2016, GDPR and Government - Information Management Today

Maintaining GDPR and Data Privacy Compliance in 2024

IT Governance

FEBRUARY 16, 2024

Expert tips from Alan Calder Alan is the Group CEO of GRC International Group PLC, the parent company of IT Governance, and is an acknowledged international security guru. In addition, 14 US states now have their own data privacy laws, and GDPR-like legislation has proliferated across the world.

Data Privacy

Data Privacy GDPR Compliance Privacy

Governments Might Change, but Data Protection Obligations Remain

IT Governance

NOVEMBER 3, 2022

You might remember that several months and a handful of prime ministers ago, the government proposed an overhaul of data protection law. The efforts stemmed from complaints over the GDPR (General Data Protection Regulation) , which was adopted by the UK on the precipice of Brexit. However, progress stalled after Boris Johnson resigned.

Government

Government GDPR Personal data Compliance

UK Government Confirms Implementation of GDPR in UK

Hunton Privacy

NOVEMBER 3, 2016

On October 24, 2016, the UK Secretary of State for Culture, Media and Sport confirmed that the UK will implement the EU General Data Protection Regulation (“GDPR”) by May 2018.

GDPR

GDPR Government

Webinars

Launching LLM-Based Products: From Concept to Cash in 90 Days

Driving Responsible Innovation: How to Navigate AI Governance & Data Privacy

MORE WEBINARS

The Compliance Mandate is Real as GDPR Enforcement Accelerates

Everteam

JULY 10, 2019

Since its implementation in May of 2018, GDPR has been the subject of much discussion but little concrete action by many companies on both sides of the Atlantic. The threat posed by GDPR-driven fines has until recently seemed a vague one for many companies — applicable only to IT giants like Facebook, Google, and Microsoft.

GDPR

GDPR Compliance Unstructured data Data Privacy

U.S. Government White Paper to Help Companies Address the EU’s National Security Concerns in Schrems II

Data Matters

SEPTEMBER 30, 2020

government released a “White Paper” addressing how U.S. The White Paper indicates that companies facing the post- Schrems II world can approach compliance with the EU’s General Data Protection Regulation (“GDPR”) by preparing an assessment that “defends” their continued reliance on SCCs as a legitimate basis for continuing to transfer data.

Paper

Paper Government Security Privacy

Doorstep Dispensaree becomes the first UK organisation to receive a GDPR fine

IT Governance

DECEMBER 24, 2019

Doorstep Dispensaree has been fined £275,000 for failing to comply with the GDPR (General Data Protection Regulation) , making it the first organisation in the UK to be penalised for breaching its requirements. Haven’t there already been GDPR fines in the UK? What went wrong?

GDPR

GDPR Personal data Government Access

Weekly podcast: the GDPR is here

IT Governance

MAY 25, 2018

Hello and welcome to the IT Governance podcast for Friday, 25 May 2018, the day the EU’s General Data Protection Regulation (the GDPR) – the first major update to European data protection law in more than 20 years – applies across Europe and around the world. The General Data Protection Regulation is now in force. Don’t panic.

GDPR

GDPR Compliance Personal data Government

Predictive data quality + adaptive data governance = robust compliance by design

Collibra

JANUARY 14, 2022

When GDPR (General Data Protection Regulation) came into effect in 2016, organizations took time to understand and plan their compliance efforts. The key requirements of data privacy regulations such as GDPR or CCPA (California Consumer Privacy Act) are quite clear. This is where data governance comes into the picture.

Compliance

Compliance Government GDPR Personal data

IAPP Europe Data Protection Congress 2016

Hunton Privacy

NOVEMBER 9, 2016

Join us at the International Association of Privacy Professionals (“IAPP”) Data Protection Congress in Brussels, November 9-10, 2016. Hunton & Williams privacy professionals will be featured speakers in the following sessions: Addressing Risky Processing Under the GDPR: A Practical Approach. Thursday, November 10, 1:30 p.m.

Data Privacy

Data Privacy GDPR Privacy Compliance

Article 29 Working Party Releases GDPR Implementation Guidance and Announces Privacy Shield Developments

Hunton Privacy

DECEMBER 16, 2016

The Working Party noted that the guidelines were developed with input by different stakeholders, including at the July 2016 FabLab organized by the Working Party and various national consultations by data protection authorities. government representatives relating to the U.S. Also, the plenary involved the “auditioning” of U.S.

GDPR

GDPR Privacy Paper Communications

Does the GDPR apply to old data breaches?

