Compliance, Education and Insurance - Information Management Today

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. See the Top Governance, Risk and Compliance (GRC) Tools.

Data Privacy

Data Privacy Compliance Privacy Security

Top 8 Cyber Insurance Companies for 2022

eSecurity Planet

APRIL 22, 2022

That’s where cyber insurance may be able to help. For that reason, most experts now recognize that a complete cybersecurity strategy not only includes technological solutions aimed at preventing, detecting, and mitigating attacks, it should also include cyber insurance to help manage the associated financial risks. That’s a 29.1%

Insurance

Insurance Ransomware Cybersecurity Marketing

Checklist for Getting Cyber Insurance Coverage

Thales Cloud Protection & Licensing

MAY 10, 2022

Checklist for Getting Cyber Insurance Coverage. The necessity for cyber-insurance coverage. With cyber attacks amounting to a question of when and not if, cyber insurance becomes crucial for ensuring business continuity and mitigating the business impact of attacks – should they occur. Tue, 05/10/2022 - 05:43.

Insurance

Insurance Authentication Risk Ransomware

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Record Retention Policy for Businesses: A Strategic Guide to Compliance and Efficiency

Armstrong Archives

DECEMBER 19, 2023

Whether it’s maintaining regulatory compliance or simply making tax season easier, an effective record retention strategy is paramount. Regular training sessions ensure that new employees are informed and existing staff are reminded of their responsibilities, reducing the risk of non-compliance.

Compliance

Compliance Archiving Digital transformation Sales

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

Data Matters

FEBRUARY 10, 2021

2 announcing a Cyber Insurance Risk Framework (the Framework) that describes industry best practices for New York-regulated property/casualty insurers. According to NYDFS, the incorporation of these practices should be proportionate to each insurer’s size, resources, geographic distribution, and other factors. The Framework.

Insurance

Insurance Financial Services Cybersecurity Risk

Using Information Governance with a Privacy Compliance Plan as the Fulcrum for Data Privacy and Continuous Compliance

Information Governance Perspectives

MAY 10, 2020

In May of 2020 I was honored to speak at the MERv conference with John Frost of Box on the topic of Using Information Governance with a Privacy Compliance Plan as the Fulcrum for Data Privacy and Continuous Compliance. Privacy makes data governance ethical and tangible, and compliance leaders understand that.

Compliance

Compliance Information governance Privacy Data Privacy

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

IT Governance

FEBRUARY 6, 2024

Source 1 ; source 2 (New) Professional services USA Yes 11,556 Poder Judicial de Santa Cruz Source (New) Legal Argentina Yes 8,732 J.D.

Data Privacy

Data Privacy Privacy Insurance Security

Top 10 Governance, Risk and Compliance (GRC) Vendors

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. It includes multi-disciplinary risk and compliance management solutions and tools, including: IT & security risk management. Compliance management.

Compliance

Compliance Risk Government Retail

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

IT Governance

MARCH 11, 2024

Source (New) Finance USA Yes 3,494 Woodruff Sawyer Source (New) Insurance USA Yes 3,087 Blackburn College Source (New) Education USA Yes 3,039 CAIRE Inc. Source (New) Professional services Netherlands Yes 28.3 Source (New) Professional services Netherlands Yes 28.3

Data Privacy

Data Privacy Privacy Security Data breaches

Meeting Evolving Business Needs – A Conversation Between RIM Educators and Thought Leaders

Information Governance Perspectives

MAY 8, 2020

Hunter, Dr. Tao Jin, Dr. Patricia Franks, Rae Lynn Haliday, Cheryl Pederson, and Wendy McLain on the topic of Meeting Evolving Business Needs – A Conversation Between RIM Educators and Thought Leaders. And recruiters are looking for that education and experience. Their executives… and their attorneys, they all realize this.

