Compliance and GDPR - Information Management Today

Increased GDPR Enforcement Highlights the Need for Data Security

Security Affairs

NOVEMBER 18, 2024

GDPR protects sensitive data like health and financial details, and its enforcement underscores the growing need for stronger data security measures. GDPR: The landscape of data privacy and protection has never been more critical. What is GDPR and Why Does It Matter?

GDPR

GDPR Security Compliance Data Privacy

How DSPM Helps Businesses Meet Compliance Requirements

Security Affairs

NOVEMBER 27, 2024

Data Security Posture Management (DSPM) helps monitor, secure, and ensure compliance for sensitive data, reducing risks across diverse environments. Compliance Benefits of DSPM Establishing and maintaining compliance with regulatory requirements demands a level of investment and coordination from organizations.

Compliance

Compliance Cloud Data Privacy Risk

Why DSPM is Essential for Achieving Data Privacy in 2024

Security Affairs

OCTOBER 23, 2024

It becomes increasingly difficult to gain complete visibility or transparency that could help security and privacy teams discover sensitive data, identify its security and compliance postures, and mitigate risks. Teams must identify and accurately classify sensitive data to ensure enhanced security, privacy, and compliance posture.

Data Privacy

Data Privacy Privacy GDPR Compliance

Webinars

Maximizing Profit and Productivity: The New Era of AI-Powered Accounting

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Is GDPR Compliance Tougher Than HIPAA Compliance?

Data Breach Today

JANUARY 9, 2019

Analysts: GDPR Case in Portugal Offers Lessons for U.S. Healthcare Entities An EU General Data Protection Regulation enforcement action against a hospital in Portugal demonstrates complying with GDPR may be even tougher than complying with HIPAA. Regulatory experts analyze the implications of the case.

GDPR

GDPR Compliance

A critical flaw in GDPR compliance plugin for WordPress exploited in the wild

Security Affairs

NOVEMBER 12, 2018

A critical security vulnerability affects a GDPR compliance plugin for WordPress has been already exploited in the wild to take control of vulnerable websites. Users warn of cyber attacks exploiting a critical security vulnerability in the WordPress GDPR Compliance plugin for WordPress to take over of websites using it.

GDPR

GDPR Compliance Phishing Access

WhatsApp fined €225M over GDPR issues

Security Affairs

SEPTEMBER 5, 2021

The instant messaging company violated the actual General Data Protection Regulation (GDPR). “The Data Protection Commission (DPC) has today announced a conclusion to a GDPR investigation it conducted into WhatsApp Ireland Ltd. The Irish agency is also asking the company to bring the data sharing in compliance with the GDPR.

GDPR

GDPR Compliance IT Security

GDPR Data Security Checklist in the Age of COVID-19 and the Remote Workforce

Security Affairs

MAY 11, 2020

During COVID-19 outbreak data processors have to be extra vigilant to maintain their compliance with data protection authorities like GDPR. Now the data processors have to be extra vigilant to maintain their compliance with data protection authorities like GDPR. COVID-19 Remote Working – GDPR Data Security Checklist.

GDPR

GDPR Security Compliance Encryption

Irish Data Protection Commission fined LinkedIn €310M for GDPR infringement

Security Affairs

OCTOBER 25, 2024

Irish Data Protection Commission fined LinkedIn €310M after finding its use of behavioral data for targeted ads violated privacy laws, requiring compliance changes. “The decision includes a reprimand, an order for LinkedIn to bring its processing into compliance, and administrative fines totalling €310 million.”

GDPR

GDPR Personal data Compliance Privacy

Hamburg’s data protection agency (DPA) states that using Zoom violates GDPR

Security Affairs

AUGUST 18, 2021

The German state’s data protection agency (DPA) warns that the use of the videoconferencing platform Zoom violates the European Union’s GDPR. The German agency states that the use of Zoom by the public body violated the EU GDPR. The DPA is going to issue a formal warning, under Article 58 (2) (a) of the GDPR.

GDPR

GDPR Privacy Compliance Communications

GDPR Compliance Used as Phishing Lure

Data Breach Today

SEPTEMBER 25, 2020

The campaign enticed victims with subject lines indicating their email security system was not in compliance with the law, according to Area 1 Security. Campaign Designed to Steal Credentials A recently uncovered phishing campaign used the European Union's General Data Protection Regulation as a lure to steal login credentials.