IT Governance

JUNE 20, 2018

A number of people have asked whether the GDPR (General Data Protection Regulation) applies to data breaches that occurred before 25 May 2018 but were discovered after that date. He stressed that the GDPR’s 25 May enforcement date was well known. “If If there is a breach discovered the day after,” he said, “the GDPR will apply.”.

Data breaches

Data breaches GDPR Compliance Personal data

Weekly podcast: Metro Bank, Student Loans Company, GDPR breaches and seals

IT Governance

FEBRUARY 7, 2019

This week, we discuss the compromise of Metro Bank’s two-factor authentication system, nearly one million cyber attacks on the Student Loans Company, nearly 60,000 GDPR breaches and a surprising discovery for some marine biologists. You can find all the GDPR resources you need in order to achieve compliance at itgovernance.co.uk/gdpr.

GDPR

GDPR Data breaches Authentication Compliance

The Impact of Data Protection Laws on Your Records Retention Schedule

ARMA International

APRIL 18, 2022

The purpose of this article is to remove the fear and intimidation of domestic and global data protection laws and show how these laws and requirements are consistent with the existing objectives of your records retention schedule and information governance policy. 2016/679 (EU, April 27). 1 General Data Protection Regulation.

Personal data

Personal data GDPR Privacy Records Management

Data breaches grow across UK education sector

IT Governance

NOVEMBER 29, 2018

The high-profile GDPR (General Data Protection Regulation) mandates data breach reporting in many cases, and a lot of incidents have been reported since the Regulation came into force, but the numbers shared by the ICO (Information Commissioner’s Office) reveal a growing trend even before then. The highest number of breaches in 2016-17.

Education

Education Data breaches GDPR Government

Europe: New guidelines on the application and setting of fines under GDPR

DLA Piper Privacy Matters

NOVEMBER 7, 2017

Less than 6 months remain for individuals and companies to get ready for the breakthrough regulation in personal data protection envisaged by the Regulation 2016/679 of 27 April 2016 [1] (furthermore as “ GDPR “).

GDPR

GDPR Personal data Privacy Government

UK’s Draft GDPR Implementation Law: The Starting Point

HL Chronicle of Data Protection

SEPTEMBER 27, 2017

government introduced in Parliament the Data Protection Bill. The main aim of the bill is to implement the General Data Protection Regulation (EU) 2016/679 into U.K. Ensuring that the GDPR, as implemented by the bill, will continue to apply to the U.K. First and foremost, the bill applies the GDPR to U.K. domestic law.

GDPR

GDPR Personal data Government Privacy

CIPL and its GDPR Project Stakeholders Discuss DPOs and Risk under GDPR

Hunton Privacy

OCTOBER 5, 2016

In September, the Centre for Information Policy Leadership (“CIPL”) held its second GDPR Workshop in Paris as part of its two-year GDPR Implementation Project. Since the inaugural workshop in March 2016 in Amsterdam, participation in the project has grown significantly. Forthcoming Working Party GDPR Guidance.

GDPR

GDPR Risk IT Compliance

GDPR Italian Implementing Decree Has Been Published

HL Chronicle of Data Protection

SEPTEMBER 14, 2018

101 of 10 August 2018 (the “Decree”) for the national implementation of General Data Protection Regulation (EU) 2016/679 (the “GDPR”) has been published in the Official Journal. Also, the Decree governs the transition from the current to the future regime. On 4 September, the Legislative Decree no.

GDPR

GDPR Personal data Privacy Communications

Spanish Government approves new Decree-Law on Data Protection matters

DLA Piper Privacy Matters

JULY 30, 2018

Due to the complex balances inside the Spanish Parliament, Spain has been unable to put in place to date (July 2018) a new Data Protection Act that develops the EU Regulation 2016/679 (“GDPR”) in the areas where EU Member States are entitled to fill the gaps or add gold-plating requirements on top of those established by the GDPR.

Government

Government GDPR Privacy IT

Sweet & Maxwell Publishes the Fifth Edition of Data Protection Law and Practice Written by Rosemary Jay

Hunton Privacy

DECEMBER 15, 2020

The introduction of the EU General Data Protection Regulation (“GDPR”), which was supplemented in the UK by the 2018 Data Protection Act and subsequently incorporated into UK law, was the most significant change in the data protection landscape since the 1998 Data Protection Act.

