Exercises, Retail and Security - Information Management Today

SEC Announces 2022 Examination Priorities: Private Funds, ESG, Retail, Cyber, Digital Assets Top the List

Data Matters

APRIL 6, 2022

Securities and Exchange Commission (SEC) Division of Enforcement (EXAMS or Division) issued its annual examination priorities. Private Fund, ESG Investing, Retail Investors, Cybersecurity, Fintech, and Digital Assets. Microcap, Municipal, Fixed Income, and Over-the-Counter Securities. On March 30, 2022, the U.S.

Retail

Retail Compliance Sales Risk

National Cybersecurity Alliance advocates ‘shared responsibility’ for securing the Internet

The Last Watchdog

AUGUST 2, 2018

Claire McCaskill by Russian intelligency agency hackers, as she runs for re-election, underscores the need for each individual and organization to take online privacy and security as a core part of our everyday lives. Related: Using ‘gamification’ for security training. A large retailer may spend millions on cyber security.

Cybersecurity

Cybersecurity Security Cleanup Education

Bodybuilding.com forces password reset after a security breach

Security Affairs

APRIL 23, 2019

Bad news for fitness and bodybuilding passionates, the popular online retailer Bodybuilding.com announced that hackers have broken into its systems. The popular online retailer website Bodybuilding.com announced last week that hackers have broken into its systems. ” reads the announcement published on the website.

Passwords

Passwords Security Retail Personal data

2022 Cyber Security Review of the Year

IT Governance

DECEMBER 20, 2022

Although there have still been a few surprises, with the death of Queen Elizabeth II and blazing heatwaves across the UK to name but two, it was a familiar year in the cyber security landscape. Google , Clearview AI , and Meta all receives hefty penalties in 2022, demonstrating the continued important of effective information security.

Security

Security Data breaches Ransomware Military

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

The Last Watchdog

MARCH 21, 2022

It’s time to rethink your security stack and priorities. Security and privacy are more than just adding on to what you have historically done: It’s a constant re-evaluation of your approach, where nothing is sacred except for the data you are entrusted to protect. You almost certainly need a chief information security officer (CISO).

Encryption

Encryption Cloud Privacy GDPR

Texas enacts comprehensive privacy law

Data Protection Report

JUNE 21, 2023

The new law has exclusions for Gramm-Leach-Bliley-covered financial institutions, HIPAA-covered covered entities and business associates, non-profits, institutes of higher education, and electric utilities, power generation companies, and retail electric providers. A similar requirement applies with respect to the sale of biometric data.

Privacy

Privacy Personal data Sales Retail

OpenText World Europe 2024 is coming to London

OpenText Information Management

MARCH 29, 2024

Mark will be joined by OpenText customer Srinath Kanisapakkam, chief data and analytics officer at Nationwide Building Society (NBS) , who will share how OpenText Experience Cloud solutions give NBS the scalable, secure, communication platform they needed to meet highly regulated FSI communication requirements.

IoT

IoT Analytics Cloud Communications

How FIDO 2 authentication can help achieve regulatory compliance

Thales Cloud Protection & Licensing

JUNE 24, 2021

Businesses are governed by an increasingly complex network of regulations, jurisdictions, and standards which dictate security and privacy requirements. The retail sector, especially, is a lucrative target for credential stuffing attacks , resulting in billions lost every year. Data security. Compliance with GDPR and CCPA.

Authentication

Authentication Compliance Personal data GDPR

Avoiding, Managing And Responding To Cyber Incidents

Data Protection Report

NOVEMBER 2, 2023

Regulated firms remain responsible for any data that they outsource and, in line with this, they must exercise appropriate oversight of any outsourcing – firms may want to consider, for example, what would happen if there was an issue, including whether back-up is adequate and if they would receive appropriate information if something did go wrong.

GDPR

GDPR Risk Cybersecurity Compliance

MY TAKE: Michigan’s cybersecurity readiness initiatives provide roadmap others should follow

The Last Watchdog

NOVEMBER 26, 2018

Snyder says his experience as head of Gateway Computers and as an investor in tech security startups, prior to entering politics, gave him an awareness of why putting Michigan ahead of the curve, dealing with cyber threats, would be vital. “I Getting proactive. I just wanted to be proactive about it,” he told me. College students, U.S.

Cybersecurity

Cybersecurity Military Education Government

April in Paris: OpenText World Europe 2024

OpenText Information Management

APRIL 2, 2024

He will dive into the OpenText cloud roadmap to showcase how security, trust, and governance are at the center of serving our customers with our deeply integrated solutions. Leon Van Niekerk, head of retailer Pick N Pay’s Test Center of Excellence , will join Muhi for a discussion of how the company is using OpenText™ Aviator AI technology.

