Thales Cloud Protection & Licensing

JULY 4, 2022

How Cybersecurity Insurance Can Work To Help An Organization. In the last 20+ years, cybersecurity insurance has added risk transference to the available palette of palliative choices. In the last 20+ years, cybersecurity insurance has added risk transference to the available palette of palliative choices. regulations.

Insurance 71

Insurance Cybersecurity Cleanup Ransomware 71

Data Protection Report

JANUARY 4, 2024

December tends to be a busy time for everyone, so you may have missed a privacy update or two. We have set out some updates in the form of questions, with links in the answers where you can find more information. (For For those making this quiz a competitive event, we have included a tie-breaker/bonus question.) Answers are below.

Privacy 110

Privacy Cybersecurity Artificial Intelligence e-Discovery 110

DLA Piper Privacy Matters

NOVEMBER 3, 2022

Anyone with a passing interest in Australian privacy laws will no doubt have heard about the Optus data breach. The news was swiftly followed up with an announcement from Medibank, Australia’s largest private health insurer, of a breach affecting all of its 3.9 Author: Sarah Birkett. million customers.

Privacy 97

Privacy Data breaches Insurance Government 97

Hunton Privacy

NOVEMBER 15, 2023

The Australian legislature increased maximum penalties for ‘serious’ contraventions of the Privacy Act with effect from December 2022 to at least A$50 million. However, the maximum penalty available in this case will be A$2.2 million because the company’s conduct occurred prior to December 2022.

Data breaches 128

Data breaches Privacy Risk Information Security 128

Hunton Privacy

DECEMBER 4, 2023

On November 28, 2023, the New York Department of Financial Services (“NYDFS”) announced that First American Title Insurance Company (“First American”), the second-largest title insurance company in the United States, would pay a $1 million penalty for violations of the NYDFS Cybersecurity Regulation in connection with a 2019 data breach.

Financial Services 64

Financial Services Insurance Data breaches Cybersecurity 64

Hunton Privacy

MAY 10, 2022

On May 10, 2022, Connecticut Governor Ned Lamont signed An Act Concerning Personal Data Privacy and Online Monitoring , after the law was previously passed by the Connecticut General Assembly in April. Connecticut is now the fifth state to enact a consumer privacy law. As with most of the existing U.S.

Privacy 118

Privacy Personal data Sales B2B 118

IT Governance

NOVEMBER 6, 2023

When MOVEit was hacked by the Russian Cl0p ransomware gang in May, email addresses and links to government employee surveys were compromised. Compromised information included patients’ names, dates of birth, postal addresses, Social Security numbers, diagnosis and treatment information, and health insurance information.

Data Privacy 97

Data Privacy Privacy Libraries Security 97

IT Governance

NOVEMBER 13, 2023

On 14 September, Mulkay discovered that the compromised files contained personal information, including “name, address, date of birth, Social Security number, driver’s license number or state ID, medical treatment information, and health insurance information”. Records breached: 79,582 Ontario hospitals update: information relating to 5.6

Data Privacy 85

Data Privacy Privacy Security Data breaches 85

IT Governance

OCTOBER 24, 2023

Breached organisation: BHI Energy, providing staffing solutions to the nuclear, fossil, wind, hydro and government energy markets. Incident details: The company found that data on its network had been encrypted without its knowledge. Records breached: 91,000 individuals affected. Records breached: 91,000 individuals affected.

Data Privacy 107

Data Privacy Privacy Security Data breaches 107

Data Protection Report

FEBRUARY 23, 2023

In this post, we will describe some of the risks introduced by personal information collection, and some of the legal obligations of vehicle manufacturers in protecting their customers’ privacy. Bill C-27 is expected to reform Canadian privacy law, replacing part of PIPEDA with the Consumer Privacy Protection Act (CPPA).

Privacy 85

Privacy Manufacturing Artificial Intelligence Data collection 85

Data Matters

JANUARY 14, 2019

On December 19, 2018, Ohio adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law. The Act is designed to “establish standards for data security and for the investigation and notification to the Superintendent of Insurance of a cybersecurity event.”.

Insurance 68

Insurance Security Cybersecurity Data breaches 68

Data Matters

FEBRUARY 10, 2021

2 announcing a Cyber Insurance Risk Framework (the Framework) that describes industry best practices for New York-regulated property/casualty insurers. According to NYDFS, the incorporation of these practices should be proportionate to each insurer’s size, resources, geographic distribution, and other factors. The Framework.