Compliance

Compliance Phishing GDPR Security

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Last Watchdog

DECEMBER 18, 2024

Today, part three of Last Watchdog s year-end roundtable zeroes in on the regulatory and compliance landscape. Srivatsav Ravi Srivatsav , CEO, DataKrypto Non-compliance with regulations, such as the European Unions General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), risks severe penalties.

Compliance

Compliance Cybersecurity Privacy Risk

Cisco Studies Global Impact of GDPR

Data Breach Today

JANUARY 24, 2019

Cisco is out with findings from its 2019 Data Privacy Benchmark Study, which shows the impact of GDPR compliance as well as how customers are asking more questions about how their data is secured. Cisco Chief Privacy Officer Michelle Dennedy analyzes the survey.

GDPR

GDPR Data Privacy Privacy Compliance

Irish Data Protection Commission (DPC) fined Meta €251 million for a 2018 data breach

Security Affairs

DECEMBER 18, 2024

The DPC fined Meta 251M for GDPR violations, citing insufficient breach notifications (8M), poor breach documentation (3M), design flaws (130M), and default data protection failures (110M). Decision 2 Article 25(1) GDPR – By failing to ensure that data protection principles were protected in the design of processing systems.

Data breaches

Data breaches GDPR Personal data Access

DORA Compliance Strategy for Business Leaders

Security Affairs

JUNE 14, 2024

Much like GDPR, this act promises to exert significant influence on the activities of organizations around the world. He suggested that it might be a “tough call for any organization to follow and to reach as a compliance deadline.” Its official launch date of January 17, 2025, means there are some pretty stringent deadlines.

Compliance

Compliance Insurance Risk Cloud

GDPR Two Years On: Compliance Lessons Learned

Data Breach Today

JULY 29, 2020

Attorneys Discuss Gaps That Still Need To Be Addressed Now that it's been two years since enforcement of the European Union's General Data Protection Regulation began, three attorneys - Kelsey Finch, Jonathan Armstrong and David Dumont - reflect on the lessons learned so far and the compliance gaps that still need to be addressed.

Compliance

Compliance GDPR IT

From Risk Assessment to Action: Improving Your DLP Response

Security Affairs

OCTOBER 25, 2024

By doing so, DLP risk assessments ensure compliance with ever-more stringent data protection regulations like GDPR , HIPAA , and PCI DSS. How to Conduct a Comprehensive DLP Risk Assessment Conducting a comprehensive DLP risk assessment requires a considered, planned, and methodical approach.

Risk

Risk Cybersecurity Cloud Compliance

The Irish DPC fined WhatsApp €5.5M for violating GDPR

Security Affairs

JANUARY 21, 2023

by the Irish Data Protection Commission (DPC) for violating the General Data Protection Regulation (GDPR). The DPC has given six months to the Meta-owned company to bring its data processing operations in compliance with the privacy regulation. million (for breaches of the GDPR relating to its service).”

GDPR

GDPR Metadata Encryption Communications

GDPR Compliance: The Role of Vendor Risk Management

Data Breach Today

DECEMBER 4, 2018

Attorney Steven Teppler on Holding Vendors Accountable Why is ramping up vendor risk management such a critical component of compliance with the EU's General Data Protection Regulation? Attorney Steven Teppler provides insights.

Compliance

Compliance Risk GDPR

Facebook's Zuckerberg Pledges Worldwide GDPR Compliance

Data Breach Today

APRIL 11, 2018

Second Congressional Hearing Probes Privacy Issues At a U.S. House hearing Wednesday, Facebook CEO Mark Zuckerberg said the company would eventually comply worldwide with the European Union's tough privacy law, the General Data Protection Regulation.

Compliance

Compliance GDPR Privacy

GDPR: Still Plenty of Lessons to Learn

Data Breach Today

MARCH 7, 2019

RSA Conference Panel: Organizations Worldwide Face Long List of Challenges Nearly 10 months after the beginning of enforcement of the EU's GDPR privacy regulation, organizations around the world are still learning plenty of compliance lessons - including how to locate all personal data so it can be protected, according to regulatory experts on a panel (..)