IoT

IoT Retail Cloud Analytics

How to Prepare for the Metaverse

AIIM

MARCH 29, 2022

As metaverse technology stacks expand and become more available, cheaper, and connected, the conception of use cases across all sectors becomes a contagious exercise. Retailers and brands will open virtual stores, launch virtual collections, or host exclusive digital events for their targeted NFT holders. The Metaverse is Coming.

Blockchain

Blockchain Manufacturing Retail Privacy

SEC and FINRA Issue 2020 Examination Priorities (Including Cybersecurity) for Broker-Dealers and Investment Advisers

Data Matters

JANUARY 24, 2020

Securities and Exchange Commission’s (SEC) Office of Compliance Inspections and Examinations (OCIE) and the Financial Industry Regulatory Authority (FINRA) recently published their examination priorities (together, the Examination Priorities) for the 2020 calendar year. Protection of Retail Investors . Retail-Targeted Investments.

Cybersecurity

Cybersecurity Retail Compliance Marketing

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Hunton Privacy

DECEMBER 1, 2020

Carrefour France and Carrefour Banque are both affiliates of the French retail group, the Carrefour Group. Between June 8, 2018 and April 6, 2019, the CNIL received 15 complaints from individuals relating to the exercise of their data protection rights with affiliates of the Carrefour Group.

GDPR

GDPR Personal data Data collection Marketing

A Practical Guide to Cyber Incident Response

IT Governance

MAY 24, 2024

About Vanessa Horton Vanessa holds a degree in computer forensics, as well as a number of cyber security and forensics qualifications. Now, she’s part of our cyber incident response team, helping clients with their cyber security requirements. Return to contents Detection – security monitoring and what is ‘normal’?

Security

Security Risk Ransomware Phishing

SEC and FINRA Issue 2020 Examination Priorities for Broker-Dealers and Investment Advisers

Data Matters

FEBRUARY 20, 2020

Securities and Exchange Commission’s (SEC) Office of Compliance Inspections and Examinations (OCIE) and the Financial Industry Regulatory Authority (FINRA) recently published their examination priorities (together, the Examination Priorities) for the 2020 calendar year. Protection of Retail Investors . Retail-Targeted Investments.

Retail

Retail Compliance Marketing Risk

Does your use of CCTV comply with the GDPR?

IT Governance

OCTOBER 3, 2019

You must tell people when you’re collecting their personal information to give them the opportunity to exercise their data subject rights. Many retailers sell signs like this, leaving the purpose blank so that you can fill it in with the appropriate message. That will generally be security personnel and management.

GDPR

GDPR Privacy Retail Personal data

Application modernization overview

IBM Big Data Hub

NOVEMBER 24, 2023

Discovery focuses on understanding legacy application, infrastructure, data, interaction between applications, services and data and other aspects like security. Further, for re-write initiatives, one needs to map functional capabilities to legacy application context so as to perform effective domain-driven design/decomposition exercises.

Cloud

Cloud Customer Experience Marketing Mining

Processing of riders’ personal data ? The Italian Data Protection Authority sanctions a food delivery company

Privacy and Cybersecurity Law

JULY 26, 2021

Security measures in place. In the case under analysis, the amount of € 2.6 The processing activities, carried out in breach of the applicable legislation, affected and continue to affect a considerable number of stakeholders (identified by the Garante as 18,864 individuals).

Personal data

Personal data GDPR e-Delivery Communications

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

Think: an online retailer that stores customers’ email addresses to send order updates. The only processing operations exempt from the GDPR are national security and law enforcement activities and purely personal uses of data. Storage limitation: Organizations should securely dispose of data as soon as its purpose is fulfilled.

GDPR

GDPR Compliance Personal data Privacy

How Organisations Are Failing to Process Personal Data Lawfully Under the GDPR

IT Governance

NOVEMBER 4, 2024

If you’re a luxury retailer, or selling high-ticket items like fridge freezers, your expectations are different to an organisation that sells, say, monthly subscriptions. To get notified of future Q&As and other free resources like this, subscribe to our free weekly newsletter: the Security Spotlight. Finding this interview useful?

Personal data

Personal data GDPR Marketing Archiving

The Economy of Things: the next value lever for telcos

IBM Big Data Hub

JULY 11, 2023

For example, a fleet truck outfitted with an EoT-secure identity and wallet is able to pay for its own fuel at a similarly EoT-enabled fuel pump without the driver having to open an app or provide a credit card.

IoT

IoT Artificial Intelligence Agriculture Blockchain

Mic Drop: California AG releases long-awaited CCPA Rulemaking

Data Protection Report

OCTOBER 11, 2019

The rules also define “Third-party identity verification service” as “a security process offered by an independent third-party who verifies the identity of the consumer making a request to the business.” The rules are not final. The business must take into account its primary method of interacting with customers. 999.313 (c)(4)).