Personal data

Personal data GDPR Communications Privacy

Uber Guilty Verdict Raises Security Stakes for CSOs

eSecurity Planet

OCTOBER 7, 2022

In a case that ups the stakes for CSOs dealing with data breaches, former Uber chief security officer Joe Sullivan was found guilty by a federal jury earlier this week of obstructing justice and of misprision (concealing) of a felony in connection with his coverup of a 2016 breach. See the Top Governance, Risk & Compliance (GRC) tools.

Security

Security Data breaches Compliance Cybersecurity

UK police forces suffered more than 2,000 data breaches in 2020

IT Governance

MAY 27, 2021

For example, the report revealed that police stations suffered 299 data breaches on average between January 2016 and April 2021. By contrast, the Metropolitan Police and Dorset Police claimed to have suffered no data breaches since at least 2016.

Data breaches

Data breaches Data Privacy Marketing Privacy

6 things I love about working at Collibra after 6 years in sales engineering

Collibra

APRIL 4, 2023

When he joined in 2016, data governance was still a new concept for many organizations. Regulations like GDPR and innovations in AI and machine learning would soon change all of that. I had first-hand experience with the business impact of poor data governance from my consulting work. data) of individuals.

Sales

Sales GDPR Marketing Government

Belgian Privacy Commission Issues Priorities and Thematic Dossier to Prepare for GDPR

Hunton Privacy

SEPTEMBER 21, 2016

On September 16, 2016, the Belgian Data Protection Authority (the “Privacy Commission”) published a 13-step guidance document (in French and Dutch ) to help organizations prepare for the EU General Data Protection Regulation (“GDPR”). Review existing privacy notices and update them to comply with the GDPR. Internal Records.

GDPR

GDPR Privacy Personal data Data breaches

EU Regulatory Data Protection: Many pieces to the regulatory framework puzzle

DLA Piper Privacy Matters

JANUARY 26, 2022

With the General Data Protection Regulation (GDPR), adopted in 2016, the EU has created a solid framework for the protection of personal data in line with the EU Charter of Fundamental Rights. GDPR as a baseline for the protection of personal data. the proposed Data Governance Act. the proposed Digital Markets Act.

Personal data

Personal data GDPR Computer and Electronics Artificial Intelligence

Two new State Archives partner with Preservica to safeguard permanent government records

Preservica

JULY 18, 2019

Colorado and Alaska State Archives are the latest government agencies to join the growing community of public sector organizations using Preservica’s cloud-hosted (SaaS) active digital preservation platform to meet state mandates and public records laws to preserve and provide greater access to permanent and historical government records.

Archiving

Archiving Digital preservation Government Cloud

eDiscovery and the GDPR: Ready or Not, Here it Comes: eDiscovery Best Practices

eDiscovery Daily

DECEMBER 3, 2017

Now, Tom has written a terrific informational overview on Europe’s General Data Protection Regulation (GDPR) titled eDiscovery and the GDPR: Ready or Not, Here it Comes. Part One: What is the GDPR? Europe’s General Data Protection Regulation (GDPR) is set to take effect in less than 200 days. Here’s the first part.

GDPR

GDPR IT Personal data Privacy

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing

Thales Cloud Protection & Licensing

DECEMBER 22, 2020

As a result, data has become a critical asset for companies and governments alike, as well as the primary target for nefarious actors and nation states. Multinationals face difficult and unique compliance challenges to successfully meet the ongoing waves of government regulations for data privacy and security.

Data Privacy

Data Privacy Privacy Security Encryption

Google LLC loses appeal against French Data Protection Authority decision before France highest administrative Court

DLA Piper Privacy Matters

JUNE 23, 2020

The CNIL assessment that Google did not collect a valid consent for ads personalization and does not comply with the transparency and information requirements set forth in Article 12 and 13 of the GDPR are not legally grounded (2). of the GDPR. Failure to obtain a valid consent under the GDPR.

GDPR

GDPR Personal data Access IT

EDPB Opinion on UK Adequacy: Strong Alignment but Challenges Remain

DLA Piper Privacy Matters

APRIL 19, 2021

The GDPR imposes restrictions on the transfer of personal data to a ‘third country’ unless that country benefits from (i) an adequacy decision; (ii) appropriate safeguards (e.g. standard contractual clauses ( SCCs )); or (iii) one of the limited exceptions under Article 49 GDPR. adequacy decision. Background. EDPB Opinions.

Personal data

Personal data GDPR Access Marketing

GDPR Is In Effect: The French Bill Has Been Adopted…But Referred to the French Constitutional Council

HL Chronicle of Data Protection

MAY 25, 2018

The General Data Protection Regulation (GDPR) entered into force on 25 May 2018. 78-17 dated 6 January 1978 to the new European Union law, the French Government has initiated an accelerated procedure. The GDPR has an extended scope compared to the scope of the French Data Protection Act. In light of the urgency to adapt Law no.

