Threatpost

MAY 28, 2019

Amazingco, an events planning firm, exposed 212,220 records with personal data relating to children's parties, wine tours and more.

Personal data 77

Personal data Cloud Security 77

DLA Piper Privacy Matters

JUNE 27, 2022

The Italian privacy authority, the Garante, deemed that the use of Google Analytics results in unlawful transfers of personal data to the United States in violation of the principles outlined in the Schrems II ruling. In Order No. The disputed facts. Code § 1881(b)(4), which subjects the company to the surveillance of U.S.

Personal data 98

Personal data Analytics GDPR Privacy 98

IT Governance

APRIL 18, 2018

An integral part of your EU General Data Protection Regulation (GDPR) compliance project is producing appropriate documentation, which includes a personal data breach notification procedure. What is a personal data breach? Loss of availability of personal data.

Personal data 70

Personal data Data breaches GDPR Compliance 70

DLA Piper Privacy Matters

APRIL 27, 2023

In the course of this cyber-attack, personal data – mainly tax and social security information – of approximately 4 million Bulgarian citizens (or approximately 6 million citizens in total, including foreign citizens) had been accessed and published on the Internet.

Personal data 52

Personal data GDPR Access Data breaches 52

Data Protection Report

FEBRUARY 13, 2024

In both cases, the FTC’s complaint alleged that the companies retained personal data for longer than was necessary, and that conduct violated Section 5 of the Federal Trade Commission Act as an unfair act or practice. Under the proposed consent orders, both companies do not confirm or deny the allegations.

Personal data 49

Personal data Privacy Marketing Data collection 49

Data Matters

DECEMBER 2, 2019

On 4 November 2019, the European Data Protection Board (EDPB), the EU-wide data supervisory authority, held a stakeholders’ event on data subject rights under the GDPR. Stakeholders noted some requests were too broad, in turn, making it difficult to identify which data subject right was being exercised (e.g.,

GDPR 68

GDPR Compliance Personal data Access 68

Data Protection Report

MAY 21, 2020

On 14 May 2020, the Singapore Ministry of Communications and Information ( MCI ) and the Personal Data Protection Commission of Singapore ( PDPC ) announced a public consultation (the Public Consultation ) on the draft Personal Data Protection (Amendment) Bill (the Draft Bill ) and related amendments to the Spam Control Act ( SCA ).

Personal data 64

Personal data Data breaches Compliance Cybersecurity 64

Thales Cloud Protection & Licensing

OCTOBER 10, 2022

Consumers have their Say about Protection of Personal Data – Call for More Stringent Controls. Tue, 10/11/2022 - 06:46. We live in a digital world in which we engage with significant social, government, retail, business and entertainment services now delivered without any direct human service management.

Personal data 71

Personal data Data breaches Government Authentication 71

Data Matters

NOVEMBER 2, 2023

The Information Commissioner’s Office (“ ICO ”) has introduced a toolkit on data sharing with law enforcement (“ Toolkit ”) which supplements the ICO’s existing guidance on sharing personal data with law enforcement authorities.

Personal data 155

Personal data Privacy 155

Hunton Privacy

JANUARY 5, 2024

Background The case related to the processing of an incapacitated employee’s personal data, including health data, by the medical service provider (“MDK”) of a health insurance fund in Germany. The CJEU also held that the rules and limitations on the processing of sensitive personal data under Article 9.2(h)

GDPR 125

GDPR Personal data Insurance IT 125

Security Affairs

JULY 23, 2021

In the event of a data breach, governments should inform potentially-vulnerable citizens as soon as possible. The post Over 80 US Municipalities’ Sensitive Information, Including Resident’s Personal Data, Left Vulnerable in Massive Data Breach appeared first on Security Affairs. Original post at [link].

Personal data 99

Personal data Data breaches Phishing Government 99

Data Protection Report

AUGUST 6, 2018

Data protection laws in Asia continue to be introduced and updated. On 22 May 2018, the Thai Cabinet approved in principle a revised draft of Thailand’s first personal data protection act (Draft Act). Thailand currently does not have any specific law regulating data protection. Collection of personal data.

Personal data 40

Personal data Data collection Compliance GDPR 40

DLA Piper Privacy Matters

SEPTEMBER 17, 2018

30 of 2018 on the Personal Data Protection Law (PDPL). It will provide individuals with rights in relation to how their personal data can be collected, processed and stored. The PDPL also imposes new obligations upon businesses to ensure that the personal data they collect is kept secure. REGULATION.

