2016, GDPR and Security - Information Management Today

Maintaining GDPR and Data Privacy Compliance in 2024

IT Governance

FEBRUARY 16, 2024

Expert tips from Alan Calder Alan is the Group CEO of GRC International Group PLC, the parent company of IT Governance, and is an acknowledged international security guru. In addition, 14 US states now have their own data privacy laws, and GDPR-like legislation has proliferated across the world.

Data Privacy

Data Privacy GDPR Compliance Privacy

Marriott Faces $125 Million GDPR Fine Over Mega-Breach

Data Breach Today

JULY 9, 2019

Breach Persisted 4 Years - and Through Acquisition - Before Being Discovered Britain's privacy watchdog says it plans to fine hotel giant Marriott $125 million under GDPR for security failures tied to a 2014 breach of the guest reservation database for Starwood, which Marriott acquired in 2016.

GDPR

GDPR Privacy Security IT

Security Affairs Newsletter is back!

Security Affairs

DECEMBER 13, 2020

Security Affairs newsletter is back, it is the right time to subscribe to it. Every day I receive several emails asking me to resume the Security Affairs newsletter, for this reason, I decided to open it again for the first 2000 users. GDPR disclaimer. The post Security Affairs Newsletter is back! indicates required.

Security

Security GDPR Privacy Marketing

Webinars

Improving the Accuracy of Generative AI Systems: A Structured Approach

MORE WEBINARS

Italian Garante Fines Bank 600,000 Euros for Pre-GDPR Data Breach

Hunton Privacy

JULY 1, 2020

The Italian Data Protection Authority ( Garante per la protezione dei dati personali , “Garante”) recently announced that it levied a €600,000 fine on banking institution UniCredit for several violations of the Italian Personal Data Protection Code, in its pre-General Data Protection Regulation (“GDPR”) form.

Data breaches

Data breaches GDPR Personal data Education

5 Cyber Security and ISO 27001 Myths

IT Governance

AUGUST 1, 2024

If you don’t invest in cyber security or staff training, accidental breaches pose a far bigger threat than technically skilled hackers. What are some other common cyber security myths or misconceptions? And what about misconceptions around ISO 27001 , the international standard for information security management?

Security

Security Information Security GDPR Risk

Uber Guilty Verdict Raises Security Stakes for CSOs

eSecurity Planet

OCTOBER 7, 2022

In a case that ups the stakes for CSOs dealing with data breaches, former Uber chief security officer Joe Sullivan was found guilty by a federal jury earlier this week of obstructing justice and of misprision (concealing) of a felony in connection with his coverup of a 2016 breach. United States Attorney Stephanie M.

Security

Security Data breaches Compliance Cybersecurity

The Compliance Mandate is Real as GDPR Enforcement Accelerates

Everteam

JULY 10, 2019

Since its implementation in May of 2018, GDPR has been the subject of much discussion but little concrete action by many companies on both sides of the Atlantic. The threat posed by GDPR-driven fines has until recently seemed a vague one for many companies — applicable only to IT giants like Facebook, Google, and Microsoft.

GDPR

GDPR Compliance Unstructured data Data Privacy

Belgian Privacy Commission Releases 2016 Annual Activity Report

Hunton Privacy

MAY 31, 2017

On May 26, 2017, the Belgian Privacy Commission (the “Belgian DPA”) published its Annual Activity Report for 2016 (the “Annual Report”) highlighting its main accomplishments from the past year. In 2016, the Belgian DPA focused on the following topics: EU General Data Protection Regulation (“GDPR”). Cloud computing. Social fraud.

Privacy

Privacy GDPR Cloud Personal data

Another UK ICO GDPR Privacy Fine of £99m ($123m) Proposed Just One Day After the Largest Ever

Data Matters

JULY 17, 2019

The statement came in response to Marriott’s filing with the US Securities and Exchange Commission that the ICO intended to fine it for breaches of the GDPR. Marriott subsequently acquired Starwood in 2016 but the compromise was not discovered until 2018 when it was subsequently reported to the ICO.

GDPR

GDPR Privacy Personal data Security

Cyber Security in Banking: Threats, Solutions & Best Practices

eSecurity Planet

SEPTEMBER 13, 2024

Cyber security in banking has become the frontline defense against an ever-growing wave of digital threats. In this article, we’ll dive into the most pressing cyber security concerns and explore the best practices and solutions that are shaping the future of secure banking.