Education

Education Digital transformation Search queries Information governance

Final Draft of EU AI Act Leaked

Hunton Privacy

FEBRUARY 1, 2024

Education and Vocational Training. Penalties Non-compliance with the AI Act may lead to significant fines. AI systems intended to be used as safety components in the management and operation of critical digital infrastructure, road traffic and the supply of water, gas, heating or electricity. million or 1.5%

Risk

Risk Education Artificial Intelligence Insurance

List of Data Breaches and Cyber Attacks in July 2023 – 146 Million Records Breached

IT Governance

AUGUST 1, 2023

million) Milliman Solutions notifies patients of third-party breach involving MOVEit (1.2 million) Milliman Solutions notifies patients of third-party breach involving MOVEit (1.2 million) Milliman Solutions notifies patients of third-party breach involving MOVEit (1.2

Data breaches

Data breaches Ransomware Insurance Education

CyberheistNews Vol 13 #20 [Foot in the Door] The Q1 2023's Top-Clicked Phishing Scams | INFOGRAPHIC

KnowBe4

MAY 16, 2023

[link] Munich Re: '3X Growth Estimated in Cyber Crime Costs Over the Next 4 Years' As cyber attacks continue to grow in sophistication and frequency, cyber insurers are expecting their market to double in the next two years. I've spent a lot of time here educating you on attack specifics, industry trends, and the impacts felt by attacks.

Phishing

Phishing Insurance Passwords Ransomware

SHARED INTEL Q&A: My thoughts and opinions about cyber threats — as discussed with OneRep

The Last Watchdog

OCTOBER 5, 2023

Byron: Companies often underestimate threats, neglect basic cyber hygiene, and fail to educate employees on cybersecurity. Erin: Do you think cyber insurance should play a bigger role in companies’ cybersecurity strategies? What factors should organizations consider when selecting a cyber insurance policy?

Cybersecurity

Cybersecurity Privacy Cloud IoT

Wake up to the reality of the GDPR: What you need to know about compliance

IT Governance

JANUARY 30, 2019

May 2018 brought a whirlwind of panic as organisations rushed to meet the compliance deadline, but it was followed by months of unnerving silence. In this blog, we recap the essentials of compliance, explaining how the Regulation works, who it applies to and how you can avoid the same mistakes that Google made. The basics.

GDPR

GDPR Compliance Personal data Data breaches

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

Hunton Privacy

OCTOBER 14, 2021

Additional bills, amending the California Confidentiality of Medical Information Act (“CMIA”) and the California Insurance Code, also were also signed into law. Penalties for Non-Compliance : The law will be enforced by the California Attorney General or certain district attorneys or city prosecutors.

Privacy

Privacy Insurance Security Data breaches

The Week in Cyber Security and Data Privacy: 15 – 21 April 2024

IT Governance

APRIL 22, 2024

Mobile Guardian, which is used to help parents manage their children’s device usage, was hacked on 19 April, according to the Singaporean Ministry of Education. Mobile Guardian, which is based in the UK, said that its investigations detected unauthorised access to its systems via an administrative account on its management portal.

Data Privacy

Data Privacy Privacy Manufacturing Security

Businesses Secretly Pentest Partners as Supply Chain Fears Grow

eSecurity Planet

SEPTEMBER 29, 2022

‘Shadow Compliance’ Some say there is nothing legally wrong with pentesting your business partners. Taylor terms this “shadow compliance.” Company reputation is not only of interest to current and potential customers, but it’s also important to market analysts, lenders, and insurance companies.

Cybersecurity

Cybersecurity Insurance Compliance Risk

What is personal information under the CCPA?

Collibra

NOVEMBER 2, 2020

Education information not considered publicly available personally identifiable information as defined in the Family Educational Rights and Privacy Act. Understanding and properly defining personal information under the CCPA enables organizations to create a system of record that can more effectively address compliance requirements.

Privacy

Privacy Education Insurance GDPR

Understanding HIPAA: A Guide to Avoiding Common Violations

Armstrong Archives

AUGUST 25, 2023

The Health Insurance Portability and Accountability Act (HIPAA) ensures individuals’ health data protection and privacy. This includes insurance companies, nurses, and doctors. In this article, we’ll talk more about the HIPAA, the importance of compliance, some common HIPAA violations, and more!

Computer and Electronics

Computer and Electronics Insurance Compliance Risk

California Seeks to Regulation Employer Use of AI

Hunton Privacy

FEBRUARY 28, 2024

And a “consequential decision” is defined as a decision or judgment that has a legal, material, or similarly significant effect on an individual’s life relating to the impact of, access to, or the cost, terms, or availability of, any of the following: 1) employment, including any decisions regarding pay or promotion, hiring or termination and automated (..)

