Hunton Privacy

MAY 19, 2015

In July 2013, the DAA issued the Application of Self-Regulatory Principles to the Mobile Environment (the “Mobile Guidance”), which clarified that the Self-Regulatory Principles apply to the mobile environment. Personal Directory Data” which is calendar, address book, phone or text log, or photo or video data accessed through a device.

Data collection 49

Data collection Marketing Access Privacy 49

Security Affairs

MARCH 1, 2020

Data provided in the reports are disconcerting, British telecommunications firms supported GCHQ in collecting a large volume of internet data from undersea cables, the overall amount of information from 2007 to 2012 registered a 7,000-fold increase, meanwhile, the spying system monitored nearly 46 billion private communications “events” every day.

Military 142

Military Communications Data collection Access 142

Krebs on Security

MAY 2, 2023

A sprawling online company based in Georgia that has made tens of millions of dollars purporting to sell access to jobs at the United States Postal Service (USPS) has exposed its internal IT operations and database of nearly 900,000 customers. In that 1998 case, the defendants behind the scheme were taking out classified ads in newspapers.

Marketing 281

Marketing IT Access Data collection 281

Security Affairs

MARCH 7, 2019

“Many devices such as cameras, printers, and routers use UPnP to make it easy for them to automatically discover and vet other devices on a local network and communicate with each other for data sharing or media streaming. CVE-2013-0229 , a vulnerability found MiniUPnPd before 1.4, allows attackers to execute arbitrary code. •

Libraries 89

Libraries Communications Data collection Security 89

Hunton Privacy

JULY 22, 2013

On July 12, 2013, Illinois Attorney General Lisa Madigan announced that she sent letters to operators of eight popular health-related websites requesting information about the websites’ online data collection practices. The companies that received letters have until August 2, 2013, to submit their responses.

Data collection 40

Data collection Privacy Analytics Access 40

eSecurity Planet

APRIL 26, 2022

Company Sector Year Status Perimeter81 VPN and zero trust 2020 Private Wiz Cloud security 2020 Private OneTrust Privacy management 2019 Private Darktrace AI network security 2017 Private Recorded Future Threat intelligence 2017 Acquired: Insight Thycotic Access management 2015 Private Checkmarx Application security 2015 Acquired: P.E.

Cybersecurity 128

Cybersecurity Cloud Marketing Security 128

Data Protection Report

AUGUST 13, 2019

On 4 July 2019, the CNIL published new guidelines on cookies and other similar technologies , repealing its 2013 cookie guidance in order to align its position with the GDPR’s new requirements on consent. cookies allowing the detection of transmission errors or data loss); and. Not just guidance on cookies.

Computer and Electronics 40

Computer and Electronics GDPR Personal data Data collection 40

Hunton Privacy

NOVEMBER 27, 2013

On November 15, 2013, the U.S. Government Accountability Office (“GAO”) released a report (the “Report”) finding that the current federal statutory privacy scheme contains “gaps” and “does not fully reflect” the Fair Information Practice Principles (“FIPPs”).

Privacy 40

Privacy Marketing Data collection Government 40

Hunton Privacy

MAY 30, 2014

The Report also notes that, to the extent data brokers currently offer consumers choices about their personal information, consumers may not be aware of those choices. The FTC recommends that Congress enact legislation to address the lack of visibility into data broker practices, and to provide consumers with increased access and control.

Data collection 40

Data collection Big data Privacy Access 40

Hunton Privacy

NOVEMBER 20, 2013

On November 4, 2013, the China Insurance Regulatory Commission, which is the Chinese regulatory and administrative authority for the insurance sector, issued the Interim Measures for the Management of the Authenticity of Information of Life Insurance Customers (the “Measures”).

Insurance 40

Insurance Personal data Authentication Records Management 40

eSecurity Planet

JANUARY 26, 2022

AES-256 encryption for data at rest and TLS v1.2 With Dynatrace, administrators can access infrastructure monitoring features for entity relationships, behavior, logs, metrics, and vulnerability profiles. Dynatrace offers a full-stack application performance monitoring and digital experience platform for modern hybrid environments.

Cloud 120

Cloud Marketing Analytics Encryption 120

eSecurity Planet

AUGUST 15, 2022

Company Product Est HQ Exabeam Exabeam Fusion 2013 Foster City, CA IBM Security QRadar SIEM 1911 Armonk, NY LogRhythm LogRhythm SIEM Platform 2003 Boulder, CO Securonix Next-Gen SIEM 2008 Addison, TX Splunk Splunk Enterprise Security 2003 San Francisco, CA. Access to hundreds of playbooks and dashboards for compliance reporting.

Analytics 113

Analytics Cloud Compliance Cybersecurity 113

Hunton Privacy

JANUARY 28, 2015

The Report follows a workshop by the FTC on this topic in November 2013. The risks that accompany such connected devices include: an unauthorized person accessing and misusing personal information of the user of the connected device; a hacker infiltrating the network to which the device is connected and wrecking havoc; and.