Sales

Sales Retail Privacy Access

The Week in Cyber Security and Data Privacy: 27 November – 3 December 2023

IT Governance

DECEMBER 5, 2023

The security researcher Bob Diachenko of SecurityDiscovery first identified the exposed information in mid-September. We’ve also found 9 organisations providing a significant update on a previously disclosed incident. Organisation name Sector Location Data exfiltrated?

Data Privacy

Data Privacy Privacy Manufacturing Retail

Consciously Consider Early Adoption

CGI

FEBRUARY 20, 2013

And a parallel question should exercise CIOs: How soon should the next major trend feature in my strategic planning? . Empower customers by overlaying customer reviews, social media commentary and comparative price data (retail). Can you be sure of secure, uninterrupted connectivity?

Military

Military Retail Cloud Analytics

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

California law also requires businesses that suffer a breach of security to disclose the breach to consumers, and in some instances law enforcement, if sensitive information is compromised. This page will enable consumers to exercise the right to opt-out of the sale of their personal information. Anti-Discrimination Provisions.

Privacy

Privacy Sales Compliance Government

CCTV and the GDPR – an overview for small businesses

IT Governance

JULY 25, 2018

If your business uses CCTV – whether for security or employee monitoring purposes – and you’re unsure about your obligations under the new law and how they differ from those of the DPA (Data Protection Act) 1998, this blog outlines some of the areas you need to consider. Processed securely.

GDPR

GDPR Personal data Privacy Access

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

IT Governance

FEBRUARY 6, 2024

Enforcement Uber fined €10 million for GDPR breaches The Dutch data protection authority, Autoriteit Persoonsgegevens, has fined Uber €10 million for failing to be transparent about its data retention practices and making it difficult for drivers to exercise their data privacy rights.

Data Privacy

Data Privacy Privacy Insurance Security

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

California law also requires businesses that suffer a breach of security to disclose the breach to consumers, and in some instances law enforcement, if sensitive information is compromised. This page will enable consumers to exercise the right to opt-out of the sale of their personal information. Anti-Discrimination Provisions.

Privacy

Privacy Sales Education Compliance

What Db2 for z/OS People Should Know About Data Fabric

Robert's Db2

AUGUST 23, 2022

Basically, by eliminating friction that would otherwise impede data access, discovery, utilization and integration - and doing that without compromising data security. That exercise is facilitated if you think of a data fabric as something that enables a “data store,” in which people “shop for data.” when the data is needed).

Metadata

Metadata Cloud Access Government

Security Affairs newsletter Round 298

Security Affairs

JANUARY 24, 2021

Every week the best security articles from Security Affairs free for you in your email box. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. The post Security Affairs newsletter Round 298 appeared first on Security Affairs. Pierluigi Paganini.

Security

Security Retail Libraries GDPR

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

Data Matters

OCTOBER 23, 2019

Moreover, if the business operates a website, but primarily interacts with consumers in retail locations, it will be required to add a third option that allows consumers to submit a form that can be submitted in person at those locations. Security Concerns. Specific Guidance on Right to Know Requests.

Sales

Sales Privacy Passwords Compliance

The Hacker Mind: Hacking IoT

ForAllSecure

APRIL 22, 2021

It seems everything smart is hackable, with IoT startups sometimes repeating security mistakes first made decades ago. How then does one start securing it? Welcome to the hacker by original podcast from for all secure, it's about challenging our expectations about the people who hack for a living.

IoT

IoT Communications Security IT

The Hacker Mind: Hacking IoT

ForAllSecure

APRIL 22, 2021

It seems everything smart is hackable, with IoT startups sometimes repeating security mistakes first made decades ago. How then does one start securing it? Welcome to the hacker by original podcast from for all secure, it's about challenging our expectations about the people who hack for a living.

IoT

IoT Communications Security IT

California passes major legislation, expanding consumer privacy rights and legal exposure for US and global companies

Data Protection Report

JUNE 29, 2018

Similar to GDPR, the law does contain some exceptions, including: information necessary to complete transactions; detect security breaches; protect against illegal activity; or to enable internal uses that are reasonably aligned with the expectations of the consumer based on the consumer’s relationship with the business.

Privacy

Privacy GDPR Personal data Risk

California Passes Major Legislation, Expanding Consumer Privacy Rights and Legal Exposure for US and Global Companies

Data Protection Report

JUNE 29, 2018

Similar to GDPR, the law does contain some exceptions, including: information necessary to complete transactions; detect security breaches; protect against illegal activity; or to enable internal uses that are reasonably aligned with the expectations of the consumer based on the consumer’s relationship with the business.

Privacy

Privacy GDPR Personal data Risk

Regulatory Update: NAIC Summer 2020 National Meeting

Data Matters

SEPTEMBER 3, 2020

The Annuity Suitability Working Group (ASWG) led the NAIC’s multi-year efforts to develop revisions to the Suitability in Annuity Transactions Model Regulation (SAT) to incorporate a requirement for producers to act in the “best interest” of a retail customer when making a recommendation of an annuity. Revisions to SSAP No.

