IT Governance

JUNE 19, 2019

The GDPR (General Data Protection Regulation) requires organisations to conduct a DPIA (data protection impact assessment) whenever processing is ‘likely to result in a high risk’ to the rights and freedoms of individuals. Before we crack on with our examples, we should explain how you can identify high-risk data processing activities.

GDPR 60

GDPR Personal data Risk Data breaches 60

CGI

DECEMBER 20, 2018

From channel to customer: How an omni-channel experience is the key to the retail industry’s success. Is the hype around the retail store being dead simply that, hype? Retailers are making a decided shift in focus from channel to customer , led by the growing demand for seamless and personalised customer experiences.

Retail 81

Retail Customer Experience Consumer Services Personal data 81

Privacy and Cybersecurity Law

JULY 26, 2021

On July 5, 2021, the Italian supervisory authority (“ Garante ”) published an injunction against a company operating a food delivery app (“ Company ”) over the processing of riders’ personal data with respect to the use of algorithms for the management of the orders. Retention period. The need for a DPIA.

Personal data 52

Personal data GDPR e-Delivery Communications 52

Collibra

APRIL 11, 2023

Retail is a dynamic and competitive market. In addition to the traditional brick-and mortar-stores, the retail business today includes online and mobile stores. Every process at every stage of these stores relies on data. The right kind of data can drive great innovations in retail. What if they do not match?

Retail 97

Retail Marketing Compliance Sales 97

Hunton Privacy

JUNE 25, 2020

Establishments and companies in the UK will therefore be responsible for the additional collection and potential sharing of customers’ personal data. Any entity engaging in this kind of data collection will need to comply with the requirements of data protection law.

Data collection 98

Data collection Personal data Compliance Retail 98

CGI

DECEMBER 20, 2018

From channel to customer: How an omni-channel experience is the key to the retail industry’s success. Is the hype around the retail store being dead simply that, hype? Retailers are making a decided shift in focus from channel to customer , led by the growing demand for seamless and personalized customer experiences.

Retail 40

Retail Customer Experience Consumer Services Personal data 40

IT Governance

NOVEMBER 7, 2022

Welcome to our November 2022 review of phishing attacks, in which we explore the latest email scams and the tactics that cyber criminals use to trick people into handing over personal data. Elsewhere, we assess data breaches at a cancer research facility and the US retailer Bed Bath & Beyond. Get started.

Phishing 115

Phishing Retail Data breaches Insurance 115

IT Governance

NOVEMBER 14, 2018

A data processor is the organisation that does the legwork; it processes the information on the controller’s behalf. For example, a marketing executive at a retailer hires a company to conduct a survey on shoppers’ browsing habits. Responsibilities of the data processor. The means used to delete or dispose of the data.

GDPR 99

GDPR Retail Data collection Personal data 99

IT Governance

AUGUST 19, 2020

In this blog, we take a close look at what a data controller and processor does and how they fit into your organisation. What is a data controller? A data controller determines the purposes for which an organisation collects and uses personal data. Are you a data controller or a data processor?

GDPR 85

GDPR Personal data Compliance Privacy 85

IT Governance

NOVEMBER 14, 2018

Black Friday and Cyber Monday are almost upon us, kickstarting what retailers hope will be a successful trading period. However, the flurry of purchases and the data that represents means cyber criminals will also be looking to cash in. According to McKinsey , 92% of UK shoppers are aware of Black Friday.

Retail 80

Retail Personal data GDPR Risk 80

IT Governance

OCTOBER 3, 2019

You must tell people when you’re collecting their personal information to give them the opportunity to exercise their data subject rights. These rights enable individuals to access the personal data organisations store on them and to challenge the way their information is used. Control who has access to CCTV.

GDPR 104

GDPR Privacy Retail Personal data 104

DLA Piper Privacy Matters

JANUARY 15, 2021

Data Subject Access Requests – no unqualified right to documents. Due to the dates on which the DSARs had been made, the relevant legislation was in fact the Data Protection Act 1998 ( “DPA 98” ).

Access 122

Access GDPR Personal data Retail 122

Reltio

OCTOBER 22, 2020

Twilio as an acquirer is not a surprise because Twilio is positioned as a Customer Engagement Platform for voice and messaging but did not have any coverage for data. Segment is a Customer Data Platform (CDP) player that focuses exclusively on person data. Why focusing only on 3 rd party data enrichment is a limitation .

