DLA Piper Privacy Matters

SEPTEMBER 6, 2023

While there are similarities with EU/UK GDPR – and sufficient harmonisation with data protection laws across APAC to continue a regional data compliance in Asia – the practicalities of implementation and compliance should not be underestimated. data subjects, using the GDPR terminology) located within India.

Personal data 111

Personal data GDPR Data breaches Compliance 111

Hunton Privacy

AUGUST 22, 2023

reports that in early August 2023, the Indian Parliament passed the Digital Personal Data Protection Act (the “Act”), bringing to a close a 5-year process to enact an omnibus data privacy law in India. Grounds for Collection and Processing Consent continues to be the primary legal ground for the processing of personal data.

Personal data 90

Personal data Data breaches GDPR Government 90

IT Governance

FEBRUARY 16, 2024

Expert tips from Alan Calder Alan is the Group CEO of GRC International Group PLC, the parent company of IT Governance, and is an acknowledged international security guru. In addition, 14 US states now have their own data privacy laws, and GDPR-like legislation has proliferated across the world.

Data Privacy 108

Data Privacy GDPR Compliance Privacy 108

IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. Any company operating in the EU or handling EU residents’ data must adhere to GDPR requirements. However, GDPR compliance is not necessarily a straightforward matter.

GDPR 79

GDPR Compliance Personal data Privacy 79

IT Governance

SEPTEMBER 17, 2024

How to reduce your PCI DSS scope and CDE The PCI DSS (Payment Card Industry Data Security Standard) – now at v4.0.1 – can appear intimidating, at 360 pages, listing 277 prescriptive sub-requirements. Let’s look at eight ways you can reduce your CDE (cardholder data environment) to reduce your PCI scope.

Compliance 95

Compliance Encryption e-Discovery Access 95

Hunton Privacy

NOVEMBER 8, 2022

SHIFT Counsellors at Law reports from Indonesia that The People’s Representative Council of the Republic of Indonesia has ratified Indonesia’s draft law on personal data protection. The law, which is partly modeled on the EU General Data Protection Regulation, is Indonesia’s first “umbrella regulation” on personal data protection.

Personal data 134

Personal data GDPR Compliance Information Security 134

IT Governance

JULY 4, 2024

Expert insight from a data privacy trainer and DPO “Organisations tend to overcomplicate GDPR [General Data Protection Regulation] compliance.” Specifically for GDPR compliance , records of processing activities, also known as ‘ROPAs’, are one compliance activity that tends to be overcomplicated. What is a ROPA?

GDPR 93

GDPR Compliance Data Privacy Privacy 93

Thales Cloud Protection & Licensing

MAY 22, 2024

The regulation didn't just introduce new rules—it upended the entire approach to data privacy. Designed to safeguard the personal data of EU citizens, it introduced a paradigm shift towards a privacy-first approach. Digital enterprises found themselves compelled to adapt and navigate a new standard of data handling.

GDPR 62

GDPR Compliance Privacy Personal data 62

Data Protection Report

APRIL 30, 2024

The claims related to the company’s sharing personal data without consumer consent and making it very difficult for consumers to cancel their subscriptions to this telehealth service. The order also, in Section IX, set forth data destruction requirements and a data retention policy.

Personal data 85

Personal data Privacy Information governance Compliance 85

Data Protection Report

FEBRUARY 28, 2020

The Personal Data Protection Act B.E. However, most of the operational provisions, including provisions relating to the rights of a data subject, the obligations of a data controller and the penalties for non-compliance, will become effective on 27 May 2020, 1 year after the PDPA is published. Background.

Personal data 93

Personal data Compliance Privacy Access 93

DLA Piper Privacy Matters

MAY 23, 2023

Vietnam’s long-awaited, first-ever Personal Data Protection Decree (“ PDPD ”) has finally been passed and is scheduled to take effect from 1 July 2023 (save limited grace period exceptions). The most notable provisions of the PDPD relate to the compliance requirements in general processing and cross-border transfers of personal data.

Personal data 52

Personal data Compliance Data Privacy Data breaches 52

DLA Piper Privacy Matters

NOVEMBER 16, 2021

The draft Network Data Security Management Regulation (“ Draft Regulation ”) was published for consultation on 14 November 2021, and is very wide-ranging in the compliance areas covered.

Compliance 118

Compliance Personal data Security Risk 118

IT Governance

AUGUST 8, 2024

Similarly, few people enjoy complex compliance, with documentation scattered in many places, giving you a headache when anything GDPR (General Data Protection Regulation) crops up. That needn’t even be an investigation or audit – a data subject simply exercising their rights might already cause problems.