Security

Security Phishing Encryption Access

Doorstep Dispensaree becomes the first UK organisation to receive a GDPR fine

IT Governance

DECEMBER 24, 2019

Doorstep Dispensaree has been fined £275,000 for failing to comply with the GDPR (General Data Protection Regulation) , making it the first organisation in the UK to be penalised for breaching its requirements. Haven’t there already been GDPR fines in the UK? What went wrong? Doorstep Dispensaree failed to do this in two ways.

GDPR

GDPR Personal data Government Access

Computer Security and Data Privacy, the perfect alliance

Security Affairs

NOVEMBER 23, 2020

Computer security and data privacy are often poorly considered issues, experts urge more awareness of cyber threats. Computer security and data privacy are often poorly considered issues until incidents occur and unfortunately sometimes even the very seriousness of the events, understood as virtual happenings, is not adequately perceived.

Data Privacy

Data Privacy Privacy Security Security awareness

DCMS Cyber Security Breaches Survey 2021 highlights more still to be done by the majority of businesses

DLA Piper Privacy Matters

MAY 5, 2021

The Department for Culture Media and Sport recently published its annual Cyber Security Breaches Survey (the “Survey” ), which aims to capture trends in cyber security incidents and provides a snapshot of the approach of UK businesses to the risks of an incident and the types of incidents seen in the previous 12 months.

Security

Security Personal data GDPR Privacy

Germany: Bonn Regional Court overrules GDPR Fining Guidelines by German Data Protection Authorities

DLA Piper Privacy Matters

NOVEMBER 24, 2020

Background: How to calculate GDPR fines? How to properly calculate administrative fines for non-compliance with the EU General Data Protection Regulation (‘ GDPR ’) is one of the most important questions when applying the GDPR on practical level, e.g. : What is actually meant by the reference to “undertaking” in Article 83 (4) to (6) GDPR?

GDPR

GDPR Authentication Compliance Personal data

ICO Fines Marriott International £18.4 Million for Security Breach

Hunton Privacy

OCTOBER 30, 2020

million) issued to Marriott International, Inc., (“Marriott”) for violations of the EU General Data Protection Regulation (“GDPR”). The ICO’s fine only relates to the breach from the point at which the GDPR came into force in May 2018, and is the second largest fine levied by the ICO thus far under the GDPR. approximately $23.9

Security

Security GDPR Personal data Data breaches

GDPR – The Work Ahead

HL Chronicle of Data Protection

MAY 9, 2019

A year has gone by since the General Data Protection Regulation (Regulation (EU) 2016/679) (‘GDPR’) became effective and the digital economy is still going and growing. The effect of the GDPR has been noticeable, but in a subtle sort of way. So what are the important areas of focus to achieve GDPR compliance?

GDPR

GDPR Compliance Privacy Personal data

Weekly podcast: the GDPR is here

IT Governance

MAY 25, 2018

Hello and welcome to the IT Governance podcast for Friday, 25 May 2018, the day the EU’s General Data Protection Regulation (the GDPR) – the first major update to European data protection law in more than 20 years – applies across Europe and around the world. The General Data Protection Regulation is now in force. Don’t panic.

GDPR

GDPR Compliance Personal data Government

CIPL and AvePoint Release Second Global GDPR Readiness Report

Hunton Privacy

MARCH 27, 2018

On March 26, 2018, the Centre for Information Policy Leadership at Hunton & Williams LLP and AvePoint released its second Global GDPR Readiness Report (the “Report”), detailing the results of a joint global survey launched in July 2017 concerning organizational preparedness for implementing the EU General Data Protection Regulation (“GDPR”).

GDPR

GDPR Data breaches Privacy Risk

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing

Thales Cloud Protection & Licensing

DECEMBER 22, 2020

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing. In recent years, costly breaches and evolving data security concerns have bubbled up to a board level agenda item. Data privacy is not a check-the-box compliance or security item. The problem is not limited to the requirements of GDPR.

Data Privacy

Data Privacy Privacy Security Encryption

10 Best CASB Security Vendors of 2022

eSecurity Planet

DECEMBER 17, 2021

Any cloud-based infrastructure needs a robust cloud access security broker (CASB) solution to ensure data and application security and integrity. . Cloud access security brokers are increasingly a critical component of the Secure Access Service Edge (SASE) as edge and cloud security become the newest pain points.

