Education, GDPR and Government - Information Management Today

Prometheus and Grief – two new emerging ransomware gangs targeting enterprises. Mexican Government data is published for sale.

Security Affairs

JUNE 1, 2021

Just recently, the group has published a stolen data allegedly belonging to the Mexican Government which still remains available for sale today, and possibly becoming the first cybercriminal group that has touched a major state in Latin America on such a level. Mexican Government data is published for sale. Pierluigi Paganini.

Ransomware

Ransomware Sales Government GDPR

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Last Watchdog

DECEMBER 18, 2024

Srivatsav Ravi Srivatsav , CEO, DataKrypto Non-compliance with regulations, such as the European Unions General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), risks severe penalties. state privacy laws, the EUs governance of ethical AI deployment, and updated regulations in India and Japan.

Compliance

Compliance Cybersecurity Risk Privacy

IT Governance Podcast 2023-1: more ransomware attacks on the education sector, and DPC and Meta sued

IT Governance

JANUARY 13, 2023

This week, we discuss a series of ransomware attacks on 30 schools and colleges in the UK, legal action against both Meta and the Irish Data Protection Commission following last year’s massive Facebook GDPR fine, and the third stage of a cyber-defence-in-depth strategy: management.

Education

Education Ransomware Government GDPR

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Government surveying further education providers before Brexit

IT Governance

SEPTEMBER 24, 2019

Among the uncertainty surrounding GDPR (General Data Protection Regulation) compliance – particularly with Brexit complicating things – the UK government has been a reliable source for advice. The GDPR and Brexit. The government’s advice will be invaluable for understanding how to manage your data protection requirements.

Education

Education Government GDPR Personal data

Data breaches grow across UK education sector

IT Governance

NOVEMBER 29, 2018

A recent freedom of information request by chartered accountants UHY Hacker Young reveals a worrying rise in reported data breaches across the UK education sector. Starting at only £300, it can protect organisations from – according to the government – around 80% of all cyber attacks.

Education

Education Data breaches GDPR Government

National AI Strategy: The UK Government Publishes Its Artificial Intelligence Strategy for the Next Decade

Data Matters

OCTOBER 21, 2021

On 22 September 2021, the UK Government (the “ Government ”) published its Artificial Intelligence (“ AI ”) strategy. The paper outlines the Government’s plan to make Britain a “global superpower” in the AI arena, and sets out an agenda to build the most “pro-innovation regulatory environment in the world”.

Artificial Intelligence

Artificial Intelligence Government Paper IT

Does your use of CCTV comply with the GDPR?

IT Governance

OCTOBER 3, 2019

You might be surprised to learn that CCTV footage is subject to the GDPR (General Data Protection Regulation). Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant. Let’s take a look at the steps you should follow to ensure your video surveillance methods are GDPR-compliant.

GDPR

GDPR Privacy Personal data Retail

GUEST ESSAY: Top 5 cyber exposures tied to the rising use of international remote workforces

The Last Watchdog

AUGUST 23, 2021

In that case, you must abide by the General Data Protection Regulation (GDPR), which imposes fines on some activities that are perfectly legal in the U.S. For instance, if you have employees in China and the EU, you’ll have to obtain Chinese government approval to provide data from China to EU authorities enforcing the GDPR.

Communications

Communications Cybersecurity GDPR Risk

GDPR One Year Anniversary: What We’ve Learned So Far

Thales Cloud Protection & Licensing

JUNE 4, 2019

On May 25, the European Union celebrated the first anniversary of the enforcement of the General Data Protection Regulation (GDPR) , the most important change in data privacy regulations in the last decade, designed to restructure the way in which personal data is handled across every sector (public or private) and every industry.

GDPR

GDPR Data Privacy Compliance Privacy

GDPR automated decision-making and profiling: what are the requirements?

IT Governance

NOVEMBER 9, 2018

In addition to data subjects’ rights to be informed, of access, to rectification, to erasure, to restrict processing, to data portability and to object, the EU’s GDPR (General Data Protection Regulation) sets out requirements relating to automated individual decision-making, including profiling. What is profiling under the GDPR?