Personal data 49

Personal data GDPR Compliance Risk 49

Hunton Privacy

OCTOBER 19, 2016

According to that interpretation, personal data must be deleted at the end of the consultation period, unless the data is required for billing purposes. Bundesrepublik Deutschland , following the Opinion of Advocate General Manuel Campos Sánchez-Bordona on May 12, 2016. View the full text of the judgment of the CJEU.

Personal data 53

Personal data Access IT Security 53

Thales Cloud Protection & Licensing

OCTOBER 4, 2022

Historically, October has always been an important month for the cybersecurity community and a month of major cybersecurity events. GDPR and other data protection regulations help broaden our awareness about data privacy and make us more suspicious when it comes to protecting personal data and digital services.

Authentication 127

Authentication Passwords Cybersecurity Personal data 127

Data Matters

JANUARY 29, 2020

With issues around the collection and handling of personal data becoming the focus of increased scrutiny among regulators, policymakers, and consumers, interest has continued to grow among organizations to better understand and address privacy risk. Notably, however, NIST did deviate from the FTC’s suggestions in important respects.

Personal data 66

Personal data Privacy Risk Cybersecurity 66

Hunton Privacy

JANUARY 6, 2022

In its report, the JPC also expanded the scope of the Bill to cover non-personal data, though in a limited way. Most provisions of the Bill still apply only to personal data. A provision in an earlier proposed version of the Bill allowing the government to regulate the sharing of non-personal data remains intact.

Personal data 129

Personal data Data breaches Government GDPR 129

Hunton Privacy

JULY 1, 2022

(“Carnival”), the world’s largest cruise-ship operator, for violations of the Cybersecurity Regulation (23 NYCRR Part 500) in connection with four cybersecurity events between 2019 and 2021, including two ransomware events. .

Cybersecurity 115

Cybersecurity Insurance Phishing Financial Services 115

Hunton Privacy

NOVEMBER 13, 2020

On November 12, 2020, the European Commission published a draft implementing decision on standard contractual clauses for the transfer of personal data to third countries pursuant to the EU General Data Protection Regulation (“GDPR”), along with its draft set of new standard contractual clauses (the “SCCs”). Key Takeaways.

Personal data 105

Personal data GDPR Data collection Access 105

Privacy and Cybersecurity Law

SEPTEMBER 15, 2021

To be considered a high-quality dataset, the personal data included therein must be processed in accordance with the GDPR. The volume collects the speeches made during the event organized by the Italian Data Protection Authority on artificial intelligence on the April 19-20, 2021. Eager to know more?

Artificial Intelligence 52

Artificial Intelligence Personal data GDPR Compliance 52

DLA Piper Privacy Matters

JULY 23, 2019

The European Data Protection Board ( “EDPB” ) has published guidelines on the processing of personal data through video devices (the “ Guidelines “) (currently subject to a public consultation process). technical and organisational measures required for such data processing.

Personal data 40

Personal data GDPR Access Marketing 40

Hunton Privacy

JUNE 4, 2021

On June 4, 2021, the European Commission published the final version of the implementing decision on standard contractual clauses for transfers of personal data to third countries under the EU General Data Protection Regulation (“GDPR”), as well as the final version of the new standard contractual clauses (the “SCCs”).

Personal data 105

Personal data GDPR Government Access 105

Hunton Privacy

SEPTEMBER 30, 2013

On September 24, 2013, the Singapore Personal Data Protection Commission (the “Commission”) published guidelines to facilitate implementation of the Singapore Personal Data Protection Act (the “PDPA”). The PDPA’s provisions establishing protections for personal data are scheduled to become effective on July 2, 2014.

Personal data 40

Personal data Information Security Security 40

Troy Hunt

FEBRUARY 8, 2024

The Spoutible incident just has so many interesting aspects to it: loads of data that should never be returned publicly, awesome response time to the disclosure, lacklustre transparency in their disclosure, some really fundamental misunderstands about hashing algorithms and a controversy-laden past if you read back over events of the last year.