Artificial Intelligence

Artificial Intelligence Government Risk Financial Services

Australia: Consumer Data Right pipeline to cast a wide net

DLA Piper Privacy Matters

SEPTEMBER 14, 2021

These sectors include: insurance (both general and health insurance); groceries; loyalty schemes; non-bank lenders; superannuation; transport; government; health; education; and. agriculture. Sector designation. the potential for competition and innovation in the relevant sector and the Australian economy more broadly.

Agriculture

Agriculture Insurance Customer Experience Privacy

A Guide to Key Management as a Service

Thales Cloud Protection & Licensing

JUNE 15, 2023

KMaaS providers typically offer features such as FIPS 140-2 certified Hardware Security Modules (HSMs) to ensure the highest security and compliance for sensitive keys. Sustained compliance: Encryption and effective key management are key requirements across all security and privacy regulations.

Encryption

Encryption Compliance Cloud Authentication

The Week in Cyber Security and Data Privacy: 8 – 14 January 2024

IT Governance

JANUARY 16, 2024

GB Rebekah Children’s Services Source (New) Non-profit USA Yes 2,805 Butte School District Source 1 ; source 2 (Update) Education USA Yes 2,658 Dignity Health Nevada St. GB Rebekah Children’s Services Source (New) Non-profit USA Yes 2,805 Butte School District Source 1 ; source 2 (Update) Education USA Yes 2,658 Dignity Health Nevada St.

Data Privacy

Data Privacy Privacy Manufacturing Retail

The Week in Cyber Security and Data Privacy: 1 – 7 January 2024

IT Governance

JANUARY 9, 2024

million people was compromised, including names, addresses, dates of birth, Social Security numbers, taxpayer identification numbers, medical information, health insurance information, and billing and claims information. Information relating to nearly 4.5 Data breached: 4,452,782 records. TB Gräbener Maschinentechnik GmbH & Co.

Data Privacy

Data Privacy Privacy Manufacturing Data breaches

Global October Cybersecurity Events: Where You Can Find Thales

Thales Cloud Protection & Licensing

OCTOBER 5, 2022

Along with celebrating Cyber Security Awareness Month, several exciting events are taking place across the world, aiming to educate people on the latest trends in cybersecurity and privacy. This talk will cover how to effectively leverage Google Cloud’s key management offerings to solve common security and compliance objectives.

Cybersecurity

Cybersecurity Cloud Digital transformation Sales

Court Compels Non-Party Insurance Agents to Produce Text Messages in TCPA Case: eDiscovery Case Law

eDiscovery Daily

SEPTEMBER 11, 2018

Farmers Insurance Exchange, No. In this Telephone Consumer Protection Act (TCPA) case, the plaintiff alleged that, at the direction of the defendant insurance companies, non-party Farmers Insurance agents James Lohse and Joe Ridgway sent text messages to her without her consent, in violation of the TCPA. In Gould v.

Insurance

Insurance Authentication Education Compliance

Attracting and Retaining the Next Generation of Information Management Leaders

AIIM

JUNE 2, 2023

Information managers improve business processes, reduce organizational risk, save money, and ensure compliance. Jeff Lewis from Farmers Insurance pointed out that the pandemic may have shaped the perceptions and experiences of Gen Z, who entered the workforce during the pandemic. Empathy plays a crucial role in this.

Insurance

Insurance Libraries Analytics Education

DOL Puts Plan Sponsors and Other Fiduciaries on Notice: ERISA Requires Appropriate Precautions to Mitigate Cybersecurity Threats

Data Matters

APRIL 20, 2021

DOL guidance provides a series of questions that should serve as a starting point for this review and includes topics such as the service provider’s information security standards, track record, cybersecurity insurance coverage, and cybersecurity validation techniques.

Cybersecurity

Cybersecurity Insurance Risk Compliance

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

IT Governance

FEBRUARY 21, 2024

Welfare Benefits Plan Source 1 ; source 2 New Healthcare USA Yes 13,079 Insurance ACE/Humana Inc. Source New Manufacturing USA Yes 20,415 TECA Srl Source New Transport Italy Yes 16.7 GB AGC Flat Glass North America, Inc.

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

Security Affairs

SEPTEMBER 23, 2023

According to the notice published on the website of the OAG on August 07, 2023, exposed personal information includes names, addresses, social security information, health information, and health insurance information. The Dallas City Council has approved a budget of $8.5 million to mitigate the ransomware attack.