GDPR 52

GDPR Compliance Personal data Risk 52

DLA Piper Privacy Matters

APRIL 11, 2022

Given these higher financial penalties, organisations collecting, using or disclosing personal data in Singapore are recommended to carefully review their existing data protection programmes and processes to ensure compliance with the PDPA. of personal data); and. of personal data); and.

Personal data 97

Personal data Compliance Cybersecurity Government 97

Thales Cloud Protection & Licensing

FEBRUARY 1, 2023

How to Address the Requirements of Personal Data Protection (PDP) Law of Indonesia divya Thu, 02/02/2023 - 06:35 In response to the increased number of attacks targeting the personal data of millions of Indonesian citizens, the government passed the first Personal Data Protection (PDP) Law in 2022.

Personal data 71

Personal data Encryption Data breaches Authentication 71

IT Governance

OCTOBER 3, 2024

In this blog Security challenges of the Cloud Legal and contractual requirements Who’s responsible for what? Further reading: Senior penetration tester Leon Teale gives his top security tips for remote working in this interview. Think you understand Cloud security? However, innovation comes with risk.

Cloud 103

Cloud Risk Security GDPR 103

IT Governance

NOVEMBER 17, 2020

Under the GDPR (General Data Protection Regulation) , all personal data breaches must be recorded by the organisation and there should be a clear and defined process for doing so. In this blog, we take a look at the scenarios in which data protection breaches in schools must be reported. When must breaches be reported?

Personal data 105

Personal data Data breaches Data collection GDPR 105

DLA Piper Privacy Matters

FEBRUARY 17, 2021

Securities and Exchange Commission (“ SEC ”) confirming that SEC-regulated UK domiciled firms (“ UK Regulated Firms ”) can share personal data with the SEC when seeking to comply with regulatory obligations, in compliance with the UK GDPR. As the GDPR places restrictions on the transfer of personal data to the U.S.,

Personal data 98

Personal data GDPR Security Compliance 98

Data Protection Report

JUNE 26, 2023

The Guidance sits alongside the ICO’s recommendation that organisations should, if they haven’t already, start using PETs to share personal data safely, securely and anonymously. It focuses on how PETs can help achieve data protection compliance but keeps the description of the PETs themselves quite high level.

Personal data 52

Personal data Privacy Security Compliance 52

Data Matters

SEPTEMBER 23, 2021

If a company has already been GDPR compliant, its data privacy compliance system can basically work in China, while certain localizations are necessary in response to unique requirements under PIPL. In particular, a company should pay attention to the following differences between PIPL and GDPR: Data localization.

Data Privacy 94

Data Privacy Compliance Privacy Personal data 94

DLA Piper Privacy Matters

AUGUST 22, 2023

The Draft Measures propose to introduce or flesh out other compliance requirements contained in the PIPL. This will, therefore, require more in-depth privacy notices than businesses may be used to providing in China. All these indicate that DPO should be a relatively senior position within an organization.

Compliance 98

Compliance Personal data Privacy Government 98

IT Governance

MAY 25, 2023

Given the scale and nature of its operations, Meta is obviously something of a special case, but the wider implications for personal data transfers from the EU to the US are clear: this case is surely going to be another nail in the coffin of the new EU-US DPF (Data Privacy Framework).

GDPR 89

GDPR Compliance Personal data Data Privacy 89

Thales Cloud Protection & Licensing

JULY 28, 2021

Why agnostic access security is critical for compliance in the post Schrems II landscape. The Schrems II ruling has changed the data protection landscape and introduced new security requirements for the companies wishing to do business with the European Union (EU). Wed, 07/28/2021 - 07:38.

Compliance 77

Compliance Access Security Cloud 77

Thales Cloud Protection & Licensing

FEBRUARY 18, 2021

Key steps on the road to LGPD compliance. Brazil, the largest country in both South America and Latin America, released a data privacy law bringing new business opportunities, especially in the international domain. Reporting: demonstrates compliance and facilitates the administrative procedures required by LGPD (Article 50).

Compliance 98

Compliance Unstructured data Personal data Big data 98

Hunton Privacy

APRIL 12, 2021

On April 8, 2021, the Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth submitted comments in response to the Ministry of Public Security (“MPS”) of Vietnam’s Draft Decree on Personal Data Protection (“Draft Decree”). Read CIPL’s full comments in English and in Vietnamese.

