Thales Cloud Protection & Licensing

OCTOBER 28, 2024

The Relevance of Privacy-Preserving Techniques and Generative AI to DORA Legislation madhav Tue, 10/29/2024 - 04:55 The increasing reliance on digital technologies has created a complex landscape of risks, especially in critical sectors like finance. The world has changed.

Privacy 62

Privacy Encryption Compliance Risk 62

Data Breach Today

AUGUST 26, 2021

Survey: Cybersecurity, Regulatory Concerns May Slow Digital Asset Adoption Although a majority of financial services executives predict that cryptocurrency will replace or rival fiat currency within the next five to 10 years, they say cybersecurity, regulatory and privacy issues are among the biggest obstacles to its adoption, according to a survey (..)

Financial Services 208

Financial Services Cybersecurity Security Privacy 208

Security Affairs

MARCH 17, 2020

Advantage and Argus seem to be the same company working under two different names, they offer funding and startup capital to business owners without access to traditional lending and financial services. “Furthermore, a leak like this may attract the attention of US financial and data security regulators.”

Financial Services 357

Financial Services Access Privacy Security 357

Hunton Privacy

JANUARY 20, 2023

On January 20, 2023, The Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth published “Digital Assets and Privacy,” a discussion paper compiling insights from workshops with CIPL member companies that explored the intersection of privacy and digital assets, with a particular focus on blockchain technology.

Paper 134

Paper Blockchain Privacy Financial Services 134

Security Affairs

SEPTEMBER 9, 2023

So, after multiple attempts to contact with management of MYMC, it becomes clear for us, that management of MYMC doesn't care about the privacy of own patients, sad to state this fact but it's true. Expect for the updates and keep your privacy in your own hands." Come on guys, seriously?

Ransomware 336

Ransomware Phishing Encryption Privacy 336

DLA Piper Privacy Matters

NOVEMBER 18, 2021

Should data privacy be embraced as a business opportunity now, rather than viewed as a business risk only for many in this sector?

Privacy 133

Privacy Digital transformation Government Financial Services 133

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. GDPR, the EU’s flagship data privacy and “right to be forgotten” regulation, has made the stakes of a data breach higher than ever. GDPR-style data privacy laws came to the U.S. with the California Consumer Privacy Act (CCPA) effective Jan.

Data Privacy 145

Data Privacy Compliance Privacy Security 145

OpenText Information Management

AUGUST 26, 2024

Fast, easy, personalized, and engaging experiences are the name of the game in financial services. Here are six ways financial services organizations are tapping into the power of conversational experiences with mission-critical messaging: 1. Multi-factor authentication Security and privacy are key to building trust.

Financial Services 69

Financial Services Marketing Insurance Communications 69

Security Affairs

DECEMBER 26, 2023

The absence of robust identity protection programs will result in substantial economic losses for businesses (especially, financial services) and pose privacy risks for consumers.

Energy and Utilities 348

Energy and Utilities Artificial Intelligence Ransomware Data breaches 348

Hunton Privacy

FEBRUARY 22, 2021

On February 16, 2021, the New York Department of Financial Services (“NYDFS”) issued a Cyber Fraud Alert (the “Alert”) to regulated entities in light of a growing campaign to steal Nonpublic Information (“NPI”), as defined under New York law, from public-facing websites that provide instant quotes for products like auto insurance (“Instant Quote Websites”). (..)

Financial Services 86

Financial Services Insurance Cybersecurity Analytics 86

DLA Piper Privacy Matters

AUGUST 8, 2023

under the PIPL and related measures) continue to apply, save that in addition PBOC’s approval is required if a Data Handler plans to share any Regulated Data with any international organizations or foreign financial services administrative authorities.

Financial Services 98

Financial Services Personal data Compliance Data collection 98

ARMA International

NOVEMBER 7, 2019

The scope of a records and information management (RIM) program in financial services can seem overwhelming. Compared to other industries, the complexities of managing records and information in financial services are arguably some of the toughest to solve, primarily because of the intense regulatory scrutiny.