Ransomware

Ransomware Encryption Systems administration Cybersecurity

62% of organisations unaware of the GDPR

IT Governance

FEBRUARY 23, 2018

Almost two thirds (62%) of respondents hadn’t heard of the Regulation, and only about 10% had taken steps to meet its compliance requirements. The finance and insurance (79%), information or communications (67%) and education (52%) sectors have the highest awareness of the GDPR.

GDPR

GDPR Compliance Insurance Personal data

The Week in Cyber Security and Data Privacy: 22 – 28 January 2024

IT Governance

JANUARY 30, 2024

Source (New) Retail USA Yes 2,588,849 Keenan & Associates Source 1 ; source 2 (Update) Insurance USA Yes 1,509,616 AGC Group Source (New) Manufacturing Japan Yes 1.5 TB Four Hands Source (New) Manufacturing USA Yes 1.5 TB UK forex customers Source (New) Finance UK Yes 1,001,214 A.N.S. Source (New) Non-profit USA Yes 25,908.62

Data Privacy

Data Privacy Retail Privacy Manufacturing

Dentists: Don’t Forget HIPAA Compliance

HIPAA

OCTOBER 8, 2013

And, if asked, most dentists and their staff would say they know what the HIPAA regulations are, and yes, they have been trained, but are they really up to date with HIPAA’s ever expanding changes and compliance requirements? It requires a continual effort on the part of the dentist and the office staff.

Compliance

Compliance Privacy Insurance Education

Connecticut Strengthens Data Breach Notification Requirements and the Uniform Law Commission Approves and Recommends Comprehensive and Uniform State Privacy Legislation

Data Matters

AUGUST 9, 2021

With the growing patchwork of state data privacy laws continuing to pose challenges for compliance—and the potential for federal data privacy legislation at the forefront of policy debates—the UPDPA may provide state legislators with a path toward a standardized statutory scheme.

Data breaches

Data breaches Privacy Personal data Data Privacy

The advantages and disadvantages of private cloud

IBM Big Data Hub

APRIL 4, 2024

Across industries like education, retail and government, organizations are choosing private cloud settings to conduct business use cases involving workloads with sensitive information and to comply with data privacy and compliance needs. The popularity of private cloud is growing, primarily driven by the need for greater data security.

Cloud

Cloud Digital transformation Access Compliance

Dentists: Don’t Forget HIPAA Compliance

HIPAA

OCTOBER 8, 2013

And, if asked, most dentists and their staff would say they know what the HIPAA regulations are, and yes, they have been trained, but are they really up to date with HIPAA’s ever expanding changes and compliance requirements? It requires a continual effort on the part of the dentist and the office staff.

Compliance

Compliance Privacy Insurance Education

Government survey reveals GDPR awareness is falling short

IT Governance

FEBRUARY 8, 2018

Of the businesses surveyed, those in the finance and insurance industries had the highest levels of awareness (79%), followed by information and communications (67%) and education (52%). Clearly there is still work to be done to ensure compliance by the 25 May deadline. Don’t let your staff be your downfall.

GDPR

GDPR Government Education Compliance

Phishing emails and malicious attachments responsible for 34% of cyber attacks

IT Governance

MARCH 14, 2018

The gaming and public-sector industries were mostly affected by targeted attacks, whereas the insurance and telecom industries mostly suffered opportunistic attacks. Email is used organisation-wide and, with targeted attacks a growing concern, it is essential that organisations build awareness and educate their employees.

Phishing

Phishing Education Insurance Manufacturing

Dentists: Don’t Forget HIPAA Compliance

HIPAA

OCTOBER 8, 2013

And, if asked, most dentists and their staff would say they know what the HIPAA regulations are, and yes, they have been trained, but are they really up to date with HIPAA’s ever expanding changes and compliance requirements? It requires a continual effort on the part of the dentist and the office staff.

Compliance

Compliance Privacy Insurance Education

Developments in Health Privacy and Cybersecurity Policy and Regulation: OCR Issues Cybersecurity Warnings and New Health Data Legislation Is Introduced

Data Matters

MARCH 28, 2022

Department of Health and Human Service’s Office for Civil Rights (“OCR”) issued industry guidance for Health Insurance Portability and Accountability Act (“HIPAA”) regulated entities to take preventative steps to protect against some of the more common, and often successful, cyber-attack techniques. On March 17, 2022, the U.S.