Personal data 59

Personal data Marketing Customer Experience Retail 59

IBM Big Data Hub

FEBRUARY 23, 2024

The GDPR puts forth a litany of rules for how organizations in and outside of Europe handle the personal data of EU residents. The details of any organization’s plan to become fully GDPR compliant will vary based on the data the organization collects and what it does with that data.

GDPR 74

GDPR Compliance Personal data Privacy 74

Thales Cloud Protection & Licensing

JUNE 21, 2023

For example, working with the secure element of a mobile phone. Data privacy; e-wallets, devices and transaction systems should not have direct access to sensitive personal data. For example, if a consumer offers to deposit €100,000 of CBDC into a bank, the digital cash on the device doesn’t care who is carrying it.

Retail 62

Retail Encryption e-Discovery Data Privacy 62

Thales Cloud Protection & Licensing

NOVEMBER 15, 2023

Data sprawl Airports handle the identity records of a highly diverse population of employees, including hospitality, retail, security, and maintenance staff. Also, on average, airports can process up to seven pieces of personal data for every passenger.

Cybersecurity 87

Cybersecurity Authentication Access Compliance 87

Krebs on Security

JANUARY 19, 2022

was originally launched in 2010 with the goal of helping e-commerce sites validate the identities of customers who might be eligible for discounts at various retail establishments, such as veterans, teachers, students, nurses and first responders. McLean, Va.-based based ID.me These days, ID.me

Access 363

Access Insurance Authentication Government 363

HL Chronicle of Data Protection

APRIL 16, 2019

The European Data Protection Board (EDPB) has adopted the narrowest possible interpretation of ‘contractual necessity’ as a ground for processing of personal data. The EDPB provides a number of examples to illustrate its position.

Personal data 40

Personal data Retail GDPR IT 40

Data Protection Report

NOVEMBER 2, 2023

In 2017, Equifax Inc, suffered a cybersecurity breach, with hackers able to access the personal data of around 13.8 The breach included data held by Equifax Inc in connection with two of Equifax’s products.

GDPR 78

GDPR Risk Cybersecurity Compliance 78

Data Matters

FEBRUARY 10, 2020

For example, a message from a supermarket chain sent to an individual saying ‘Your local supermarket stocks carrots’ is clearly still promotional despite the use of a neutral tone. The ICO gives the example of a supermarket sending out a marketing email promoting a charity it supports.

Marketing 66

Marketing GDPR Personal data Communications 66

Thales Cloud Protection & Licensing

AUGUST 7, 2018

If you have looked at our recently released annual Data Threat Report: Retail Edition , you understand this is not just hyperbole. retail sector needs to come to terms with some bad news. The retail sector is responding to the onslaught of breaches, with 84% of companies surveyed planning to increase IT security spending.

Data breaches 63

Data breaches Retail IT Communications 63

Thales Cloud Protection & Licensing

JULY 11, 2019

What is the General Data Protection Regulation? GDPR is designed to bring an up-to-date approach to privacy and security into Europe, with its aim being to provide EU citizens with a stronger control on the personal information they share with other entities, and to enforce to all member-states of the European Union a uniform legal framework.

GDPR 97

GDPR Compliance Risk Personal data 97

IT Governance

MAY 24, 2024

In this interview, I pick her brain on cyber incident response more generally, gaining her expert insight into the ‘what’, ‘how’ and ‘why’, along with practical, real-life examples. For example, not so long ago, LockBit [an infamous ransomware gang] got taken down. Is it normal if someone logs in from a Russian IP address, for example?

Security 108

Security Risk Ransomware Phishing 108

DLA Piper Privacy Matters

APRIL 9, 2020

In its report, the DPC noted that the ad-tech industry is subject to separate inquiries – this report is more broadly focussed on organisations across a range of sectors, including retail, entertainment, insurance, banking, public sector, media and publishing.

GDPR 59

GDPR Analytics Personal data Compliance 59

Reltio

MAY 26, 2020

The What: Personalization – Data and the analysis of it gives CPGs the opportunity to personalize customer experiences more accurately, as well as target consumers with the right advertising. In order for retailers to sell flour to consumers, the bags are generally 500g or 1kg in size.