GDPR

GDPR Personal data Compliance Financial Services

GDPR: How the definition of personal data has changed

IT Governance

APRIL 10, 2019

On 25 May 2018, the EU’s GDPR (General Data Protection Regulation) superseded the UK’s DPA (Data Protection Act) 1998. Let’s start with the circumstances under which the processing of personal data must meet the GDPR’s requirements. DPO as a service (GDPR). This blog has been updated to reflect industry updates.

Personal data

Personal data GDPR Education Government

7 steps to highly effective GDPR compliance

IT Governance

AUGUST 21, 2019

The GDPR (General Data Protection Regulation) hasn’t exactly crept up unnoticed over the past year or so, but it’s still caught many organisations by surprise. Meanwhile, although the specifics of Brexit are still unclear, one thing is certain: whatever happens, UK-based organisations will be subject to the GDPR’s requirements.

GDPR

GDPR Compliance Personal data Access

Is your school GDPR-compliant? Use our checklist to find out

IT Governance

MARCH 28, 2019

At the recent ASCL (Association of School and College Leaders) conference , a guest said to us: “The GDPR ? Granted, 2018 was very much ‘the year of the GDPR’ in some circles. GDPR compliance in schools. Schools have a particularly hard time of it when it comes to the GDPR. Want help tracking your GDPR compliance?

GDPR

GDPR Compliance Data breaches Personal data

Sign up for the new education sector email updates

IT Governance

AUGUST 2, 2018

To support the wider education sector with data protection and cyber security, we are launching a sector specific email newsletter and blog series. To sign-up, send us ideas of what you would like us to cover or questions for us to answer, please leave complete this form and choose education as your sector. How to sign up.

Education

Education GDPR Data breaches Government

More than half of schools not compliant with the GDPR

IT Governance

MAY 2, 2019

In a recent survey from edtech giant RM Learning and Trend Micro , 14% of respondents also admitted to not having a clear plan to become compliant with the GDPR (General Data Protection Regulation). Easy steps to reduce the risks and demonstrate GDPR compliance. Train staff with e-learning from IT Governance. The GDPR.co.uk

GDPR

GDPR Data breaches Compliance Phishing

Why is the GDPR still something I should be concerned about?

IT Governance

OCTOBER 15, 2018

The EU’s GDPR (General Data Protection Regulation) superseded all laws based on the EU’s Data Protection Directive, including the UK’s Data Protection Act 1998, on 25 May 2018. Some organisations believe that a simple privacy notice is all that is required, but the GDPR actually demands far more than that. . GDPR complexities .

GDPR

GDPR Data breaches Personal data Data collection

Government survey reveals GDPR awareness is falling short

IT Governance

FEBRUARY 8, 2018

The Cyber Security Breaches Survey 2018 from the Department for Digital, Culture, Media and Sport (DCMS) has revealed that only 38% of businesses and 44% of charities have heard of the General Data Protection Regulation (GDPR). Are your staff aware of the GDPR? Key findings. Don’t let your staff be your downfall.

GDPR

GDPR Government Education Compliance

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR, the EU’s flagship data privacy and “right to be forgotten” regulation, has made the stakes of a data breach higher than ever. GDPR-style data privacy laws came to the U.S.

Data Privacy

Data Privacy Compliance Privacy Security

How the CCPA and GDPR Are Different

KnowBe4

SEPTEMBER 10, 2019

The California Consumer Privacy Act (CCPA) was introduced just a month after the European Union instituted the General Data Protection Regulation (GDPR), earning the CCPA the nickname of “California’s GDPR.”. While the GDPR has been in effect since May of 2018, the CCPA is on track to become effective on January 1, 2020.

GDPR

GDPR Privacy Personal data Passwords

Wake up to the reality of the GDPR: What you need to know about compliance

IT Governance

JANUARY 30, 2019

With a mammoth GDPR fine handed out to Google last week, it’s time for organisations to reassess their understanding of the Regulation. We’re through the eye of the GDPR (General Data Protection Regulation) storm. The GDPR concerns personal data that is: Collected in an enterprise context; and. Some began to lose faith.