Security

Security Cloud Risk Access

U.S. Government White Paper to Help Companies Address the EU’s National Security Concerns in Schrems II

Data Matters

SEPTEMBER 30, 2020

national security law did not provide equivalent privacy protections to those available in the EU. national security law protects EU personal data. Given the detail set forth in the Paper, and the CJEU’s silence regarding any actual comparison of the relative national security safeguards of the U.S. agencies is compelling.

Paper

Paper Government Security Privacy

Guest Post -- New Global Data and Privacy Regulations in 2018 and the GDPR

AIIM

NOVEMBER 2, 2017

In December of 2015 an agreement was reached, leading to the adoption of General Data Protection Regulation (GDPR) in April 2016. First, it should be noted that GDPR does not apply only to companies located within the EU. Organizations that fail to comply with GDPR risk potentially massive penalties. Who does it affect?

GDPR

GDPR Privacy Compliance Information architecture

CNIL Launches New Public Consultation on the GDPR

Hunton Privacy

FEBRUARY 28, 2017

On February 23, 2017, the French Data Protection Authority (“CNIL”) launched an online public consultation on three topics identified by the Article 29 Working Party (“Working Party”) in its 2017 action plan for the implementation of the EU General Data Protection Regulation (“GDPR”). The new consultation will be open through March 23, 2017.

GDPR

GDPR Data breaches IT Information Security

Complete Our GDPR Readiness Survey

Hunton Privacy

JUNE 27, 2016

With the EU General Data Protection Regulation (“GDPR”) enacted and due to come into force in May 2018, the Centre for Information Policy Leadership at Hunton & Williams and AvePoint have launched a global survey to enable organizations to benchmark their readiness for the GDPR. Please complete the survey by July 8, 2016.

GDPR

GDPR Privacy Compliance Information Security

Key lessons from the first major GDPR fines for cyber breaches

Privacy and Cybersecurity Law

JANUARY 18, 2021

The first headlines on the future threat of “mega fines” under the EU General Data Protection Regulation (GDPR) appeared as far back as 2016, when the text of the GDPR was first adopted by the European Parliament. The decisions are lengthy but, as the first GDPR fines for cybersecurity breaches, they are seminal.

GDPR

GDPR Cybersecurity Data breaches Risk

Privacy and security in the software designing

Security Affairs

APRIL 22, 2021

The importance of carrying out a careful risk and impact assessment in order to safeguard the security of the information and the data privacy. Therefore, it’s essential to carry out a careful risk and impact assessment in order to safeguard the security of the information and the data privacy.

Privacy

Privacy Security Data Privacy Risk

Weekly podcast: Metro Bank, Student Loans Company, GDPR breaches and seals

IT Governance

FEBRUARY 7, 2019

This week, we discuss the compromise of Metro Bank’s two-factor authentication system, nearly one million cyber attacks on the Student Loans Company, nearly 60,000 GDPR breaches and a surprising discovery for some marine biologists. Here are this week’s stories.

GDPR

GDPR Data breaches Authentication Compliance

UK ICO fines hotel chain giant Marriott over data breach

Security Affairs

NOVEMBER 2, 2020

. “The ICO has fined Marriott International Inc £18.4million for failing to keep millions of customers’ personal data secure.” ” In July 2019, the UK’s data privacy regulator announced that the giant hotel chain Marriott International faces a £99 million ($123 million) fines under GDPR over 2014 data breach. .”

Data breaches

Data breaches Personal data GDPR Encryption

European Data Protection Supervisor Publishes Priorities for 2016

Hunton Privacy

JANUARY 12, 2016

On January 7, 2016, the European Data Protection Supervisor (the “EDPS”) published his Priorities for 2016. The EDPS Priorities consists of a cover note listing the strategic priorities of the EDPS in 2016 and a color-coded table listing the European Commission’s proposals that require the EDPS’ attention, per level of priority.

Personal data

Personal data GDPR Privacy Communications

New CNIL €400,000 fine for data security breaches and non-compliance with data retention period under the GDPR

Data Protection Report

JULY 8, 2019

The issue giving rise to the financial penalty was a security breach relating to the company’s website notified by a user to the CNIL on 12 August 2018. According to SERGIC, the website’s security breach could have impacted around 29,440 users.

GDPR

GDPR Personal data Compliance Security

CIPL and AvePoint Launch Survey to Benchmark Global Readiness for the EU GDPR

Hunton Privacy

APRIL 19, 2016

The survey focuses on key issues of the GDPR, including: consent; age of consent for children; legitimate interest; data portability; profiling; privacy impact assessments; privacy by design; data protection officers; data breach reporting; and. onwards transfer of data. onwards transfer of data.

