Hunton Privacy

JUNE 9, 2022

The new law generally follows MDL-668’s provisions, adopting the model law’s broad definition of nonpublic information and requiring licensees to, in part, maintain a written information security program (“WISP”) and investigate cybersecurity incidents. Enforcement and Penalties Under the Law.

Insurance 107

Insurance Security Information Security Cybersecurity 107

erwin

MAY 2, 2019

Enterprise architect is a common job title within IT organizations at large companies, but the term lacks any standard definition. That’s one of the reasons the enterprise architect role has no standard definition. What the enterprise architects at your organization do depends in large part on how the IT department is organized.

Digital transformation 95

Digital transformation Healthcare Compliance Cloud 95

The Last Watchdog

APRIL 3, 2019

Not only is the notion of what comprises a perimeter shifting, the definition of what constitutes a “user” is metamorphizing, as well. All these privacy regulations have a direct impact on IGA service, which help companies automate, as much as possible, governance processes, as a foundation proving compliance. Users re-defined.

Digital transformation 140

Digital transformation Insurance Compliance Healthcare 140

Data Protection Report

NOVEMBER 14, 2022

On November 9, 2022, the New York Department of Financial Services (NYDFS) officially proposed changes to its cybersecurity regulation and opened a 60-day public comment period. Revised Definition of Class A Companies and other Key Requirements.

Cybersecurity 116

Cybersecurity Passwords Risk Compliance 116

erwin

DECEMBER 17, 2020

The same is true for data, with a number of vendors creating data models by vertical industry (financial services, healthcare, etc.) By having a single definition of something, complex ETL doesn’t have to be performed repeatedly. Cloud migration and other data platform modernization efforts: definition is missing here.

Metadata 90

Metadata Analytics Government Financial Services 90

Hunton Privacy

JULY 5, 2023

On June 28, 2023, the New York Department of Financial Services (“NYDFS”) published an updated proposed Second Amendment (“Amendment”) to its Cybersecurity Regulation, 23 NYCRR Part 500. On November 9, 2022, NYDFS published a first draft of the proposed Amendment and received comments from stakeholders over a 60-day period.

Cybersecurity 113

Cybersecurity IT Compliance Financial Services 113

Data Protector

DECEMBER 31, 2016

They're not definitive statements of the law that must be ruthlessly adhered to. Who knows whom I’ll be advising! The Working Group offers opinions.

GDPR 120

GDPR Communications Financial Services Education 120

John Battelle's Searchblog

OCTOBER 11, 2014

I was asked to focus my remarks on how new kinds of companies were threatening traditional incumbents – with a focus on the financial services industry, as you might imagine. Then I wondered – what are the information first companies in financial services?

Financial Services 108

Financial Services Marketing Manufacturing Big data 108

Collibra

MAY 16, 2022

This want to commingle the solutions likely stems from the Gartner definition published in the Magic Quadrant for Data Quality Solutions, which rightfully states that data quality needs “identification, understanding[,] and correcting flaws in data.”. For financial services, data governance found its roots in risk.

Government 105

Government Risk Financial Services Access 105

IBM Big Data Hub

NOVEMBER 29, 2023

Financial Services clients are increasingly looking to modernize their applications. Moreover, many of these financial services applications support regulated workloads, which require strict levels of security and compliance, including Zero Trust protection of the workloads.

Cloud 89

Cloud Financial Services Security Compliance 89

eSecurity Planet

AUGUST 9, 2022

Virgin Islands, and Guam) have their own data breach notification laws (and each such state, accordingly, has its very own definition of such basic terms as “data” and “breach”) – with Massachusetts’ and California’s respective breach-notification schemes viewed as among the strictest. In the U.S.,

Data Privacy 143

Data Privacy Compliance Privacy Security 143

erwin

FEBRUARY 7, 2019

The banking, financial services and insurance industry typically deals with higher data velocity and tighter regulations than most. Metadata-Driven Automation in the BFSI Industry. This bureaucracy is rife with data management bottlenecks.

Metadata 96

Metadata Healthcare Insurance Financial Services 96

Data Matters

JUNE 24, 2022

The definition generally includes three elements for determining whether a person is an investment adviser: (i) The person provides advice, or issues analyses or reports, concerning securities; (ii) the person is in the business of providing such services; and (iii) the person provides such services for compensation.