GDPR

GDPR Personal data Compliance Privacy

GUEST ESSAY: How ‘DPIAs” — data privacy impact assessments — can lead SMBs to compliance

The Last Watchdog

JANUARY 9, 2023

Related: GDPR sets new course for data privacy. Large corporations tend to have the resources to deal with compliance issues. It’s often difficult for small businesses to invest significantly in data privacy compliance or security measures because they don’t have large budgets. Paths to compliance.

Data Privacy

Data Privacy Compliance Privacy GDPR

GDPR Compliance: Should CISO Serve as DPO?

Data Breach Today

FEBRUARY 14, 2020

Sorting Out the Role of the Data Protection Officer As organizations settle into the third year of enforcement of the EU's General Data Protection Regulation, some are struggling to define and understand the role of a data protection officer as required under the regulation - including whether the CISO should take on the extra role of DPO.

Compliance

Compliance GDPR

LinkedIn Fined 310 Million Euros For Privacy Violations

Data Breach Today

OCTOBER 24, 2024

Irish Data Protection Commission Cites Social Platform for GDPR Violations The Irish Data Protection Commission imposed a 310 million euro fine on LinkedIn for violating a European privacy law stemming from the company's use of customer data. It ordered the social media platform to bring its data processing under compliance.

Privacy

Privacy GDPR Compliance IT

Maintaining GDPR and Data Privacy Compliance in 2024

IT Governance

FEBRUARY 16, 2024

For a start, maintaining data privacy and GDPR [General Data Protection Regulation] compliance will become increasingly complex through 2024, particularly for organisations operating across multiple jurisdictions. About that “GDPR-like legislation”, could you please elaborate?

Data Privacy

Data Privacy GDPR Compliance Privacy

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S.

Data Privacy

Data Privacy Compliance Privacy Security

Records of Processing Activities (ROPAs): Simplifying GDPR Compliance

IT Governance

JULY 4, 2024

Expert insight from a data privacy trainer and DPO “Organisations tend to overcomplicate GDPR [General Data Protection Regulation] compliance.” Specifically for GDPR compliance , records of processing activities, also known as ‘ROPAs’, are one compliance activity that tends to be overcomplicated. What is a ROPA?

GDPR

GDPR Compliance Data Privacy Privacy

Breaching the GDPR

Data Protector

SEPTEMBER 13, 2020

Early train from Euston, just a croissant and two teas Didn't get to eat last night Who today will I see pleading on their knees Liz, I had a dreadful fright I've breached the GDPR You don't know how lucky you are, boys Breaching the GDPR Been away so long I barely know the place BC, it's good to be back home Don't make me pack my case Honey disconnect (..)

GDPR

GDPR Compliance Privacy IT

Liechtenstein's Data Regulator Releases AI Chatbot Guidance

Data Breach Today

NOVEMBER 6, 2023

Guidance Cites GDPR Transparency and Consent Clauses The data protection regulator of European country Liechtenstein rolled out new data processing guidance for large language model-powered chatbots such as ChatGPT. The primary legal basis for compliance will be the consent and transparency clauses of the GDPR, the agency said.

GDPR

GDPR Compliance

How to Comply with GDPR, PIPL, and CCPA

eSecurity Planet

DECEMBER 22, 2021

But in order for businesses to maintain compliance with major privacy laws , they have to have security measures in place before an attack. The regulations from GDPR, PIPL, and CCPA are especially prevalent to MSPs and software vendors because they get access to data from so many organizations, but all businesses need to comply with them.

GDPR

GDPR Compliance Data Privacy Personal data

How Automation can help you in Managing Data Privacy

Security Affairs

OCTOBER 20, 2020

According to Aoife Harney , Compliance Manager at AON, “One of the most important aspects of any data protection program is having an in-depth and documented knowledge of the what, the why, the where, the who, and the how.”. Automation: the Future of Compliance.