Insurance 79

Insurance Financial Services Cybersecurity Risk 79

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. sought coverage for expenses under its property insurance policy.

Insurance 70

Insurance Cybersecurity Risk Education 70

IT Governance

JANUARY 9, 2024

million people was compromised, including names, addresses, dates of birth, Social Security numbers, taxpayer identification numbers, medical information, health insurance information, and billing and claims information. HealthEC LLC breached, almost 4.5 Information relating to nearly 4.5 Source (New) Legal USA Yes 310,297 Bit24.cash

Data Privacy 75

Data Privacy Privacy Manufacturing Data breaches 75

Information Governance Perspectives

MAY 10, 2020

In May of 2020 I was honored to speak at the MERv conference with John Frost of Box on the topic of Using Information Governance with a Privacy Compliance Plan as the Fulcrum for Data Privacy and Continuous Compliance. Privacy makes data governance ethical and tangible, and compliance leaders understand that.

Compliance 52

Compliance Information governance Privacy Data Privacy 52

Data Protection Report

OCTOBER 3, 2021

Effective October 1, 2021, an amendment [1] to the Connecticut General Statute concerning data privacy breaches, Section 36a-701b, will impact notification obligations in several significant ways. Additional Considerations for Businesses. 1] [link]. [2] 2] C.R.S. §

Data breaches 142

Data breaches IT Insurance Passwords 142

Hunton Privacy

SEPTEMBER 1, 2020

Not disclosing, subject to specified exceptions, a consumer’s genetic data to certain entities ( e.g. , those responsible for making decisions regarding health insurance, life insurance or employment). Violations of the Act are subject to civil penalties. Department of Health and Human Services pursuant to HIPAA and the HITECH Act.

Privacy 85

Privacy Insurance Marketing Information governance 85

John Battelle's Searchblog

JANUARY 25, 2019

My current work is split between two projects: One has to do with data governance, the other political media. And second… Governance. Government – well for sure, I’d wager that’s increased given who’s been running the country these past two years. But Governance? Data Governance. It’s Broke. Let’s Fix It.

Government 92

Government IT Marketing ROT 92

Data Matters

JUNE 23, 2022

Kentucky and Maryland recently continued the trend of state insurance departments adopting some version of the National Association of Insurance Commissioners’ (“NAIC”) Insurance Data Security Model Law. appeared first on Data Matters Privacy Blog. The new Kentucky law takes effect on January 1, 2023.

Insurance 103

Insurance Security Cybersecurity Information Security 103

eDiscovery Daily

AUGUST 4, 2023

By Catherine Ostheimer Being responsive to the growing number of Access Requests and DSARS as a local government organization can be daunting. Here are tips for managing the eDiscovery side of Access Requests for those working at a state or local government organization: Understand the legal landscape.

Government 58

Government Access Insurance GDPR 58

Thales Cloud Protection & Licensing

DECEMBER 22, 2020

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing. Traditionally, privacy has taken the form of a policy document created, housed, and referenced by the offices of general counsel and compliance at most organizations. Data privacy is not a check-the-box compliance or security item.

Data Privacy 118

Data Privacy Privacy Security Encryption 118

The Last Watchdog

MARCH 20, 2023

Exploitation drivers From the case of Hegestratos committing insurance fraud by sinking a ship in 300 B.C., Cybersecurity has similarly developed as a necessary countermeasure to prevent scammers from rampaging the privacies of citizens. The advancement of fraud has materialized parallel to that of currency.

Cybersecurity 214

Cybersecurity Education Insurance Data breaches 214

Hunton Privacy

JUNE 12, 2020

Mears made over one billion spoofed robocalls to sell health insurance plans under a variety of business names including Rising Eagle and JSquared Telecom. The robocalls falsely claimed to offer health insurance plans from major insurers but instead were sold by entities not affiliated in any way with those insurers.

Insurance 96

Insurance IT Communications Government 96

The Last Watchdog

SEPTEMBER 14, 2018

It’s easy to think of it as a problem the federal government must address or something that enterprises deal with, but cybersecurity has to be addressed closer to home, as well. His company supplies a co-managed SIEM service to mid-sized and large enterprises, including local government agencies. Years of data disappeared.

Government 147

Government Digital transformation Mining Insurance 147

Krebs on Security

JUNE 18, 2021

The SEC says First American derives nearly 92 percent of its revenue from its title insurance segment, earning $7.1 Title insurance protects homebuyers from the prospect of someone contesting their legitimacy as the new homeowner. Title insurance is not mandated by law, but most lenders require it as part of any mortgage transaction.