Insurance

Insurance Paper Artificial Intelligence Big data

The Hacker Mind Podcast: Going Passwordless

ForAllSecure

JANUARY 19, 2022

Is there something more secure? Simon Moffatt from CyberHut joins The Hacker Mind to discuss how identity and access management (IAM) is fundamental to everything we do online today, and why even multi-factor access, while an improvement, needs to yield to more effortless and more secure passwordless technology that’s coming soon.

Passwords

Passwords Authentication Access Data breaches

Council of the European Union Releases Draft Compromise Text on the Proposed EU Data Protection Regulation

Hunton Privacy

JUNE 4, 2013

The first extension likely will be particularly appreciated by data controllers operating in the financial and retail sectors. The establishment, exercise or defense of legal claims is introduced as another possible specific ground for the lawful processing of sensitive personal data. Reduced Role of the European Commission.

Personal data

Personal data Risk Data breaches Marketing

What you need to know about the CCPA rules on AI and automated decision-making technology

IBM Big Data Hub

MAY 3, 2024

Learn how IBM Security® Guardium® Insights helps organizations meet their cybersecurity and data compliance regulations. For example, a digital retailer can have a web form for users to complete. Exemptions Organizations do not need to let consumers opt out of ADMT used for safety, security, and fraud prevention.

Artificial Intelligence

Artificial Intelligence Privacy Compliance Risk

A new era for customer data – could security be ‘the new green’ for businesses?

Thales Cloud Protection & Licensing

OCTOBER 10, 2018

I now see cyber security – and more specifically, data security – positioned at the edge of a similar tipping point. With this only set to continue, there is every chance we may soon see organisations using data security to seize a competitive advantage. GDPR: to help or hinder? A personal interest.

GDPR

GDPR Security Marketing Data breaches

Key takeaways for the private sector from The Bridges v South Wales police facial recognition case

Data Protection Report

AUGUST 27, 2020

The court held that a weighing exercise had been correctly conducted and that the potential benefits outweighed the impact on Mr Bridges which was deemed to be minor. In this case, the CA agreed with the lower court that the SWP’s use of AFR was in fact a proportionate interference with Article 8 rights under Article 8(2).

Risk

Risk Retail IT GDPR

SEC Announces 2022 Examination Priorities: Private Funds, ESG, Retail, Cyber, Digital Assets Top the List

National Cybersecurity Alliance advocates ‘shared responsibility’ for securing the Internet

Trending Sources

Bodybuilding.com forces password reset after a security breach

2022 Cyber Security Review of the Year

GUEST ESSAY: Leveraging best practices and an open standard to protect corporate data

Texas enacts comprehensive privacy law

OpenText World Europe 2024 is coming to London

How FIDO 2 authentication can help achieve regulatory compliance

Avoiding, Managing And Responding To Cyber Incidents

MY TAKE: Michigan’s cybersecurity readiness initiatives provide roadmap others should follow

April in Paris: OpenText World Europe 2024

How to Prepare for the Metaverse

SEC and FINRA Issue 2020 Examination Priorities (Including Cybersecurity) for Broker-Dealers and Investment Advisers

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

A Practical Guide to Cyber Incident Response

SEC and FINRA Issue 2020 Examination Priorities for Broker-Dealers and Investment Advisers

Does your use of CCTV comply with the GDPR?

Application modernization overview

Processing of riders’ personal data ? The Italian Data Protection Authority sanctions a food delivery company

How to implement the General Data Protection Regulation (GDPR)

How Organisations Are Failing to Process Personal Data Lawfully Under the GDPR

The Economy of Things: the next value lever for telcos

Mic Drop: California AG releases long-awaited CCPA Rulemaking

The Week in Cyber Security and Data Privacy: 27 November – 3 December 2023

Consciously Consider Early Adoption

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

CCTV and the GDPR – an overview for small businesses

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

What Db2 for z/OS People Should Know About Data Fabric

Security Affairs newsletter Round 298

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

The Hacker Mind: Hacking IoT

The Hacker Mind: Hacking IoT

California passes major legislation, expanding consumer privacy rights and legal exposure for US and global companies

California Passes Major Legislation, Expanding Consumer Privacy Rights and Legal Exposure for US and Global Companies

Regulatory Update: NAIC Summer 2020 National Meeting

The Hacker Mind Podcast: Going Passwordless

Council of the European Union Releases Draft Compromise Text on the Proposed EU Data Protection Regulation

What you need to know about the CCPA rules on AI and automated decision-making technology

A new era for customer data – could security be ‘the new green’ for businesses?

Key takeaways for the private sector from The Bridges v South Wales police facial recognition case

Stay Connected