GDPR

GDPR Personal data Archiving Government

39% of businesses suffered cyber attacks in the past year

IT Governance

MARCH 30, 2021

Two in five businesses reported a cyber attack or data breach in the past 12 months, according to the UK government’s Cyber Security Breaches Survey 2021. Indeed, the study found that 77% of business now say that cyber security is a high priority for their directors and senior staff, compared to 69% in 2016. Find out more.

Data breaches

Data breaches Phishing Security awareness GDPR

TalkTalk data breach: two criminal hackers jailed

IT Governance

NOVEMBER 22, 2018

The then-17-year-old – who could not be named because of his age – was fined £85, given a 12-month rehabilitation order, and had his hard drive and iPhone confiscated in December 2016. In October 2016 the ICO (Information Commissioner’s Office) fined the company £400,000 for security failings that led to customer data being accessed.

Data breaches

Data breaches GDPR Personal data Risk

FRANCE: ONE MORE STEP TO ENSURE CONSISTENCY OF THE NEW FRENCH DATA PROTECTION LAW

DLA Piper Privacy Matters

JANUARY 21, 2019

On 12 December 2018, the French Government issued an ordinance [1] finalizing, at the legislative level [2] , the alignment of the French Data Protection Law (“FDPL”) with the General Data Protection Regulation [3] (“GDPR”) and the Directive 2016/680 [4]. Article 32 of the French Law No.

GDPR

GDPR Personal data Communications Government

French Parliament Rejects Data Localization Amendment

Hunton Privacy

JULY 1, 2016

473) adopted by the French Senate on April 27, 2016. The French Government was against this amendment which ignored current and future cross-border data transfer restrictions. The Joint Committee approved other amendments that anticipate EU General Data Protection Regulation (“GDPR”) requirements.

GDPR

GDPR Personal data Government Privacy

European Commission Plans to Upgrade e-Privacy Directive to a Regulation

Hunton Privacy

DECEMBER 13, 2016

On December 12, 2016, Politico reported that the European Commission intends to replace the e-Privacy Directive with a Regulation. The draft Regulation also addresses access to electronic communication services by government agencies for surveillance and monitoring purposes.

Privacy

Privacy GDPR Communications Government

Life’s a breach – the harsh cost of a data breach for professional services firms

IT Governance

JULY 30, 2018

According to the Solicitors Regulation Authority , more than £11 million of law firm clients’ money was stolen in 2016–17 as a result of cyber crime. To help you develop a roadmap for a successful and secure organisation, IT Governance has developed a portfolio of GDPR solutions to align with your firm’s business requirements and budget.

Data breaches

Data breaches GDPR Personal data Phishing

Today We are Launching a new Series of Information Governance Case Studies

IGI

AUGUST 7, 2019

In 2016, we worked with IG Charter Supporter, OpenText, to create the first series of Snapshots, which is now among our most widely-read publications. This Snapshot highlights ways that organizations can gain insight into unstructured data and leverage existing capabilities to bring governance to the chaos.

Information governance

Information governance Government Unstructured data Healthcare

EU Council Agrees on Proposed ePrivacy Regulation

Data Matters

MARCH 10, 2021

On February 10, 2021, the Council of the European Union (which includes representatives of the European Union (EU) member states, hereinafter Council) reached an agreement on the ePrivacy Regulation proposal that governs the protection of privacy and confidentiality of electronic communications services (ePrivacy Regulation).

GDPR

GDPR Metadata Communications Privacy

UK: Supreme Court judgment in Morrisons – employer not vicariously liable for data breach

DLA Piper Privacy Matters

APRIL 1, 2020

The Supreme Court held that: The earlier judgments of the High Court and Court of Appeal had misunderstood the principles governing vicarious liability. The court declined to specifically consider the General Data Protection Regulation, (EU) 2016/679 (“GDPR”). Implications for employers.

Data breaches

Data breaches GDPR Personal data Information governance

CJEU’s Judgment on Validity of EU Standard Contractual Clauses Due July 16, 2020

Hunton Privacy

JULY 13, 2020

government once transferred, in a manner incompatible with privacy rights guaranteed in the EU under the Charter of Fundamental Rights. View our previous blog posts on the progression of the case in May 2016 , October 2017 , August 2018 , July 2019 and May 2020.