Data Privacy

Data Privacy Privacy GDPR Compliance

French Ad Tech Firm Fined 40M Euros for GDPR Violations

Data Breach Today

JUNE 22, 2023

French Regulator Fines Criteo for Website Cookie Tracking Tools The top French privacy regulator has imposed a fine of 40 million euros against a Parisian advertising technology company for its use of website tracking cookies and failure to process users' personal data in compliance with privacy laws under the General Data Protection Regulation.

GDPR

GDPR Personal data Privacy Compliance

European Scrutiny of ChatGPT Grows as Probes Increase

Data Breach Today

APRIL 14, 2023

Concerns Raised Over ChatGPT's Compliance With GDPR The French and Spanish data privacy watchdogs have launched separate probes into ChatGPT over potential data privacy violations. European scrutiny of the chatbot mounted after the Italian data protection agency announced a temporary ban on ChatGPT in March.

Data Privacy

Data Privacy GDPR Privacy Compliance

ICO Reprimands UK Home Office for Privacy Violations

Data Breach Today

FEBRUARY 29, 2024

Home Office Electronic Migrant Tracking System Violates UK GDPR, Says ICO A defunct U.K.

Privacy

Privacy GDPR Compliance IT

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. Any company operating in the EU or handling EU residents’ data must adhere to GDPR requirements. However, GDPR compliance is not necessarily a straightforward matter.

GDPR

GDPR Compliance Personal data Privacy

UK ICO Approves the First UK GDPR Certification Scheme Criteria

Hunton Privacy

AUGUST 27, 2021

On August 19, 2021, the UK Information Commissioner’s Office (“ICO”) approved the criteria for three certification schemes, as required under Article 42(5) of the UK General Data Protection Regulation (“UK GDPR”). Certification schemes are one method for organizations to demonstrate compliance with the UK GDPR.

GDPR

GDPR Compliance Personal data Privacy

EU privacy non-profit group filed complaints against TikTok, SHEIN, AliExpress, and other Chinese companies

Security Affairs

JANUARY 17, 2025

noyb filed GDPR complaints against the above companies for unlawfully transferring EU users’ data to China. While some admit these transfers, others list “third countries,” raising concerns about compliance with EU data protection laws. ” reads the announcement published by noyb.

Privacy

Privacy GDPR Compliance Personal data

The Importance of Data Governance and Compliance

IT Governance

JUNE 21, 2022

Data governance and regulatory compliance go hand in hand. For example, the GDPR (General Data Protection Regulation) and its UK equivalent includes specific rules on data integrity and security. Moreover, it provides reassurance for regulatory compliance. The approach throughout is resolutely non?geek, Purchase your copy.

Compliance

Compliance Government GDPR Data breaches

RSAC Fireside Chat: Lacework’s cloud-native security platform delivers useful context

The Last Watchdog

MAY 7, 2024

The unfolding disruption of Generative AI — and rising compliance requirements — add to the mix. This includes automated checks to assure compliance with PCI DSS, HIPAA, GDPR and CIS benchmarks. Thus, cloud-native security tools have risen to the fore.

Cloud

Cloud Security Compliance GDPR

Irish Data Protection Commission fined Meta $414 Million

Security Affairs

JANUARY 5, 2023

. “Final decisions have now been made by the DPC in which it has fined Meta Ireland €210 million (for breaches of the GDPR relating to its Facebook service), and €180 million (for breaches in relation to its Instagram service).” Both complaints were made on the date on which the GDPR came into operation, on 25 May 2018.

GDPR

GDPR Compliance Marketing IT

GDPR Article 28 Contracts: What You Need to Know

IT Governance

JULY 9, 2024

An overlooked GDPR requirement AND a business enabler Andy Snow has trained thousands of people on the GDPR (General Data Protection Regulation). Andy’s explanations show the importance of this overlooked area of GDPR compliance. Contracts aren’t just a GDPR requirement. His response? Perhaps two or three.

GDPR

GDPR Compliance Data Privacy Privacy

Automated Security and Compliance Attracts Venture Investors

eSecurity Planet

FEBRUARY 14, 2023

It was also a drag on the sales cycle, and then there was the need for maintaining compliance. The vision was to automate security and compliance across 14 frameworks, including SOC 2, ISO 27001, HIPAA and GDPR. GRC Market Defies Downturn There are some powerful drivers for the compliance and security automation market.

