefour Banque for various violations of the EU General Data Protection Regulation (“GDPR”) and Article 82 of the French Data Protection Act governing the use of cookies. GDPR and Cookie Violations. Background. The CNIL carried out online inspections on the carrefour.fr

GDPR

GDPR Personal data Data collection Marketing

Why risk assessments are essential for GDPR compliance

IT Governance

OCTOBER 15, 2019

Any organisation that’s required to comply with the GDPR (General Data Protection Regulation) must conduct regular risk assessments. However, the GDPR is clear that data is also vulnerable to accidental or unlawful destruction, loss or disclosure. The GDPR risk assessment methodology. Get started with vsRisk.

GDPR

GDPR Risk Compliance Personal data

The GDPR: Everything you need to know about data controllers and data processors

IT Governance

NOVEMBER 14, 2018

Data controllers and data processors are an integral part of the GDPR. The terms ‘data controller’ and ‘data processor’ have been around for years, but it’s only since the EU GDPR (General Data Protection Regulation) took effect that they’ve been scrutinised. That’s understandable. The basics. Responsibilities of the data processor.

GDPR

GDPR Retail Data collection Personal data

How to write a GDPR-compliant personal data breach notification procedure

IT Governance

APRIL 18, 2018

An integral part of your EU General Data Protection Regulation (GDPR) compliance project is producing appropriate documentation, which includes a personal data breach notification procedure. If you’re just beginning your GDPR project, it’s unlikely that you’ll be fully compliant by 25 May 2018, when the Regulation is enforced.

Personal data

Personal data Data breaches GDPR Compliance

Privacy Advocacy Organization Files GDPR Complaints Against Data Brokers

Hunton Privacy

NOVEMBER 13, 2018

On November 8, 2018, Privacy International (“Privacy”), a non-profit organization “dedicated to defending the right to privacy around the world,” filed complaints under the GDPR against consumer marketing data brokers Acxiom and Oracle. and safeguards ( i.e. , data protection impact assessments, data protection by design, etc.)

GDPR

GDPR Privacy Personal data Marketing

Why is a DPIA required by the GDPR?

IT Governance

APRIL 23, 2018

The new EU General Data Protection Regulation (GDPR) confirms that privacy must be designed by default into the processing of personal data. Such projects could include a new business acquisition, a new service, or even a new marketing campaign targeting a group of prospects. Privacy by design approach.

GDPR

GDPR Personal data Privacy Data breaches

How to write a GDPR data protection policy – with policy template

IT Governance

NOVEMBER 7, 2018

This blog was originally published before the GDPR took effect in May 2018. An integral part of your EU GDPR (General Data Protection Regulation) project is producing appropriate documentation to demonstrate your compliance – in line with the requirement for accountability set out in Article 5(2). GDPR documentation toolkit.

GDPR

GDPR Compliance Personal data Government

GDPR priorities in the lead up to May

IT Governance

MARCH 1, 2018

GDPR compliance should be a priority and high on every organisation’s agenda with only three months until the regulation comes into effect on 25 May 2018. Roles and responsibilities – set up a project team, including key business functions such as HR and marketing.

GDPR

GDPR Compliance Privacy Data breaches

Government ‘should have done more’ to prepare organisations for the GDPR

IT Governance

MARCH 22, 2018

GDPR Reality Check also found that 52% of respondents believed the media and marketing departments were “guilty of over-hyping the GDPR”. Commenting on the report , Liviu Arsene, a researcher at Bitdefender, said: “This study brings a new perspective to GDPR compliance. A new perspective’.

GDPR

GDPR Government Compliance Risk

Maintaining GDPR and Data Privacy Compliance in 2024

GDPR compliance checklist

Trending Sources

CNIL Fines Groupe Canal+ 600,000 Euros For Direct Marketing and GDPR Infringements

A guide to cyber security for marketing agencies

How to implement the General Data Protection Regulation (GDPR)

GDPR for small business: the ultimate guide

The Re-Permissioning Dilemma Under GDPR

Belgian DPA Finds IAB Europe Transparency and Consent Framework in Violation of the GDPR

The European Commission’s GDPR review in short

Security Affairs Newsletter is back!

ICO Publishes Report on Compliance in Direct Marketing Data Broking Sector

GDPR After the Deadline — Part 1 of 3 — The emerging challenges tied to information privacy and security

GDPR and The Data Governance Imperative

Differences in App Security/Privacy Based on Country

GDPR After the Deadline — Part 1 of 3 — The emerging challenges tied to information privacy and security

Automated Security and Compliance Attracts Venture Investors

Guest Post - Three Critical Steps for GDPR Compliance

Securing the Cloud Frontier: Navigating the Complexities of SaaS Data Protection in the Multi-Cloud Era

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

GDPR After the Deadline — Part 2 of 3 — Where are organizations in their GDPR journey and how much did they spend to get there?

How GDPR Forces Marketers to Rethink Data & Security

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

Guest Post -- GDPR Compliance starts with Data Discovery

GDPR After the Deadline — Part 2 of 3 — Where are organizations in their GDPR journey and how much did they spend to get there?

MY TAKE: Six-figure GDPR privacy fines reinforce business case for advanced SIEM, UEBA tools

EDPB Publishes Draft Guidelines on the Concepts of Controller and Processor under the GDPR

Building cyber security careers

What Is Data Minimisation? Definition & Examples

Security Outlook 2023: Cyber Warfare Expands Threats

FIRST SANCTION OF AN ONLINE SHOES COMPANY BY CNIL ACTING AS A LEAD AUTHORITY FOR SEVERAL INFRINGEMENTS TO GDPR REQUIREMENTS

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

Sam McNicholls-Novoa on CyberComply

Don’t neglect the PECR when addressing your GDPR compliance requirements

NEW TECH: Security Compass streamlines the insertion of security best practices into DevOps

GDPR: it’s the final countdown

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Why risk assessments are essential for GDPR compliance

The GDPR: Everything you need to know about data controllers and data processors

How to write a GDPR-compliant personal data breach notification procedure

Privacy Advocacy Organization Files GDPR Complaints Against Data Brokers

Why is a DPIA required by the GDPR?

How to write a GDPR data protection policy – with policy template

GDPR priorities in the lead up to May

Government ‘should have done more’ to prepare organisations for the GDPR

Stay Connected