Personal data - Information Management Today

$10,000,000 civil penalty for disclosing personal data without consent

Data Protection Report

APRIL 30, 2024

The claims related to the company’s sharing personal data without consumer consent and making it very difficult for consumers to cancel their subscriptions to this telehealth service. The order also, in Section IX, set forth data destruction requirements and a data retention policy.

Personal data

Personal data Privacy Information governance Compliance

Cybercriminals launched “Leaksmas” event in the Dark Web exposing massive volumes of leaked PII and compromised data

Security Affairs

DECEMBER 28, 2023

Mitigating this damage is particularly challenging due to the intricate interconnection between personal data and digital identity. The actual damage resulting from this activity could potentially amount to millions of dollars. For the average consumer, changing this information in practice is a complex and often difficult process.

Data breaches

Data breaches Personal data Government IT

CHINA: uncertainties helpfully clarified on various key data compliance activities

DLA Piper Privacy Matters

AUGUST 22, 2023

For example: Automated Decision-Making: where a data controller uses personal data to conduct any automated decision making, it must proactively inform data subjects in advance the types of data processed and the potential impact of the automated decision making.

Compliance

Compliance Personal data Privacy Government

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Mar 27 – Apr 02 Ukraine – Russia the silent cyber conflict

Security Affairs

APRIL 3, 2022

The Ukrainian Defense Ministry’s Directorate of Intelligence leaked personal data belonging to 620 alleged Russian FSB agents. Mar 31 – Google TAG details cyber activity with regard to the invasion of Ukraine. Mar 31 – Google TAG details cyber activity with regard to the invasion of Ukraine.

Personal data

Personal data Phishing Security IT

Work Remotely Without Compromising Your Data

AIIM

JANUARY 7, 2021

And once you know where your high-risk issues are, you can start doing something about it: locking down access, cleaning up permissions, and removing stale data that’s outlived its value. The sheer volume of data regulations is impossible for end-users to keep track up. As IT leaders, it’s our job to care for this data.

Unstructured data

Unstructured data Government Artificial Intelligence Risk

How Data Governance Protects Sensitive Data

erwin

APRIL 2, 2021

When an organization knows what data it has, it can define that data’s business purpose. And knowing the business purpose translates into actively governing personal data against potential privacy and security violations. Do You Know Where Your Sensitive Data Is? erwin Data Intelligence.

Government

Government GDPR Metadata Risk

The DDR Advantage: Real-Time Data Defense

Security Affairs

MARCH 27, 2024

DDR Knows What Your Data Did Last Summer Then, along came a revolutionary idea. What if we don’t protect the boxes but rather the data itself? However, DDR is one of the only tools on the market that can track the fire at its impetus, and that’s wherever data made its first wrong step.

Data Privacy

Data Privacy Risk Cloud Access

Data privacy examples

IBM Big Data Hub

APRIL 24, 2024

These are just some examples of how organizations support data privacy , the principle that people should have control of their personal data, including who can see it, who can collect it, and how it can be used. One cannot overstate the importance of data privacy for businesses today. The price tag can add up quickly.

Data Privacy

Data Privacy Privacy GDPR Personal data

How Machine Learning Can Accelerate and Improve the Accuracy of Sensitive Data Classification

Thales Cloud Protection & Licensing

DECEMBER 11, 2023

In a recent study , IDC predicted the global datasphere will more than double in size from 2022 to 2026, and that 80% of that data will be unstructured. Traditional approaches to data classification use manual tagging which is labor-intensive, error-prone, and not easily scalable.

Unstructured data

Unstructured data Cloud Data Privacy GDPR

China: Navigating China episode 16: New data lifecycle guidelines for financial institutions in China – detailed assessments, additional security measures and some data localisation introduced

DLA Piper Privacy Matters

APRIL 20, 2021

In practice this will require financial institutions to assess and classify/tag financial data against the five levels, and apply the relevant compliance obligations to each level accordingly. This could be a substantial task for some financial institutions.