Marketing 88

Marketing Financial Services Security Analytics 88

Data Matters

FEBRUARY 12, 2019

The forums won’t likely provide definitive answers, they will likely provide some of the best information available. Definition of Unique Identifiers. Updating as needed the definition of unique identifiers. On the one hand, consumer groups advocated to keep the definition of personal information as broad as possible.

Sales 74

Sales Privacy Data Privacy Compliance 74

Thales Cloud Protection & Licensing

OCTOBER 27, 2021

At a global level, there's a broad acceptance that security teams are tightly involved with policy definition (82%), but an almost even split in relation to enforcement; 37% believe it is the security team’s responsibility while 45% believe that policy enforcement is up to the cloud provider.

Cloud 71

Cloud Encryption Financial Services Authentication 71

Data Protection Report

NOVEMBER 2, 2023

On November 1, 2023, the New York Department of Financial Services (NYDFS) finalized the second amendment to its cybersecurity regulations, which are available here. The two definitions from Section 500.1 a)), this new term applies.

Cybersecurity 105

Cybersecurity Compliance Financial Services Government 105

erwin

SEPTEMBER 25, 2020

erwin Data Modeler (erwin DM ) is an award-winning data modeling tool used by Fortune 500 companies, including some of the world’s leading financial services, healthcare, critical infrastructure and technology firms. What’s the Best Data Modeling Tool? In addition, erwin DM users have the ability to: Visualize any data, from anywhere.

Data structuring 111

Data structuring Cloud Metadata Financial Services 111

Hunton Privacy

OCTOBER 21, 2009

The federal financial services agencies are expected to shortly announce a proposed-final Gramm-Leach-Bliley Act (“GLBA”) model form privacy notice. The model notice incorporates financial institutions’ required disclosures pursuant to Section 503 of the GLBA. Section 728 also provides a safe harbor.

Privacy 40

Privacy Financial Services Compliance Paper 40

erwin

JANUARY 7, 2021

In highly regulated environments, such as financial services, healthcare and pharma, attestations, audit trails and compliance reporting are required regardless of circumstances and will be difficult with a manual, laborious approach. However, that definition is too narrow in terms of AI’s relation to data governance.

Metadata 98

Metadata Government Compliance Artificial Intelligence 98

Hunton Privacy

JANUARY 3, 2017

On December 28, 2016, the New York State Department of Financial Services (“DFS”) announced an updated version of its cybersecurity regulation for financial institutions (the “Updated Regulation”). The Updated Regulation will become effective on March 1, 2017.

Cybersecurity 40

Cybersecurity Financial Services Authentication Information Security 40

erwin

DECEMBER 20, 2018

But to ensure the collaborative take on data governance is implemented properly, an organization must settle on a common definition. for Financial Services. www.erwin.com/blog/data-governance-2-0-financial-services/. The evolution from Data Governance 1.0 to Data Governance 2.0 Data Governance 2.0

Government 40

Government Financial Services GDPR Data breaches 40

DLA Piper Privacy Matters

APRIL 26, 2021

Definition of AI system. The definition of an AI system is intended to be technology-neutral and future-proof, while providing legal certainty. a) The definition of a high-risk AI system. High-risk AI systems are permitted provided the strict controls set out in the regulation to mitigate risk are in place.

Artificial Intelligence 114

Artificial Intelligence Risk Marketing GDPR 114

Data Matters

MARCH 12, 2019

Of particular note, the Safeguards Rule NPRM proposes to align the FTC’s requirements with those of the New York Department of Financial Services (“NYDFS”), as found in its cybersecurity regulations, and the National Association of Insurance Commissioners (“NAIC”), as found in its insurance data security model law.

Privacy 68

Privacy IT Information Security Insurance 68

Reltio

FEBRUARY 3, 2021

Our customers include global pharmaceutical and life sciences companies, market leaders in healthcare, financial services, and technology, major travel and hospitality brands, and prestigious international luxury consumer brands in fashion, retail, and personal care. Other analyst firms publish their own MDM market and vendor reports.

MDM 98

MDM Cloud Marketing B2C 98

Security Affairs

SEPTEMBER 1, 2023

This is achieved thanks to the second bug, which results from a difference in the SMB protocol’s definition of two related sub commands: SMB_COM_TRANSACTION2 and SMB_COM_NT_TRANSACT. With more data than expected being written, the extra data can overflow into adjacent memory space triggering the buffer overflow.