Financial Services 60

Financial Services Communications Compliance Risk 60

Data Protector

JANUARY 29, 2017

Does it really mean that in 481 days, European privacy regulators will be heralding the first megafine for non-compliance with one of the GDPR’s more obscure requirements? And also, what standard of evidence is necessary to be generated, just in case privacy regulators exercise their Article 30(4) right to request it. I think not.

GDPR 136

GDPR Privacy Compliance Personal data 136

Data Matters

MAY 8, 2023

Critical ICT third-party service providers, who are providing services to regulated financial entities, will also be directly regulated under DORA and subject to regulatory supervision by a regulator to be established under DORA (a so-called ‘Lead Overseer’).

Financial Services 73

Financial Services Communications Cybersecurity Privacy 73

Data Protection Report

JANUARY 30, 2023

Late December and early January tend to be a busy time for everyone, so you may have missed a privacy update or two during that time. Colorado’s privacy law does not have any “data localization” or “international data transfer” requirements. Answers are below. The list appears in proposed rule 6.04.A. 2. b. 8. b.

Privacy 115

Privacy Cybersecurity Personal data Insurance 115

Thales Cloud Protection & Licensing

JANUARY 16, 2024

Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds madhav Wed, 01/17/2024 - 05:46 The Digital Operational Resilience Act (DORA) will apply to the EU financial sector from 17 January 2025. As set out in its Article 2, DORA applies to the entire financial services sector.

Financial Services 83

Financial Services Cloud Cybersecurity Encryption 83

Data Matters

SEPTEMBER 20, 2018

Office of the Comptroller of the Currency (OCC) announced its decision (the Fintech Charter Decision) to begin accepting applications from financial technology (fintech) companies for special purpose national bank charters. The Fintech Charter Decision is discussed in greater detail in a prior Sidley Banking and Financial Services Update.

Financial Services 67

Financial Services Paper Marketing Privacy 67

IBM Big Data Hub

JANUARY 16, 2024

The start of 2024 brings forth many questions as to what we can expect in the year ahead, especially in the financial services industry, where technological advances have skyrocketed and added complexities to an already turbulent landscape.

Financial Services 48

Financial Services Customer Experience Cloud Digital transformation 48

Krebs on Security

JUNE 18, 2021

Aside from its core business competency — checking to make sure the property at issue in any real estate transaction is unencumbered by any liens or other legal claims against it — First American basically has one job: Protect the privacy and security of all these documents.

Insurance 332

Insurance Risk Financial Services Mining 332

Security Affairs

MARCH 18, 2019

One of the main reason why companies are launching security centric features is, they value their customer’s data, privacy and security. As mentioned in their privacy policy , Customers or individuals granted access to a Workspace by a Customer (“Authorized Users”) routinely submit Customer Data to Slack when using the Services.

Encryption 266

Encryption Risk Financial Services Privacy 266

Data Matters

FEBRUARY 10, 2021

On February 4, 2021, the New York Department of Financial Services (NYDFS) issued Circular Letter No. The post New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance appeared first on Data Matters Privacy Blog. 1 See W.B.

Insurance 78

Insurance Financial Services Cybersecurity Risk 78

Krebs on Security

AUGUST 13, 2021

Come check out Antinalysis, the new address risk analyzer,” reads the service’s announcement, pointing to a link only accessible via ToR. “To date, this type of analysis has been used primarily by regulated financial service providers.” ” That may not be entirely true.

Blockchain 340

Blockchain Marketing Analytics Ransomware 340

Data Protection Report

DECEMBER 23, 2019

This blogpost summarises our recent webinar: “ An urgent message from Berlin: The importance of record retention in privacy and cybersecurity ”. The authority claimed a violation of data minimisation and privacy by design principles under the EU General Data Protection Regulation (GDPR). . Why should this be a high priority project?

Privacy 144

Privacy Compliance Personal data Risk 144

Thales Cloud Protection & Licensing

NOVEMBER 18, 2024

Identity and Access Management (IAM) The 2024 Thales Data Threat Report (DTR) Financial Services Edition revealed that only 59% of financial services organizations cite achieving security consistency across workforce and non-workforce identities. The same can become a reality for private businesses.