GDPR

GDPR Compliance Personal data Data breaches

Are your staff GDPR trained? Find out what you need to do

IT Governance

OCTOBER 30, 2018

Staff awareness training is a core component of GDPR compliance, yet many organisations haven’t implemented the necessary measures. That’s hardly a surprise, given how few resources organisations dedicate to educating their staff on how to handle sensitive information. Staff training under the GDPR.

GDPR

GDPR Information Security Government Data breaches

Are your staff GDPR trained? Find out what you need to do

IT Governance

OCTOBER 30, 2018

Staff awareness training is a core component of GDPR compliance, yet many organisations haven’t implemented the necessary measures. That’s hardly a surprise, given how few resources organisations dedicate to educating their staff on how to handle sensitive information. Staff training under the GDPR.

GDPR

GDPR Information Security Government Data breaches

The EU AI Act is here. Are you ready?

Collibra

AUGUST 1, 2024

Organizations will need to comply with this new Act or, like we’ve seen in the past with laws like GDPR, face stiff penalties. Bias, discrimination, misinformation, data privacy, confidentiality, data security and intellectual property rights are all real concerns when AI is not properly deployed and governed. You’re on the hook.

Compliance

Compliance GDPR Risk Government

How to implement a GDPR staff awareness training programme

IT Governance

OCTOBER 29, 2018

When organisations look to initiate a GDPR compliance programme, the ‘people’ factor is often overlooked. Yet staff awareness and education are key components of any organisation’s GDPR compliance framework. . Staff awareness training for the GDPR does not mean simply briefing your employees about the Regulation.

GDPR

GDPR Compliance Security awareness Education

How to implement a GDPR staff awareness training programme

IT Governance

OCTOBER 29, 2018

When organisations look to initiate a GDPR compliance programme, the ‘people’ factor is often overlooked. Yet staff awareness and education are key components of any organisation’s GDPR compliance framework. . Staff awareness training for the GDPR does not mean simply briefing your employees about the Regulation.

GDPR

GDPR Compliance Security awareness Education

The GDPR: A year in review

IT Governance

MAY 23, 2019

A year ago this week, the GDPR (General Data Protection Regulation) took effect, promising to revolutionise information security. In the first half of 2018, it was practically impossible to avoid news stories about the GDPR, the majority of which focused on the potential for hefty administrative fines for non-compliance.

GDPR

GDPR Data breaches Compliance Retail

3 tips for successful GDPR staff training

IT Governance

NOVEMBER 21, 2017

Staff awareness should be a major concern for organisations looking to comply with the EU General Data Protection Regulation (GDPR). However, our 2017 GDPR Report found that less than 10% of organisations have provided GDPR staff awareness training to all employees. Why implement a GDPR staff awareness training programme?

GDPR

GDPR Compliance Education Data breaches

2.6 billion records exposed in 2,308 disclosed data breaches in H1

Security Affairs

AUGUST 18, 2018

The most affected sector is the business one (40%), followed by healthcare (8.3%), government (8.2%), and education (4.5%). The data breach landscape was influenced by the introduction of the GDPR in May, under the European Regulation the affected companies were obliged to disclose the incident within 72 hours.

Data breaches

Data breaches Phishing Risk GDPR

Only 25% of UK law firms are prepared for the GDPR

IT Governance

NOVEMBER 20, 2017

A recent report from CenturyLink has highlighted a lack of preparation among UK law firms for the upcoming EU General Data Protection (GDPR) compliance deadline. The report questioned more than 150 legal sector IT decision makers in the UK and discovered that only 25% believe they are currently compliant with the GDPR.

GDPR

GDPR Compliance Data breaches Paper

The GDPR has arrived – are you compliant?