Personal data 97

Personal data Passwords Cloud Cybersecurity 97

Hunton Privacy

JANUARY 2, 2019

On December 21, 2018, the Irish Data Protection Commission (the “DPC”) published preliminary guidance on data transfers to and from the UK in the event of a “no deal” Brexit (the “Guidance”). The Guidance is relevant for any Irish entities that transfer personal data to the UK, including Northern Ireland.

Personal data 40

Personal data IT Information Security Security 40

Security Affairs

NOVEMBER 21, 2020

The Manchester United football club has been hit by a cyber attack on their systems, it is not aware of a breach of personal data for his fans. Manchester United disclosed a cyber attack, but according to the football club it is not “currently aware of any breach of personal data associated with our fans and customers”.

Personal data 142

Personal data Security IT Information Security 142

Data Matters

JULY 18, 2022

In proposing these laws, the European Commission’s ambitious Digital and Data Strategy aims to address the legal, ethical, and technological complexities of AI, as well as the use of personal and non-personal data across the economy. This webinar will help organizations navigate the ever-changing policies and legislation.

Government 94

Government Artificial Intelligence Personal data Marketing 94

The Last Watchdog

FEBRUARY 15, 2021

Mistakes online by one family member can lead to compromises in a household’s network, placing computers, personal data, and perhaps even work-related content at risk. Companies can promote family online safety with family-focused materials, events, and outreach. Host virtual events? Do you have a corporate book club?

Education 203

Education Cybersecurity Security awareness Data breaches 203

DLA Piper Privacy Matters

AUGUST 3, 2021

With this clause, the SCCs formalize the EDPB’s recommendation to perform a data transfer assessment before transferring personal data to a third country that does not provide for an adequate level of protection. The assessment must be documented and provided to the competent supervisory authority on request.

IT 119

IT Personal data Compliance Risk 119

Data Protection Report

JANUARY 9, 2023

With the year 2022 firmly in the rear view, and as we look to start the new year in 2023, Norton Rose Fulbright’s Regulatory Compliance and Investigations team looks back and rounds up the five key cyber and data protection developments that took place in Southeast Asia in 2022. . in damages to its customer over data leak.

Cybersecurity 114

Cybersecurity Personal data Data breaches Ransomware 114

Security Affairs

AUGUST 11, 2024

Day: Exploiting Localhost APIs From the Browser BlackHat USA 2024 – Listen-Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap ‘Sinkclose’ Flaw in Hundreds of Millions of AMD Chips Allows Deep, Virtually Unfixable Infections E.U.

Security 104

Security Ransomware MDM Personal data 104

Security Affairs

AUGUST 31, 2023

” reads the data breach notification letter sent to the impacted individuals. “As a result, we believe the risk to individuals whose personal data was involved in this event is low.

Retail 129

Retail Data breaches Personal data Ransomware 129

DLA Piper Privacy Matters

DECEMBER 3, 2021

45 of 2021 on the Protection of Personal Data Protection (“ PDPL ”), which was issued on 26 September 2021. Reassuringly, the PDPL does not contain any major divergences from other well-known data protection regimes, including the GDPR. What does the PDPL cover and who does it apply to? Definitions. Territoriality. Exceptions.

Personal data 105

Personal data Data breaches GDPR Compliance 105

Data Protection Report

MARCH 13, 2023

Chapter V sets out the rules on transfers of personal data to third countries outside of the EU. The Guidelines note that the GDPR does not contain a legal definition of the notion “ transfer of personal data to a third country or to an international organisation ”. The most notable points are as follows: 1.If

GDPR 142

GDPR Personal data Data Privacy Risk 142

Security Affairs

MARCH 21, 2022

. “The Italian data privacy watchdog has opened an investigation to assess the potential risks relating to the processing of personal data of Italian customers carried out by the Russian company that supplies the Kaspersky antivirus software.” ” reads the official announcement.

Data Privacy 92

Data Privacy Privacy Personal data Risk 92

Dark Reading

SEPTEMBER 23, 2019

Logging that is turned on, captured, and preserved immediately after a cyber event is proof positive that personal data didn't fall into the hands of a cybercriminal.

Risk 74

Risk Personal data 74

Security Affairs

SEPTEMBER 17, 2024

This is why it’s crucial to understand the factors contributing to trust, particularly how online brands manage consumers’ personal data. There are several reasons why consumers refuse to consent to their data being shared in the first place. Today’s consumers also expect to be informed about data collection practices.

Data collection 96

Data collection Privacy Personal data B2B 96