Compliance

Compliance Security Financial Services Data collection

China finalises its Generative AI Regulation

Data Protection Report

JULY 25, 2023

the CAC) commence supervisory checks on the generative AI service, co-operate with them, explain the source, size and types of the training data, tagging rules and the mechanisms and principles of the algorithm and provide necessary technology and data, etc., for support and assistance.

Artificial Intelligence

Artificial Intelligence IT Privacy Cybersecurity

Catches of the Month: Phishing Scams for December 2022

IT Governance

DECEMBER 8, 2022

Welcome to our December 2022 review of phishing attacks, in which we explore the latest email scams and the tactics that cyber criminals use to trick people into handing over personal data. This month, we delve into a scheme capitalising on the fall of FTX and review the a scam exploiting people’s excitement over the World Cup.

Phishing

Phishing Education Personal data Authentication

Doing Well By Doing The Right Thing: How The CCPA Is Good For Businesses And Consumers

Reltio

MARCH 17, 2020

Noncompliance could carry a hefty price tag. CCPA compels companies to tell consumers what kind of personal data is being collected about them and if it is being sold to third parties. Companies that take action to protect data are not only acting in the interest of customers but themselves, too. It's ironic but true.

GDPR

GDPR Compliance Personal data Privacy

UniCredit bank discloses a data breach that impacted 3 million of Italian clients

Security Affairs

OCTOBER 28, 2019

Consequently no other personal data or any bank details permitting access to customer accounts or allowing for unauthorized transactions have been compromised.” REUTERS/Stefano Rellandini ( ITALY – Tags: BUSINESS) – RTX13ISW. .” “The records consist of names, city, telephone number and email only.

Data breaches

Data breaches Personal data Access Cybersecurity

Newly Proposed SEC Cybersecurity Risk Management and Governance Rules and Amendments for Public Companies

Data Matters

MARCH 11, 2022

XBRL is both machine-readable and human-readable and includes block text tagging as well as detail tagging of narrative disclosures. Reporting must be presented in Inline eXtensible Business Reporting Language (Inline XBRL).

Cybersecurity

Cybersecurity Risk Government e-Discovery

GDPR personal data explained

Collibra

NOVEMBER 13, 2020

The General Data Protection Regulation (GDPR), in force since May 25, 2018, requires businesses to protect the personal data and privacy of European Union (EU) citizens, for transactions that occur within EU Member States. The GDPR also regulates the exportation of personal data outside the EU. Location data .

Personal data

Personal data GDPR Data Privacy Privacy

Guest Post -- GDPR Compliance starts with Data Discovery

AIIM

NOVEMBER 16, 2017

In particular the Accountability Principle requires organizations to demonstrate that personally identifiable information is “processed lawfully, fairly and in a transparent manner”. Semantic analysis overcomes the problem of key word searching techniques wherein search results may be over inclusive but lack precision.

GDPR

GDPR Compliance Privacy Paper

CIPL and AvePoint Release Global GDPR Readiness Report

Hunton Privacy

NOVEMBER 10, 2016

The impetuses for the survey were the many significant changes the GDPR will bring to companies’ management and processing of personal data, their privacy compliance programs and their IT systems and infrastructure. The GDPR replaces Directive 95/46/EC and will become applicable in May 2018.

GDPR

GDPR Data Privacy Compliance Privacy

President’s Council of Advisors on Science and Technology Release Health IT Report

Hunton Privacy

JANUARY 19, 2011

“…the best way to manage and store data for advanced data-analytical techniques is to break data down into the smallest individual pieces that make sense to exchange or aggregate. In fact, preventing the secondary use of personal data is the only privacy obligation that consent can potentially address.”.

IT

IT Privacy Government Metadata

China: Navigating China Episode 19: China’s new Data Security Law: what multinational businesses need to know

DLA Piper Privacy Matters

JUNE 21, 2021

The DSL applies to data in general, and forms part of the broader China data framework. The DSL covers personal and non-personal data, and pays particular (but not exclusive) attention to the security of “important data” and a new category of “national core data”.

Security

Security Compliance Data Privacy Risk

MY TAKE: Can Project Wildland’s egalitarian platform make Google, Facebook obsolete?