IT Governance

JUNE 14, 2018

The EU General Data Protection Regulation (GDPR) has been in effect for almost three weeks now – are you compliant, are you still working towards compliance or are you unsure of where to start? Register for our free webinars to find out how you can get started with your GDPR compliance project. Upcoming webinars. Quick wins.

GDPR

GDPR Compliance Education Risk

Universities across the UK and North America confirm cyber attack

IT Governance

JULY 28, 2020

Blackbaud, which provides education administration, fundraising and financial management software, was infected with ransomware, giving cyber criminals access to a wealth of sensitive information. At least eight educational institutions in the US and Canada were also affected, as well as several charities on both sides of the Atlantic.

GDPR

GDPR Education Ransomware Data breaches

Victims of Blackbaud ransomware attack to take legal action

IT Governance

SEPTEMBER 24, 2020

Blackbaud, which provides education administration, fundraising and financial management support, was attacked earlier this year, with cyber criminals accessing victims’: Names; Dates of birth; Addresses; Phone numbers; Email addresses; Donation history; and Events that individuals attended. Do they have a case? they have suffered distress).

Ransomware

Ransomware Data breaches Education GDPR

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

The Last Watchdog

MARCH 21, 2022

Evolving privacy regulations like the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) mean ongoing headaches for cybersecurity, compliance and risk management teams. GDPR requires a designated chief privacy officer (CPO). Educate employees. Regulatory compliance.

Encryption

Encryption Cloud Privacy GDPR

62% of organisations unaware of the GDPR

IT Governance

FEBRUARY 23, 2018

There is an alarming lack of awareness across all industries about the EU General Data Protection Regulation (GDPR) , according to a government survey. As you would expect, larger organisations were more likely to be aware of the GDPR. Preparing for the GDPR. The survey split respondents into businesses and charities.

GDPR

GDPR Compliance Insurance Personal data

GDPR priorities in the lead up to May

IT Governance

MARCH 1, 2018

GDPR compliance should be a priority and high on every organisation’s agenda with only three months until the regulation comes into effect on 25 May 2018. Training – make sure those responsible for the project are trained on implementing the GDPR in the workplace.

GDPR

GDPR Compliance Privacy Data breaches

2020 cyber security statistics

IT Governance

JANUARY 26, 2021

The education sector followed, with 157 incidents and 884 million breached records. As with healthcare breaches, security incidents at educational institutes are especially dangerous, because the majority of records involve children’s data. The post 2020 cyber security statistics appeared first on IT Governance UK Blog.

Security

Security Data breaches Education Phishing

54% of universities reported a data breach in the past year

IT Governance

AUGUST 18, 2020

According to the study , 46% of university staff haven’t received staff awareness training in the past year, and universities spend just £7,529 a year on average educating their employees. The post 54% of universities reported a data breach in the past year appeared first on IT Governance UK Blog. Affordable cyber security.

Data breaches

Data breaches GDPR Education Phishing

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

According to the bill’s author, it was consciously designed to emulate the new European General Data Protection Regulation (GDPR) that went into effect on May 25, and if and when it goes into effect, it would constitute the broadest privacy law in the United States. education information. biometric information. geolocation data.

GDPR

GDPR Privacy Sales Data breaches

Building cyber security careers

IT Governance

OCTOBER 21, 2021

The need for experienced and qualified cyber security professionals is a highlight of Cybersecurity Career Awareness Week , led by NICE (National Initiative for Cybersecurity Education). No matter what area of cyber security you move into, you will almost certainly come across the GDPR. Build your cyber security career.

Security

Security Information Security GDPR Data Privacy

What is data governance in healthcare?

Collibra

DECEMBER 16, 2020

As a result, data governance in healthcare is non-negotiable. Data governance is about managing data and processes so data can be used as a consistent, secure and organized asset that meets policies and standards. Why is data governance important for a healthcare organization? Large volumes of sensitive data. Data silos.

Government

Government Data Privacy Privacy Communications

When are schools required to report personal data breaches?