Personal data 87

Personal data Privacy Data breaches Compliance 87

eSecurity Planet

SEPTEMBER 23, 2024

Cloud security controls are methods and protocols to protect cloud environments’ data, applications, and infrastructure. They enforce security measures to prevent threats and unauthorized access. Deterrent controls help to create a more secure cloud environment by making it less inviting to potential attackers.

Cloud 106

Cloud Security Compliance Risk 106

Thales Cloud Protection & Licensing

FEBRUARY 2, 2022

How Microsoft and Thales Offer Enhanced Security and Compliance for Microsoft Office 365. Our discussion covered topics like customer concerns and expectations, data sensitivity, regulatory compliance, and fully integrated security through DKE and Luna Key Broker. CSP foreign government compliance obligations.

Compliance 71

Compliance Security Encryption Cloud 71

Hunton Privacy

AUGUST 10, 2023

On August 9, 2023, India’s upper house ( i.e. , Rajya Sabha) passed the Digital Personal Data Protection Bill (“DPDPB”), two days after India’s lower house ( i.e. , Lok Sabha) passed the legislation. The DPDPB now heads to India President Droupadi Murmu for signature.

Personal data 52

Personal data Data breaches Government Access 52

Thales Cloud Protection & Licensing

MARCH 1, 2018

Around the world, enterprises are anxious about May 25, 2018, the day enforcement begins for the European Union’s General Data Protection Regulation (GDPR). My purpose here is to provide guidance on how enterprises that are using, or are planning to deploy, container technology can ensure these are secured for compliance.

GDPR 82

GDPR Compliance Security Encryption 82

Security Affairs

OCTOBER 25, 2024

Irish Data Protection Commission fined LinkedIn €310M after finding its use of behavioral data for targeted ads violated privacy laws, requiring compliance changes. The DPC’s inquiry was launched following an initial complaint to the French Data Protection Authority. ” reads the DPC’s announcement.

GDPR 113

GDPR Personal data Compliance Privacy 113

Thales Cloud Protection & Licensing

JUNE 24, 2021

How FIDO 2 authentication can help achieve regulatory compliance. Businesses are governed by an increasingly complex network of regulations, jurisdictions, and standards which dictate security and privacy requirements. As such, FIDO2 can become an enabler for regulatory compliance. Compliance with GDPR and CCPA.

Authentication 71

Authentication Compliance Personal data GDPR 71

Thales Cloud Protection & Licensing

NOVEMBER 5, 2024

Holiday Shopping Readiness: How is Retail Data Security Holding Up? Retailers have been prepping for this season all year and are ready to provide a safe, secure, and seamless customer shopping experience. This includes requirements for secure processing, storage, and transmission of cardholder data.

Retail 62

Retail Security Data breaches Compliance 62

Thales Cloud Protection & Licensing

AUGUST 30, 2023

The bright side of data privacy compliance: 5 value-driven opportunities for retailers madhav Thu, 08/31/2023 - 05:20 Failing to keep up with data privacy legislations, such as General Data Protection Regulation (GDPR) or the California Consumer Privacy Act (CCPA) can harm a brand’s bottom-line and public reputation.

Retail 71

Retail Data Privacy Compliance Privacy 71

DLA Piper Privacy Matters

AUGUST 7, 2020

Thailand’s Personal Data Protection Act (“ PDPA “) is in the process of being updated, and full implementation and compliance is expected by 1 June 2021. This comes by way of the Notification of the Ministry of Digital Economy and Society Re: Personal Data Security Standards B.E.

Personal data 76

Personal data Compliance Access Security 76

Hunton Privacy

JANUARY 31, 2022

Generally, these AI-driven solutions require the processing of significant amounts of personal data for the AI model’s own training, which often is not the purpose for which the personal data originally was collected. Read the full article published by Infosecurity Magazine.

Artificial Intelligence 98

Artificial Intelligence Compliance GDPR Personal data 98

eSecurity Planet

SEPTEMBER 21, 2024

Let’s explore what to expect from the upcoming regulations, provide insights into critical federal and state laws, and offer practical compliance and risk management strategies. Cybersecurity laws and regulations encompass a range of legal requirements designed to protect information systems and data from cyber threats.

Cybersecurity 120

Cybersecurity Computer and Electronics Compliance Privacy 120

Data Matters

OCTOBER 15, 2019

On 22 August 2019, the Cyberspace Administration of China (CAC) announced the implementation of the Online Protection of Children’s Personal Data Regulation (????????????), (“the Regulation”) which came into force on 1 October 2019. In contrast with COPPA in the U.S., Consequences of the Regulation.

Personal data 66

Personal data Privacy Compliance Cybersecurity 66