Compliance

Compliance Security Cybersecurity Marketing

GUEST ESSAY: How stricter data privacy laws have redefined the ‘filing’ of our personal data

The Last Watchdog

NOVEMBER 4, 2021

Related: GDPR and the new privacy paradigm. Europe’s General Data Protection Regulations (GDPR) changed the game. Legacy filing systems were not built to keep track of the personal data of specific individuals primarily to be in compliance with the many data protection regulations popping up around the world. billion by 2027.

Personal data

Personal data Privacy Data Privacy Unstructured data

What Amazon’s €746 million GDPR fine means for the future of data protection regulation

IT Governance

AUGUST 12, 2021

Last month, Amazon was hit with a €746 million (about £630 million) fine for violating the GDPR (General Data Protection Regulation) – an astronomical figure by data protection regulation, or indeed most, standards. It is by far the biggest fine issued under the GDPR, surpassing the €50 million penalty that Google received in 2019.

GDPR

GDPR Data breaches Compliance Privacy

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

The Last Watchdog

NOVEMBER 12, 2024

The compliance variable has come into play in an impactful way. We have the benefit of learning from GDPR in Europe as well as other flavors of privacy laws in Canada, Utah, Virginia and other jurisdictions. Over a decade, the SEC’s enforcement has not improved cybersecurity outcomes but has burdened firms with compliance.

Cybersecurity

Cybersecurity Risk Government Compliance

Increased GDPR Enforcement Highlights the Need for Data Security

How DSPM Helps Businesses Meet Compliance Requirements

Webinars

Trending Sources

Why DSPM is Essential for Achieving Data Privacy in 2024

Webinars

Is GDPR Compliance Tougher Than HIPAA Compliance?

A critical flaw in GDPR compliance plugin for WordPress exploited in the wild

WhatsApp fined €225M over GDPR issues

GDPR Data Security Checklist in the Age of COVID-19 and the Remote Workforce

Irish Data Protection Commission fined LinkedIn €310M for GDPR infringement

Hamburg’s data protection agency (DPA) states that using Zoom violates GDPR

GDPR Compliance Used as Phishing Lure

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

Cisco Studies Global Impact of GDPR

Irish Data Protection Commission (DPC) fined Meta €251 million for a 2018 data breach

DORA Compliance Strategy for Business Leaders

GDPR Two Years On: Compliance Lessons Learned

From Risk Assessment to Action: Improving Your DLP Response

The Irish DPC fined WhatsApp €5.5M for violating GDPR

GDPR Compliance: The Role of Vendor Risk Management

Facebook's Zuckerberg Pledges Worldwide GDPR Compliance

GDPR: Still Plenty of Lessons to Learn

GUEST ESSAY: How ‘DPIAs” — data privacy impact assessments — can lead SMBs to compliance

GDPR Compliance: Should CISO Serve as DPO?

LinkedIn Fined 310 Million Euros For Privacy Violations

Maintaining GDPR and Data Privacy Compliance in 2024

Security Compliance & Data Privacy Regulations

Records of Processing Activities (ROPAs): Simplifying GDPR Compliance

Breaching the GDPR

Liechtenstein's Data Regulator Releases AI Chatbot Guidance

How to Comply with GDPR, PIPL, and CCPA

How Automation can help you in Managing Data Privacy

French Ad Tech Firm Fined 40M Euros for GDPR Violations

European Scrutiny of ChatGPT Grows as Probes Increase

ICO Reprimands UK Home Office for Privacy Violations

GDPR compliance checklist

UK ICO Approves the First UK GDPR Certification Scheme Criteria

EU privacy non-profit group filed complaints against TikTok, SHEIN, AliExpress, and other Chinese companies

The Importance of Data Governance and Compliance

RSAC Fireside Chat: Lacework’s cloud-native security platform delivers useful context

Irish Data Protection Commission fined Meta $414 Million

GDPR Article 28 Contracts: What You Need to Know

Automated Security and Compliance Attracts Venture Investors

GUEST ESSAY: How stricter data privacy laws have redefined the ‘filing’ of our personal data

What Amazon’s €746 million GDPR fine means for the future of data protection regulation

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

Stay Connected