The Last Watchdog

OCTOBER 19, 2021

Each operates a closed platform designed to voraciously gather, store and monetize user data. We have no control over how the tech giants extract and profit from the intrinsic value of our personal data. Fourthly, Wildland natively implements data multi-categorization. your data in many ways.

Blockchain

Blockchain Paper Access Cloud

Facebook and the FTC Announce A Deal, For Now

John Battelle's Searchblog

NOVEMBER 29, 2011

In fact, the apps could access nearly all of users’ personal data – data the apps didn’t need. Facebook told users they could restrict sharing of data to limited audiences – for example with “Friends Only.”

Privacy

Privacy Access Government Personal data

Smart Cities and Connected Communities - the need for standards

CGI

FEBRUARY 12, 2019

The Smart City’s standards and protocols should be chosen to provide the most holistic data hub and processing platform, and one area to consider from day one will be data security and integrity. Emerging technologies, such as Blockchain, with its distributed ledger and chain of trust, could be embraced further along this path.

Digital transformation

Digital transformation GDPR Blockchain Analytics

EU Commission Issues Recommendation on RFID, Privacy and Data Protection

Hunton Privacy

MAY 13, 2009

In summary, the recommendation provides that: Operators of RFID immediately must deactivate RFID tags automatically and free-of-charge at the point of sale, unless the consumer explicitly opts in by asking to keep the chip operational. This principle is, however, subject to exceptions.

Privacy

Privacy Data collection Sales Personal data

California Consumer Privacy Act: GDPR-like definition of personal information

Data Protection Report

AUGUST 27, 2018

By removing the name requirement and instead including specific data elements such as IP address, browser history and geolocation data as PI, the CCPA requires companies to reexamine how data is tagged and risks related to data is analyzed and mitigated.

GDPR

GDPR Privacy Data breaches Sales

Google issued 40,000 alerts of State-Sponsored attacks in 2019

Security Affairs

MARCH 27, 2020

” wrote Toni Gidwani, a Security Engineering Manager with Google’s Threat Analysis Group (TAG). Google TAG reported the case of a single threat actor that employed five zero-day vulnerabilities in a relatively short time frame. In 2019, we sent almost 40,000 warnings, a nearly 25 percent drop from 2018.”

Phishing

Phishing Passwords Risk Personal data

How to stay ahead of ever-evolving data privacy regulations

IBM Big Data Hub

SEPTEMBER 12, 2022

As these types ANPRMs continue to be released and regulation swiftly catches up to innovation, a recent Gartner survey predicts that 75% of the world’s population will have its personal data covered under modern privacy regulations by the end of 2024. Operationalize data privacy through automation.

Data Privacy

Data Privacy Privacy Metadata Compliance

California proposes rules for automated decision-making

Data Protection Report

NOVEMBER 29, 2023

The proposed regulations also include some provisions specifically relating to the use of automated decision-making technology in the employment context, including rebuttable presumptions relating to the use of alternative methods of processing personal data.

Access

Access Privacy Personal data Authentication

Guest Post -- New Global Data and Privacy Regulations in 2018 and the GDPR

AIIM

NOVEMBER 2, 2017

Data Portability – Organizations must provide a copy of all personal data to the subject of that data upon request. Affirmative, Clear Consent – Organizations must obtain “affirmative, clear consent” to store and use a person’s data. is no longer sufficient. Stronger Classification.

GDPR

GDPR Privacy Compliance Information architecture

Best Facial Recognition Software for Enterprises In 2022

eSecurity Planet

FEBRUARY 11, 2022

One is the issue of insecure data privacy, which can occur due to improper data scrubbing, data storage, and data sharing on the internet, which can expose individuals to malicious misuse of their personal data. Amazon Rekognition has been well regarded by government agencies and other secure users.

Authentication

Authentication Artificial Intelligence Access Passwords

Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition

Security Affairs

APRIL 2, 2023

LockBit leaks data stolen from the South Korean National Tax Service Italy’s Data Protection Authority temporarily blocks ChatGPT over privacy concerns CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog Hackers are actively exploiting a flaw in the Elementor Pro WordPress plugin Cyber Police of Ukraine (..)