Personal data

Personal data Privacy GDPR Risk

Security Affairs newsletter Round 222 – News of the week

Security Affairs

JULY 13, 2019

Croatia government agencies targeted with news SilentTrinity malware. Cyberattack shuts down La Porte County government systems. UK ICO fines British Airways £183 Million under GDPR over 2018 security breach. Kaspersky report: Malware shared by USCYBERCOM first seen in December 2016. Once again thank you!

Security

Security Libraries Data breaches Ransomware

Why law enforcement data processing is more complicated than you might think

IT Governance

MAY 30, 2019

Just when you thought you were getting the hang of the GDPR (General Data Protection Regulation) , you learn that things are even more complicated. Data processed by law enforcement bodies for other purposes will be subject to the requirements of the GDPR and the main body of the DPA 2018. Learn more with our webinar.

GDPR

GDPR Personal data Government Compliance

ICO Issues Twelve Step Guidance on Preparing for the EU General Data Protection Regulation

Hunton Privacy

MARCH 18, 2016

On March 14, 2016, the UK Information Commissioner’s Office (“ICO”) published a guide, Preparing for the General Data Protection Regulation (GDPR) – 12 Steps to Take Now. Ensure that decision makers and key members of the organization are aware that the law is changing, and that they appropriately anticipate the impact of the GDPR.

GDPR

GDPR Compliance Data breaches Privacy

Maintaining GDPR and Data Privacy Compliance in 2024

Governments Might Change, but Data Protection Obligations Remain

Webinars

Trending Sources

UK Government Confirms Implementation of GDPR in UK

Webinars

The Compliance Mandate is Real as GDPR Enforcement Accelerates

U.S. Government White Paper to Help Companies Address the EU’s National Security Concerns in Schrems II

Doorstep Dispensaree becomes the first UK organisation to receive a GDPR fine

Weekly podcast: the GDPR is here

Predictive data quality + adaptive data governance = robust compliance by design

IAPP Europe Data Protection Congress 2016

Article 29 Working Party Releases GDPR Implementation Guidance and Announces Privacy Shield Developments

Does the GDPR apply to old data breaches?

Weekly podcast: Metro Bank, Student Loans Company, GDPR breaches and seals

The Impact of Data Protection Laws on Your Records Retention Schedule

Data breaches grow across UK education sector

Europe: New guidelines on the application and setting of fines under GDPR

UK’s Draft GDPR Implementation Law: The Starting Point

CIPL and its GDPR Project Stakeholders Discuss DPOs and Risk under GDPR

GDPR Italian Implementing Decree Has Been Published

Spanish Government approves new Decree-Law on Data Protection matters

Sweet & Maxwell Publishes the Fifth Edition of Data Protection Law and Practice Written by Rosemary Jay

Uber Guilty Verdict Raises Security Stakes for CSOs

UK police forces suffered more than 2,000 data breaches in 2020

6 things I love about working at Collibra after 6 years in sales engineering

Belgian Privacy Commission Issues Priorities and Thematic Dossier to Prepare for GDPR

EU Regulatory Data Protection: Many pieces to the regulatory framework puzzle

Two new State Archives partner with Preservica to safeguard permanent government records

eDiscovery and the GDPR: Ready or Not, Here it Comes: eDiscovery Best Practices

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing

Google LLC loses appeal against French Data Protection Authority decision before France highest administrative Court

EDPB Opinion on UK Adequacy: Strong Alignment but Challenges Remain

GDPR Is In Effect: The French Bill Has Been Adopted…But Referred to the French Constitutional Council

39% of businesses suffered cyber attacks in the past year

TalkTalk data breach: two criminal hackers jailed

FRANCE: ONE MORE STEP TO ENSURE CONSISTENCY OF THE NEW FRENCH DATA PROTECTION LAW

French Parliament Rejects Data Localization Amendment

European Commission Plans to Upgrade e-Privacy Directive to a Regulation

Life’s a breach – the harsh cost of a data breach for professional services firms

Today We are Launching a new Series of Information Governance Case Studies

EU Council Agrees on Proposed ePrivacy Regulation

UK: Supreme Court judgment in Morrisons – employer not vicariously liable for data breach

CJEU’s Judgment on Validity of EU Standard Contractual Clauses Due July 16, 2020

Security Affairs newsletter Round 222 – News of the week

Why law enforcement data processing is more complicated than you might think

ICO Issues Twelve Step Guidance on Preparing for the EU General Data Protection Regulation

Stay Connected