IT Governance

NOVEMBER 17, 2020

Under the GDPR (General Data Protection Regulation) , all personal data breaches must be recorded by the organisation and there should be a clear and defined process for doing so. The GDPR states that this refers to anything that could lead to physical, material or non-material damage to an individual. When must breaches be reported?

Personal data

Personal data Data breaches Data collection GDPR

Weekly podcast: MyHeritage, PageUp, Rochester Grammar School and, yes, the GDPR

IT Governance

JUNE 8, 2018

This week, we discuss the compromise of 92 million MyHeritage users’ credentials, “unauthorised activity” at PageUp, a missing memory stick at Rochester Grammar School, and the first couple of weeks of the GDPR. Hello and welcome to the IT Governance podcast for Friday, 8 June 2018. Here are this week’s stories.

GDPR

GDPR Passwords Information Security Authentication

Meeting Evolving Business Needs – A Conversation Between RIM Educators and Thought Leaders

Information Governance Perspectives

MAY 8, 2020

Hunter, Dr. Tao Jin, Dr. Patricia Franks, Rae Lynn Haliday, Cheryl Pederson, and Wendy McLain on the topic of Meeting Evolving Business Needs – A Conversation Between RIM Educators and Thought Leaders. But that’s not entirely the role of the Records and Information Governance professional, is it?

Education

Education Digital transformation Information governance Search queries

France: The CNIL publishes a practical guide on Data Protection Officers

DLA Piper Privacy Matters

NOVEMBER 29, 2021

The guide is in line with the Article 29 Working Party Guidelines on Data Protection Officers (WP 243 rev 01) , but provides additional insights and practical guidance to organizations that designate a DPO in respect of GDPR and French data protection act requirements. Be the point of contact on GDPR issues.

GDPR

GDPR Compliance Personal data Communications

Prometheus and Grief – two new emerging ransomware gangs targeting enterprises. Mexican Government data is published for sale.

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

Webinars

Trending Sources

IT Governance Podcast 2023-1: more ransomware attacks on the education sector, and DPC and Meta sued

Webinars

Government surveying further education providers before Brexit

Data breaches grow across UK education sector

National AI Strategy: The UK Government Publishes Its Artificial Intelligence Strategy for the Next Decade

Does your use of CCTV comply with the GDPR?

GUEST ESSAY: Top 5 cyber exposures tied to the rising use of international remote workforces

GDPR One Year Anniversary: What We’ve Learned So Far

GDPR automated decision-making and profiling: what are the requirements?

GDPR: How the definition of personal data has changed

7 steps to highly effective GDPR compliance

Is your school GDPR-compliant? Use our checklist to find out

Sign up for the new education sector email updates

More than half of schools not compliant with the GDPR

Why is the GDPR still something I should be concerned about?

Government survey reveals GDPR awareness is falling short

Security Compliance & Data Privacy Regulations

How the CCPA and GDPR Are Different

Wake up to the reality of the GDPR: What you need to know about compliance

Are your staff GDPR trained? Find out what you need to do

Are your staff GDPR trained? Find out what you need to do

The EU AI Act is here. Are you ready?

How to implement a GDPR staff awareness training programme

How to implement a GDPR staff awareness training programme

The GDPR: A year in review

3 tips for successful GDPR staff training

2.6 billion records exposed in 2,308 disclosed data breaches in H1

Only 25% of UK law firms are prepared for the GDPR

The GDPR has arrived – are you compliant?

Universities across the UK and North America confirm cyber attack

Victims of Blackbaud ransomware attack to take legal action

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

62% of organisations unaware of the GDPR

GDPR priorities in the lead up to May

2020 cyber security statistics

54% of universities reported a data breach in the past year

California Enacts Broad Privacy Laws Modeled on GDPR

Building cyber security careers

What is data governance in healthcare?

When are schools required to report personal data breaches?

Weekly podcast: MyHeritage, PageUp, Rochester Grammar School and, yes, the GDPR

Meeting Evolving Business Needs – A Conversation Between RIM Educators and Thought Leaders

France: The CNIL publishes a practical guide on Data Protection Officers

Stay Connected