Security

Security Artificial Intelligence Data breaches Ransomware

Fuel digital transformation with data security and data privacy

Collibra

AUGUST 4, 2020

All parts of the business are undermined by the effects of data breaches and regulatory fines. Data breaches. Organizations are challenged every day to keep the personal data they hold safe across their entire ecosystem. Consumers care about how data is used and misused.

Digital transformation

Digital transformation Data Privacy Privacy Metadata

What’s new in OpenText Axcelerate

OpenText Information Management

JANUARY 31, 2024

This version includes some great additions, including support for Opus 2 TM cloud, document translation for licensed customers of Amazon Translate TM , decryption during ingestion, undo for bulk tagging, and so much more! This allows for changing character sets used for OCR to accommodate multi-language data sets. PostgreSQL.

Analytics

Analytics Cloud Data Privacy Compliance

My Experience at the Washington DC Masters Conference

eDiscovery Daily

MAY 1, 2024

Mable Tun weighed in with the need to have targeted collections or a step to cull out personal data from smartphone evidence due to privacy concerns.

Artificial Intelligence

Artificial Intelligence Privacy Data Privacy e-Discovery

Identity and The Independent Web

John Battelle's Searchblog

OCTOBER 21, 2010

As we roam the web, we are tracked, tagged, and profiled by third parties. What we see depends on how the site interprets pre-conceived models of identity it receives from a third party. Consider how most display advertising works today. Much more often than not, the results are weak, poor, or wasted. Can't we do better?

Marketing

Marketing IT Content services Personal data

A Decade of Have I Been Pwned

Troy Hunt

DECEMBER 3, 2023

And that's precisely what this 185th blog post tagging HIBP is - the noteworthy things of the years past, including a few things I've never discussed publicly before. ” Anyone can type in an email address into the site to check if their personal data has been compromised in a security breach.

Data breaches

Data breaches Passwords Sales IT

Is the Resurgence of Phishing Attacks A Cause For Concern?

Adapture

MAY 18, 2021

login credentials, personal data, etc). It’s also a way of circumventing the ‘insecure’ labels popular browsers now tag HTTP sites with. Lastly, if the email contains a link, that link will likely take the victim to a malicious website that collects personal data, payment card data, or other sensitive information.

Phishing

Phishing Personal data Systems administration Ransomware

I'm Open Sourcing the Have I Been Pwned Code Base

Troy Hunt

AUGUST 7, 2020

Let me explain: HIBP Has Always Been Open in Spirit I've already written extensively about the architecture of the system across many of the 128 previous blog posts tagged as Have I Been Pwned. The very second blog post on that tag was about how I used Azure Table Storage to make it so fast and so cheap.

Passwords

Passwords IT Privacy Libraries

Making 5G a reality — what needs to happen next?

CGI

MARCH 6, 2019

And, of course, all of this data will need to fulfil the requirements of the General Data Protection Regulation (GDPR), requiring a means of classifying and tagging data using a form of rights management to specify how the data can be used, who can use it and how long it’s valid for. Protect and defend.

Digital transformation

Digital transformation GDPR Government Personal data

Is India's Aadhaar System Really "Hack-Proof"? Assessing a Publicly Observable Security Posture

Troy Hunt

JANUARY 10, 2018

billion locals' data. It's operating in an era of increasingly large repositories of personal data held by both private companies and governments alike. Here, Motherboard talks about personal data being sold for less than $10 a pop in a case that sounds eerily similar to the previously mentioned Medicare one.

Security

Security Government Encryption Risk

The Week in Cyber Security and Data Privacy: 26 February – 3 March 2024

IT Governance

MARCH 5, 2024

Italian data protection authority fines Enel €79 million Italy’s data protection regulator, the Garante per la Protezione dei Dati Personali, has fined the country’s largest utility company, Enel, more than €79 million for misusing customer data for telemarketing. Other news NIST releases version 2.0

Data Privacy

Data Privacy Privacy Manufacturing Retail

Facebook Is No Longer Flat: On Graph Search

John Battelle's Searchblog

JANUARY 15, 2013

So as to not bury the lead, Facebook has built what it’s calling “ Graph Search ,” a solidly conceived structured-search service which leverages the company’s massive trove of personal data in any number of new ways (some obvious, some nuanced, and some glaring omissions). Facebook Gets More Weather.