Privacy 40

Privacy Risk Data collection Education 40

Hunton Privacy

DECEMBER 14, 2020

While the provisions of Article 82 of the French Data Protection Act have remained unchanged, the CNIL revised its soft law instruments to take into account the strengthened consent requirements of the EU General Data Protection Regulation (“GDPR”). When the CNIL inspected the google.fr Opt-out mechanism partially defective.

GDPR 102

GDPR Personal data Access IT 102

Hunton Privacy

MARCH 18, 2013

On February 27, 2013, the Article 29 Working Party (the “Working Party”) adopted an Opinion (the “Opinion”) addressing personal data protection issues related to the development and use of applications on mobile devices.

Manufacturing 40

Manufacturing Personal data Privacy Data breaches 40

Hunton Privacy

FEBRUARY 12, 2013

On January 17, 2013, Mexico’s Ministry of Economy published its Lineamientos del Aviso de Privacidad (in Spanish) (“Privacy Notice Guidelines” or “Guidelines”), which it prepared in collaboration with the Mexican data protection authority. The Guidelines will take effect in mid-April. Cookies, Web Beacons and Similar Technology.

Privacy 40

Privacy Personal data Data collection Financial Services 40

Hunton Privacy

OCTOBER 14, 2013

On October 2, 2013, the Article 29 Working Party (the “Working Party”) issued a Working Document providing guidance on how to obtain consent for the use of cookies and similar technologies in compliance with EU legal requirements (“Working Document”). Article 5.3 Article 5.3 Real Choice.

Data collection 40

Data collection Access Privacy Compliance 40

Schneier on Security

MARCH 14, 2023

Consider, for example, a 2013 Massachusetts bill that tried to restrict the commercial use of data collected from K-12 students using services accessed via the internet. These final two aspects of lobbying—access and financing—cannot be supplied by the AI tools we envision.

Energy and Utilities 128

Energy and Utilities Artificial Intelligence Risk Marketing 128

Hunton Privacy

APRIL 9, 2013

On April 2, 2013, the Article 29 Working Party (the “Working Party”) adopted an Opinion (the “Opinion”) that elaborates on the purpose limitation principle set out in Article 6(1)(b) of the current EU Data Protection Directive 95/46/EC (the “Data Protection Directive”). Compatible Use.

Big data 40

Big data Personal data Data collection Marketing 40

Troy Hunt

DECEMBER 17, 2017

CloudPets left their MongoDB exposed which subsequently exposed data collected from connected teddy bears (yes, they're really a thing). Every single one of these incidents was an access control mistake. Every single one of these incidents was an access control mistake.

Data breaches 74

Data breaches Education Passwords Risk 74

DLA Piper Privacy Matters

SEPTEMBER 29, 2017

Browsing and connexion data (including location data and device related data) collected in the context of the agreements in force; and. Strict requirements regarding access rights and management of the fraud prevention/detection system. Public authorities as authorized under the law.

Personal data 40

Personal data Financial Services Risk Insurance 40

Data Matters

APRIL 23, 2018

Encrypting critical data assets. Using appropriate access controls. Boards should have adequate access to cybersecurity expertise, and discussions about cyber-risk management should be given regular and adequate time on board meeting agendas. Using Appropriate Access Controls. Aligning cyber risk with corporate strategy.

Cybersecurity 60

Cybersecurity Risk Passwords Authentication 60

Data Matters

SEPTEMBER 29, 2021

Most of that focus has centered on data collection, storage, sharing, and, in particular, third-party transactions in which customer information is harnessed for advertising purposes. Could a party, for instance, decline to produce, review, or even collect certain types of data due to privacy concerns?

Privacy 94

Privacy e-Discovery Computer and Electronics e-Delivery 94

IT Governance

APRIL 29, 2024

million to settle a complaint alleging that the home security camera company Ring “allowed employees and contractors to access consumers’ private videos and failed to implement security protections, enabling hackers to take control of consumers’ accounts, cameras, and videos”. law with respect to their data collected by U.S

Data Privacy 83

Data Privacy Privacy Manufacturing Security 83

Schneier on Security

JANUARY 31, 2018

Section 702 was secretly used as a way to paper over that illegal collection, but nothing in the text of the later amendment gives the NSA this authority. We didn't know that the NSA was using this law as the statutory basis for this surveillance until Edward Snowden showed us in 2013. It's collected knowingly, and searched regularly.

Communications 72

Communications Privacy Data collection Government 72

Hunton Privacy

NOVEMBER 20, 2013

On November 19, 2013, the Federal Trade Commission held a workshop in Washington, D.C. Chairwoman Ramirez raised three key issues for workshop participants to consider: The Internet of Things will result in increased data collection, amplifying the importance of simplifying choices and giving control to individuals with just-in-time notices.

Privacy 40

Privacy Data Privacy Education Personal data 40