GDPR

GDPR Compliance Privacy Data breaches

4 cyber security predictions for 2018

IT Governance

NOVEMBER 15, 2017

Healthcare surpassed the public sector in cyber security incident reports in the second quarter of 2017, according to the latest threat report by security company McAfee. Ian McClarty, president of PhoenixNAP Global IT Services, said: “Because there are so many devices that can be hacked, it is a constant security challenge.”.

Security

Security GDPR Passwords Compliance

Addressing Remote Desktop Attacks and Security

eSecurity Planet

MARCH 25, 2022

This article looks at the remote desktop protocol, how RDP attacks work, best practices for defense, the prevalence of RDP attacks today, and how remote desktop software vendors are securing their clients. Also read : Best Internet Security Suites & Software. Table of Contents. What is the Remote Desktop Protocol (RDP)?

Security

Security Access Authentication Encryption

CIPL and AvePoint Release Global GDPR Readiness Report

Hunton Privacy

NOVEMBER 10, 2016

On November 9, 2016, the Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP and AvePoint released the results of a joint global survey launched in May 2016 concerning organizational preparedness for implementing the EU General Data Protection Regulation (“GDPR”).

GDPR

GDPR Data Privacy Compliance Privacy

CIPL and its GDPR Project Stakeholders Discuss DPOs and Risk under GDPR

Hunton Privacy

OCTOBER 5, 2016

In September, the Centre for Information Policy Leadership (“CIPL”) held its second GDPR Workshop in Paris as part of its two-year GDPR Implementation Project. Since the inaugural workshop in March 2016 in Amsterdam, participation in the project has grown significantly. Forthcoming Working Party GDPR Guidance.

GDPR

GDPR Risk IT Compliance

What it Takes to Be Your Organisation’s DPO or Data Privacy Lead

IT Governance

DECEMBER 6, 2023

‘GDPR’ has become a familiar term. What’s not so evident is whether organisations are keeping their practices fully up to date and in line with the GDPR. What’s not so evident is whether organisations are keeping their practices fully up to date and in line with the GDPR. But compliance requires clarity.

Data Privacy

Data Privacy Privacy GDPR IT

CNIL Launches Public Consultation on Transparency and International Data Transfers under the GDPR

Hunton Privacy

SEPTEMBER 22, 2017

On September 19, 2017, the French Data Protection Authority (“CNIL”) launched an online public consultation on two topics identified by the Article 29 Working Party (“Working Party”) in its 2017 action plan for the implementation of the EU General Data Protection Regulation (“GDPR”).

GDPR

GDPR Data breaches IT Security

DataGuidance by OneTrust Speak to William Long About Data Protection Issues in the Financial Sector

Data Matters

MAY 14, 2019

William Long, partner and global co-leader of at Sidley’s Privacy and Cybersecurity practice, and has been working on global data privacy and information security matters for a number of years. Read the Full Interview.

Financial Services

Financial Services GDPR Big data Data Privacy

GDPR Italian Implementing Decree Has Been Published

HL Chronicle of Data Protection

SEPTEMBER 14, 2018

101 of 10 August 2018 (the “Decree”) for the national implementation of General Data Protection Regulation (EU) 2016/679 (the “GDPR”) has been published in the Official Journal. Below, a brief summary of the most relevant provisions: PROVISIONS WHICH INTEGRATE THE GDPR.

GDPR

GDPR Personal data Privacy Communications

Data breaches grow across UK education sector

IT Governance

NOVEMBER 29, 2018

The high-profile GDPR (General Data Protection Regulation) mandates data breach reporting in many cases, and a lot of incidents have been reported since the Regulation came into force, but the numbers shared by the ICO (Information Commissioner’s Office) reveal a growing trend even before then. The highest number of breaches in 2016-17.

Education

Education Data breaches GDPR Government

FINLAND: Parliament has (finally) passed the new national GDPR implementation act

DLA Piper Privacy Matters

NOVEMBER 23, 2018

the jurisdiction of the Finnish Data Protection Ombudsman in imposing administrative sanctions, the relevant target groups subject to administrative and criminal sanctions, as well as on the choices relating to the specific processing situations under GDPR chapter IX.