Financial Services 71

Financial Services Encryption Digital transformation Compliance 71

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services 67

Financial Services Cybersecurity Insurance Risk 67

Hunton Privacy

APRIL 22, 2020

On April 13, 2020, the New York Department of Financial Services (“NYDFS”) issued guidance (“April guidance”) to all New York State entities covered under NYDFS’s cybersecurity regulation regarding assessing and addressing heightened cybersecurity risks due to the COVID-19 pandemic.

Financial Services 71

Financial Services Cybersecurity Risk Phishing 71

AIIM

MAY 19, 2020

Or maybe into privacy? financial services sector is different in practice than RM for a law firm, or a Canadian municipal government, or a multinational energy firm. International Association of Privacy Professionals (IAPP). Are you a records manager that wants to move into information governance? You should!)

Records Management 222

Records Management Privacy Government Information governance 222

Security Affairs

JUNE 20, 2023

Data sovereignty also encompasses the rights and regulations governing data storage, processing, and transfer and often intersects with privacy, security, and legal considerations. When data is sovereign, an organization retains control and ownership over that data.

Compliance 246

Compliance Cybersecurity Risk Encryption 246

Hunton Privacy

NOVEMBER 1, 2022

The Report discusses the need to adapt existing policy frameworks to account for the change brought about by DeFi to the underlying information structure upon which financial services are provided. The Report emphasizes that these risks do not necessarily require external public intervention.

Financial Services 115

Financial Services Blockchain Risk Marketing 115

Thales Cloud Protection & Licensing

JANUARY 16, 2025

However, as important as PCI may be, United States financial services organizations operate in one of the worlds most stringent and complex compliance landscapes. Understanding the US FinServ Compliance Landscape The US financial services industry is subject to a vast number of laws and regulations.

Compliance 62

Compliance Financial Services Encryption Insurance 62

Data Matters

FEBRUARY 20, 2019

On January 18, 2019, the New York State Department of Financial Services (NYDFS) issued Circular Letter 2019-1 (the Circular Letter), addressing insurers’ use of external consumer data and information sources in underwriting for life insurance.

Insurance 67

Insurance Financial Services Compliance Retail 67

Hunton Privacy

DECEMBER 4, 2023

On November 28, 2023, the New York Department of Financial Services (“NYDFS”) announced that First American Title Insurance Company (“First American”), the second-largest title insurance company in the United States, would pay a $1 million penalty for violations of the NYDFS Cybersecurity Regulation in connection with a 2019 data breach.

Financial Services 64

Financial Services Data breaches Insurance Cybersecurity 64

Krebs on Security

NOVEMBER 19, 2021

In reality, the fraudster initiates a transaction — such as the “forgot password” feature on the financial institution’s site — which is what generates the authentication passcode delivered to the member.

IT 362

IT Passwords Authentication Phishing 362

Data Matters

AUGUST 14, 2024

The RTS are intended to assist with the enhancement of the digital operational resilience of the financial services sector by improving in-scope entities’ ICT risk management, specifically with respect to the issue of ICT subcontracting.

Financial Services 102

Financial Services Privacy Risk Cybersecurity 102

The Last Watchdog

SEPTEMBER 21, 2018

Compliance with existing and fresh data security and privacy rules and regulations is another variable driving companies to start introducing SecOps into their workflow. As the speed of innovation increases, there is also a correlated rise in security risks.

Cloud 203

Cloud Security Mining Financial Services 203

Hunton Privacy

NOVEMBER 23, 2022

On November 9, 2022, the New York Department of Financial Services (NYDFS) released its second, proposed amendments to the Part 500 Cybersecurity Rule. The proposed amendments revise several aspects of the draft Cybersecurity Rule amendments released on July 29, 2022.

Financial Services 55

Financial Services Cybersecurity Ransomware Risk 55

Schneier on Security

JANUARY 31, 2024

By separating which companies see what parts of our data, and in what contexts, we can gain control over data about ourselves (improving privacy) and harden cloud infrastructure against hacks (improving security). The best way for financial services firms to meet the CFPB’s rules would be to apply the decoupling principle broadly.

Financial Services 127

Financial Services Privacy Personal data Marketing 127