Cybersecurity

Cybersecurity Privacy Insurance Risk

Regulatory Update: NAIC Summer 2019 National Meeting

Data Matters

SEPTEMBER 4, 2019

The National Association of Insurance Commissioners (NAIC) held its Summer 2019 National Meeting (Summer Meeting) in New York City from August 3 to 6, 2019. The amended regulation took effect on August 1, 2019, for annuity products and will become effective on February 1, 2020, for life insurance products.

Insurance

Insurance Paper Risk Analytics

Network Security Architecture: Best Practices & Tools

eSecurity Planet

APRIL 26, 2024

Cloud infrastructure entitlement management (CIEM): Manages compliance, risk, and security with controlled user, system, and app cloud resource access. Cloud security posture management (CSPM): Finds gaps and misconfigurations, secures access, and enforces compliance policies in deployed cloud environments.

Security

Security Cloud Cybersecurity Risk

Protecting Against the Risks and Managing the Complexities of a Quantum World with Thales and IBM Consulting

Thales Cloud Protection & Licensing

JANUARY 24, 2024

We have a proven methodology of success, validated through dozens of successful Quantum Safe programs for clients across the industries, from Banking, Telecoms, Insurances to Governments. How can Thales and IBM Consulting help you?

Risk

Risk Encryption Blockchain Authentication

Security Compliance & Data Privacy Regulations

Top 8 Cyber Insurance Companies for 2022

Webinars

Trending Sources

Checklist for Getting Cyber Insurance Coverage

Webinars

Record Retention Policy for Businesses: A Strategic Guide to Compliance and Efficiency

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

Using Information Governance with a Privacy Compliance Plan as the Fulcrum for Data Privacy and Continuous Compliance

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

Top 10 Governance, Risk and Compliance (GRC) Vendors

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

Meeting Evolving Business Needs – A Conversation Between RIM Educators and Thought Leaders

Final Draft of EU AI Act Leaked

List of Data Breaches and Cyber Attacks in July 2023 – 146 Million Records Breached

CyberheistNews Vol 13 #20 [Foot in the Door] The Q1 2023's Top-Clicked Phishing Scams | INFOGRAPHIC

SHARED INTEL Q&A: My thoughts and opinions about cyber threats — as discussed with OneRep

Wake up to the reality of the GDPR: What you need to know about compliance

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

The Week in Cyber Security and Data Privacy: 15 – 21 April 2024

Businesses Secretly Pentest Partners as Supply Chain Fears Grow

What is personal information under the CCPA?

Understanding HIPAA: A Guide to Avoiding Common Violations

California Seeks to Regulation Employer Use of AI

Australia: Consumer Data Right pipeline to cast a wide net

A Guide to Key Management as a Service

The Week in Cyber Security and Data Privacy: 8 – 14 January 2024

The Week in Cyber Security and Data Privacy: 1 – 7 January 2024

Global October Cybersecurity Events: Where You Can Find Thales

Court Compels Non-Party Insurance Agents to Produce Text Messages in TCPA Case: eDiscovery Case Law

Attracting and Retaining the Next Generation of Information Management Leaders

DOL Puts Plan Sponsors and Other Fiduciaries on Notice: ERISA Requires Appropriate Precautions to Mitigate Cybersecurity Threats

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

62% of organisations unaware of the GDPR

The Week in Cyber Security and Data Privacy: 22 – 28 January 2024

Dentists: Don’t Forget HIPAA Compliance

Connecticut Strengthens Data Breach Notification Requirements and the Uniform Law Commission Approves and Recommends Comprehensive and Uniform State Privacy Legislation

The advantages and disadvantages of private cloud

Dentists: Don’t Forget HIPAA Compliance

Government survey reveals GDPR awareness is falling short

Phishing emails and malicious attachments responsible for 34% of cyber attacks

Dentists: Don’t Forget HIPAA Compliance

Developments in Health Privacy and Cybersecurity Policy and Regulation: OCR Issues Cybersecurity Warnings and New Health Data Legislation Is Introduced

Regulatory Update: NAIC Summer 2019 National Meeting

Network Security Architecture: Best Practices & Tools

Protecting Against the Risks and Managing the Complexities of a Quantum World with Thales and IBM Consulting

Stay Connected