GDPR

GDPR Personal data Privacy Access

Why big companies ignore SAP security patches ? and how that could bite them, big time

The Last Watchdog

JUNE 14, 2018

Vulnerability researchers, ranging from penetration testers to threat actors, continually seek out fresh security flaws which SAP subsequently issues patches for. In 2016 the U.S. Here are excerpts edited for clarity and length: LW: It has only been fairly recently that SAP security flaws have come to come into the spotlight.

Security

Security Compliance Access Data breaches

Article 29 Working Party Issues Results of Fablab Workshop on the GDPR

Hunton Privacy

OCTOBER 20, 2016

On October 7, 2016, the Article 29 Working Party (the “Working Party”) published a summary of the discussions that took place at its “Fablab” workshop entitled GDPR/from concepts to operational toolbox, DIY , which took place on July 26, 2016, in Brussels. Data Portability. Certification.

GDPR

GDPR Personal data Privacy Risk

Belgian Privacy Commission Issues Priorities and Thematic Dossier to Prepare for GDPR

Hunton Privacy

SEPTEMBER 21, 2016

On September 16, 2016, the Belgian Data Protection Authority (the “Privacy Commission”) published a 13-step guidance document (in French and Dutch ) to help organizations prepare for the EU General Data Protection Regulation (“GDPR”). Review existing privacy notices and update them to comply with the GDPR. Internal Records.

GDPR

GDPR Privacy Personal data Data breaches

Maintaining GDPR and Data Privacy Compliance in 2024

Marriott Faces $125 Million GDPR Fine Over Mega-Breach

Webinars

Trending Sources

Security Affairs Newsletter is back!

Webinars

Italian Garante Fines Bank 600,000 Euros for Pre-GDPR Data Breach

5 Cyber Security and ISO 27001 Myths

Uber Guilty Verdict Raises Security Stakes for CSOs

The Compliance Mandate is Real as GDPR Enforcement Accelerates

Belgian Privacy Commission Releases 2016 Annual Activity Report

Another UK ICO GDPR Privacy Fine of £99m ($123m) Proposed Just One Day After the Largest Ever

Cyber Security in Banking: Threats, Solutions & Best Practices

Doorstep Dispensaree becomes the first UK organisation to receive a GDPR fine

Computer Security and Data Privacy, the perfect alliance

DCMS Cyber Security Breaches Survey 2021 highlights more still to be done by the majority of businesses

Germany: Bonn Regional Court overrules GDPR Fining Guidelines by German Data Protection Authorities

ICO Fines Marriott International £18.4 Million for Security Breach

GDPR – The Work Ahead

Weekly podcast: the GDPR is here

CIPL and AvePoint Release Second Global GDPR Readiness Report

Cross-Border Data Privacy and Security Concerns in the Dawn of Quantum Computing

10 Best CASB Security Vendors of 2022

U.S. Government White Paper to Help Companies Address the EU’s National Security Concerns in Schrems II

Guest Post -- New Global Data and Privacy Regulations in 2018 and the GDPR

CNIL Launches New Public Consultation on the GDPR

Complete Our GDPR Readiness Survey

Key lessons from the first major GDPR fines for cyber breaches

Privacy and security in the software designing

Weekly podcast: Metro Bank, Student Loans Company, GDPR breaches and seals

UK ICO fines hotel chain giant Marriott over data breach

European Data Protection Supervisor Publishes Priorities for 2016

New CNIL €400,000 fine for data security breaches and non-compliance with data retention period under the GDPR

CIPL and AvePoint Launch Survey to Benchmark Global Readiness for the EU GDPR

4 cyber security predictions for 2018

Addressing Remote Desktop Attacks and Security

CIPL and AvePoint Release Global GDPR Readiness Report

CIPL and its GDPR Project Stakeholders Discuss DPOs and Risk under GDPR

What it Takes to Be Your Organisation’s DPO or Data Privacy Lead

CNIL Launches Public Consultation on Transparency and International Data Transfers under the GDPR

DataGuidance by OneTrust Speak to William Long About Data Protection Issues in the Financial Sector

GDPR Italian Implementing Decree Has Been Published

Data breaches grow across UK education sector

FINLAND: Parliament has (finally) passed the new national GDPR implementation act

Why big companies ignore SAP security patches ? and how that could bite them, big time

Article 29 Working Party Issues Results of Fablab Workshop on the GDPR

Belgian Privacy Commission Issues Priorities and Thematic Dossier to Prepare for GDPR

Stay Connected