Insurance 282

Insurance Risk Financial Services Mining 282

Collibra

DECEMBER 16, 2020

As a result, data governance in healthcare is non-negotiable. Data governance is about managing data and processes so data can be used as a consistent, secure and organized asset that meets policies and standards. Why is data governance important for a healthcare organization? Large volumes of sensitive data.

Government 59

Government Data Privacy Privacy Communications 59

IT Governance

FEBRUARY 14, 2024

Compromised data includes policyholders’ and their families’ civil status, dates of birth and social security numbers, as well as the name of their health insurer and information relating to their contracts. Compromised data included names, ID card numbers, phone numbers, emails, salaries and personal photographs.

Data Privacy 52

Data Privacy Manufacturing Privacy Security 52

IT Governance

FEBRUARY 21, 2024

Welfare Benefits Plan Source 1 ; source 2 New Healthcare USA Yes 13,079 Insurance ACE/Humana Inc. Fowler sent a responsible disclosure notice when he discovered the database and it was secured the following day. It is not known how long the database was publicly available, nor whether anyone else accessed it.

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

IT Governance

NOVEMBER 20, 2023

Date of breach: 26 October 2023 Breached organisation: Homeland, Inc., a property management company in Kentucky Incident details: The ransomware group Hunters International has added Homeland, Inc. to its leak site. For more information about the SEC cyber security disclosure rules, register for our free webinar on 30 November.)

Data Privacy 52

Data Privacy Privacy Data breaches Security 52

Data Protection Report

SEPTEMBER 23, 2021

The matter involved one of France’s largest insurers, SGAM AG2R LA MONDIALE, which was subject to an inspection by the French data protection authority (the CNIL), in 2019. The CNIL’s inspection included the insurer’s compliance with Section 5-1(e) of GDPR , which reads: Personal data shall be. (e) Perhaps the CNIL’s €1.75

Personal data 110

Personal data Insurance GDPR Record destruction 110

IT Governance

DECEMBER 14, 2021

Organisations such as IT Governance that offer cyber security as a service assign dedicated experts to oversee the organisation’s data protection and data privacy needs. By contrast, IT Governance’s Cyber Security as a Service begins at just £15,000 a year and covers everything you need to protect your organisation.

Security 131

Security Insurance Data breaches Information Security 131

eSecurity Planet

AUGUST 4, 2023

This will work fine for the largest companies and government agencies, but smaller companies, non-profits, and government agencies may have difficulty finding appropriate vendors. Even a robust IT or security department will find certain tasks or projects beyond their capabilities.

IT 98

IT Compliance Cybersecurity Communications 98

IT Governance

NOVEMBER 28, 2023

This week, we’re taking a slightly different approach with the ‘publicly disclosed data breaches and cyber attacks’ category, presenting the most interesting data points in a table format. This should make it easier for you to quickly find the information you want. We’ve also included more details on the top 3 biggest breaches of the week.

Data Privacy 52

Data Privacy Privacy Energy and Utilities Data breaches 52

OpenText Information Management

MAY 10, 2024

They must also build a solid data foundation, including a governance framework, to take full advantage of the benefits of AI. The OpenText™ Advantage For decades, enterprises have turned to OpenText's information management solutions to organize, connect, govern, and protect all data sets. Information management makes data better.

Security 57

Security Artificial Intelligence Privacy Compliance 57

The Last Watchdog

OCTOBER 5, 2023

Editor’s note: I recently had the chance to participate in a discussion about the overall state of privacy and cybersecurity with Erin Kapczynski, OneRep’s senior vice president of B2B marketing. OneRep provides a consumer service that scrubs your personal information from Google and dozens of privacy-breaching websites.

Cybersecurity 203

Cybersecurity Privacy Cloud IoT 203

Data Matters

SEPTEMBER 7, 2022

The National Association of Insurance Commissioners (NAIC) held its Summer 2022 National Meeting (Summer Meeting) August 9–13, 2022. 1. NAIC to Develop New Privacy Model Law. This post summarizes the highlights from this meeting in addition to interim meetings held in lieu of taking place during the Summer Meeting.

Insurance 78

Insurance Paper Privacy Risk 78

IT Governance

OCTOBER 31, 2023

Records breached: 512,000 documents, with details of insurance investigations, vehicle registration certificates, notices of car seizures and payment card details. Records breached: Exact numbers unknown, but names, dates of birth, Social Security numbers, health insurance information and class lists were exfiltrated.

Data Privacy 52

Data Privacy Privacy Data breaches Security 52