Phishing 131

Phishing Ransomware Search queries Access 131

Data Matters

MARCH 28, 2022

See 45 CFR 164.308(a)(1)(ii)(A)-(B): Implementation Specification: Risk Analysis (required), Implementation Specification: Risk Management (required); see also 45 CFR 164.304 (definition of “Availability”). implement stronger authentication solutions, such as multi-factor authentication. 45 CFR 164.308(a)(5)(i).

Cybersecurity 88

Cybersecurity Privacy Insurance Risk 88

Data Matters

DECEMBER 23, 2020

The topics on which input is specifically sought include the scope of the covered banking organizations, applicable definitions, standards for notice, method of notice to the regulatory agencies, timeframes for providing notice, and the impact of the proposed rule. Definition of Subject Entities: .

Security 68

Security Cybersecurity Insurance Communications 68

IT Governance

NOVEMBER 9, 2018

In brief: Profiling now has a distinct definition. Profiling is most often used for marketing purposes, but it is also used in other areas, such as healthcare, financial services and education, where large volumes of data need to be analysed in order to make quicker and more consistent decisions.

GDPR 75

GDPR Personal data Compliance Financial Services 75

Data Protection Report

MARCH 7, 2024

The proposed definition of “listed identifier” is Full or truncated government identification or account number (such as a Social Security Number, driver’s license or state identification number, passport number, or Alien Registration Number) [Note that this definition apparently includes truncated Social Security Numbers.]

Access 59

Access Military Compliance Personal data 59

Data Protection Report

APRIL 9, 2024

For example, government contractors or subcontractors with reporting obligations to the DOD or DOE for cyber incidents, or financial services entities that are already required to report cyber incidents to their primary federal regulator would be considered “covered entities” under the CIRCIA.

Ransomware 84

Ransomware Agriculture Cybersecurity Government 84

HL Chronicle of Data Protection

JUNE 14, 2019

In this presentation, Hogan Lovells partners Mark Brennan and Bret Cohen will explore the impact of the CCPA including: Key terms used by the law that are fundamental to planning compliance – including broad definitions of “personal information” and “sale”; How the act will interact with existing regulations covering organizations in healthcare, (..)

Privacy 40

Privacy GDPR Compliance Financial Services 40

HL Chronicle of Data Protection

APRIL 1, 2019

A few key topics that will be addressed are: How should you interpret key definitions like “personal information,” “sale,” “third party,” and “business” when operationalizing the CCPA? How will the financial incentives and anti-discrimination provisions actually work when consumers exercise their rights?

Sales 40

Sales Financial Services Privacy Compliance 40

Data Protection Report

JANUARY 6, 2020

The New York State Department for Financial Services regulations require covered entities to have appropriate record retention policies and procedures and the CCPA provides an extra incentive to implement proper information governance to minimise the costs data access requests. In the U.S., Conquer the world!

Privacy 85

Privacy GDPR Data breaches Risk 85

HL Chronicle of Data Protection

MAY 21, 2018

Circuit struck down the FCC’s 2015 interpretation of the definition of “automatic telephone dialing system” (autodialer) as overly broad, arbitrarily vague, and “utterly unreasonable.” FCC , the Federal Communications Commission is going back to the drawing board in a new Public Notice that seeks comment on foundational TCPA issues.

Communications 40

Communications Financial Services Privacy Government 40

Data Protection Report

DECEMBER 17, 2020

In December 2020 the EC is due to publish two important legislative proposals, the Digital Services Act and the Digital Markets Act ( DMA ). The Data Strategy proposed the establishment of nine common European data spaces for data sharing and pooling, including health, mobility, manufacturing, financial services, energy, and agriculture.

Government 102

Government Personal data Marketing Artificial Intelligence 102

Collibra

JULY 9, 2024

Definitely a partnership” An organization the size of Baptist Health doesn’t change platforms overnight. Definitely, it was a partnership,” Jennifer agrees. “We Collibra is an Amazon Web Services Partner with an AWS Financial Services Competency designation.

Cloud 52

Cloud Analytics Government Artificial Intelligence 52

Data Matters

AUGUST 5, 2019

The law broadens the definition of “private information” which sets forth the information elements that, if breached, could trigger a notification obligation. The Stop Hacks and Improve Electronic Data Security Act.

Cybersecurity 68

Cybersecurity Data breaches Privacy Risk 68