Customer Experience 52

Customer Experience Retail Sales Digital transformation 52

Data Protection Report

JANUARY 10, 2023

Unlike the Code, the Direct Marketing Guidance does not, for example, discuss the PECR position on how long consent lasts. 2] Catalogue retailer Easylife fined £1.48 million for breaking data protection and electronic marketing laws | ICO. [3] This includes people’s expectations and their relationship with the organisation.

Marketing 105

Marketing B2B Personal data Retail 105

Security Affairs

NOVEMBER 8, 2020

As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Luxottica Group S.p.A. Its best known brands are Ray-Ban, Persol, and Oakley.

Data breaches 85

Data breaches Insurance Retail Ransomware 85

IT Governance

JUNE 1, 2023

Shields Health Care Group The largest data breach of April 2023 was at the Shields Health Care Group, a Massachusetts-based medical services provider. Reports emerged near the end of the month that a cyber criminal had gained unauthorised access to the organisation’s systems and had stolen the personal data of 2.3

Data breaches 118

Data breaches Insurance Personal data Ransomware 118

IT Governance

JULY 5, 2022

Welcome to our July 2022 review of phishing attacks, in which we explore the latest email scams and the tactics that cyber criminals use to trick people into handing over their personal data. The next most frequent targets were software-as-a-service and webmail providers (20.5%) and e-commerce sites and retail stores (14.6%).

Phishing 115

Phishing e-Delivery Retail Insurance 115

IBM Big Data Hub

FEBRUARY 6, 2024

Many organizations opt for a private cloud setting to protect sensitive data—a business need that is becoming increasingly important. For example, government agencies frequently choose private cloud settings for workloads that deal with confidential documents, personally identifiable information (PII) or other sensitive data.

Cloud 98

Cloud Digital transformation e-Delivery Compliance 98

CGI

APRIL 21, 2015

Retail is a prime area for achieving both objectives, and travel operators are seeking to invest in retail systems that streamline and improve processes while offering a shorter payback period and generating more revenue. Many back-office retail solutions fall short of managing all of the required functions.

Sales 40

Sales Retail Cloud Personal data 40

IBM Big Data Hub

DECEMBER 20, 2023

Common SaaS product examples include Zoom (for video conferencing) and Google Drive (for file management). Online retailers, for example, can use cloud bursting during peak holiday shopping seasons by shifting necessary workloads to public cloud infrastructure where processing demands won’t exceed capacity.

Cloud 93

Cloud Digital transformation Customer Experience Compliance 93

IT Governance

AUGUST 14, 2019

Pavur refused to name the organisations that mishandled the requests, which is wise, because it would encourage miscreants to submit their own fake DSARs and gain access to other people’s personal data. Organisations in the EU have always been required to provide copies of personal information upon request.

GDPR 45

GDPR Access Retail Personal data 45

IT Governance

OCTOBER 9, 2018

The ICO (Information Commissioner’s Office) has fined Heathrow Airport £120,000 for failing to secure sensitive personal data after a member of public found an unencrypted USB stick containing data about the airport’s staff. How did the data breach occur? However, the ICO hasn’t confirmed this.

Data breaches 50

Data breaches Personal data Libraries Information Security 50

erwin

JUNE 11, 2020

Aside from these, these data intelligence tools also provide healthcare institutions with an encompassing view of the hospital and care critical data that hospitals can use to improve the quality and level of service and increase their economic efficiency. Great examples are BMW Mini , Comfort Keepers, and Teleflora.

Analytics 103

Analytics Blockchain Artificial Intelligence Big data 103

Data Protection Report

OCTOBER 11, 2019

For example, “Household” is defined as “a person or group of people occupying a single dwelling” (999.301(h)). The proposed rules provide two examples to help determine if a business practice is discriminatory (999.336(c)). Article 3 provides rules on how requests to access or delete household information should be treated.

Sales 40

Sales Retail Privacy Access 40

Security Affairs

AUGUST 13, 2020

The attackers seek to steal documents that contain commercial secrets and employee personal data. Since then, it has conducted 26 targeted attacks on commercial organizations alone, including companies in the fields of construction , finance , consulting , retail , banking , insurance , law ,and travel.

Cloud 145

Cloud Phishing Analytics Access 145