Privacy

Privacy IT Marketing Analytics

The Legitimisation of Have I Been Pwned

Troy Hunt

MARCH 21, 2018

Transparency has been a huge part of that effort and I've always written and spoken candidly about my thought processes, how I handle data and very often, the mechanics of how I've built the service (have a scroll through the HIBP tag on this blog for many examples of each).

Data breaches

Data breaches Passwords Government IT

This is the old ChiefTech blog.: Enterprise Scenarios for Integrating Social Network

ChiefTech

SEPTEMBER 14, 2007

Incidentally, here is a good example of a popular enterprise application, Salesforce, being integrated with Facebook : " Faceforce Connector for the AppExchangeTM complements traditional CRM data with dynamically updated personal data and photos. at 9:14 AM View blog reactions 1 comments: Doug Cornelius said.

Communications

Communications Paper Archiving Business Services

$10,000,000 civil penalty for disclosing personal data without consent

Cybercriminals launched “Leaksmas” event in the Dark Web exposing massive volumes of leaked PII and compromised data

Webinars

Trending Sources

CHINA: uncertainties helpfully clarified on various key data compliance activities

Webinars

Mar 27 – Apr 02 Ukraine – Russia the silent cyber conflict

Work Remotely Without Compromising Your Data

How Data Governance Protects Sensitive Data

The DDR Advantage: Real-Time Data Defense

Data privacy examples

How Machine Learning Can Accelerate and Improve the Accuracy of Sensitive Data Classification

China: Navigating China episode 16: New data lifecycle guidelines for financial institutions in China – detailed assessments, additional security measures and some data localisation introduced

China finalises its Generative AI Regulation

Catches of the Month: Phishing Scams for December 2022

Doing Well By Doing The Right Thing: How The CCPA Is Good For Businesses And Consumers

UniCredit bank discloses a data breach that impacted 3 million of Italian clients

Newly Proposed SEC Cybersecurity Risk Management and Governance Rules and Amendments for Public Companies

GDPR personal data explained

Guest Post -- GDPR Compliance starts with Data Discovery

CIPL and AvePoint Release Global GDPR Readiness Report

President’s Council of Advisors on Science and Technology Release Health IT Report

China: Navigating China Episode 19: China’s new Data Security Law: what multinational businesses need to know

MY TAKE: Can Project Wildland’s egalitarian platform make Google, Facebook obsolete?

Facebook and the FTC Announce A Deal, For Now

Smart Cities and Connected Communities - the need for standards

EU Commission Issues Recommendation on RFID, Privacy and Data Protection

California Consumer Privacy Act: GDPR-like definition of personal information

Google issued 40,000 alerts of State-Sponsored attacks in 2019

How to stay ahead of ever-evolving data privacy regulations

California proposes rules for automated decision-making

Guest Post -- New Global Data and Privacy Regulations in 2018 and the GDPR

Best Facial Recognition Software for Enterprises In 2022

Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition

Fuel digital transformation with data security and data privacy

What’s new in OpenText Axcelerate

My Experience at the Washington DC Masters Conference

Identity and The Independent Web

A Decade of Have I Been Pwned

Is the Resurgence of Phishing Attacks A Cause For Concern?

I'm Open Sourcing the Have I Been Pwned Code Base

Making 5G a reality — what needs to happen next?

Is India's Aadhaar System Really "Hack-Proof"? Assessing a Publicly Observable Security Posture

The Week in Cyber Security and Data Privacy: 26 February – 3 March 2024

Facebook Is No Longer Flat: On Graph Search

The Legitimisation of Have I Been Pwned

This is the old ChiefTech blog.: Enterprise Scenarios for Integrating Social Network

Stay Connected