GDPR, Information Security and Marketing - Information Management Today

Maintaining GDPR and Data Privacy Compliance in 2024

IT Governance

FEBRUARY 16, 2024

Expert tips from Alan Calder Alan is the Group CEO of GRC International Group PLC, the parent company of IT Governance, and is an acknowledged international security guru. In addition, 14 US states now have their own data privacy laws, and GDPR-like legislation has proliferated across the world.

Data Privacy

Data Privacy GDPR Compliance Privacy

A guide to cyber security for marketing agencies

IT Governance

FEBRUARY 9, 2021

If your marketing agency is under the impression that cyber security is strictly an IT issue, you should think again. Effective security is a company-wide commitment, and marketers play one of the most crucial roles. So, what should marketing agencies do to reduce the risk of cyber attacks and protect their reputation?

Marketing

Marketing Security GDPR Privacy

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. Even the world’s biggest businesses are not free from GDPR woes. Many businesses find it hard to implement GDPR requirements because the law is not only complex but also leaves a lot up to discretion.

GDPR

GDPR Compliance Personal data Privacy

Webinars

Improving the Accuracy of Generative AI Systems: A Structured Approach

MORE WEBINARS

The Re-Permissioning Dilemma Under GDPR

AIIM

JUNE 26, 2018

Now that the EU General Data Protection Regulation (GDPR) is in force organizations are ramping up their efforts to re-fresh data subject consent obtained prior to GDPR and under the EU Data Protection Directive 95/46/EC by virtue of which opt-out, or implied consent was permissible. Furthermore, the.

GDPR

GDPR Privacy Marketing Sales

ICO Publishes Report on Compliance in Direct Marketing Data Broking Sector

Hunton Privacy

NOVEMBER 5, 2020

On October 27, 2020, the UK Information Commissioner’s Office (“ICO”) published a report following its investigation into data protection compliance in the direct marketing data broking sector, alongside its enforcement action against Experian. Three such hubs were the three CRAs audited as part of this investigation.

Marketing

Marketing Compliance Personal data GDPR

GDPR and The Data Governance Imperative

AIIM

SEPTEMBER 12, 2018

You might also be interested in: The Re-Permissioning Dilemma Under GDPR. Data Privacy and Open Data: Secondary Uses under GDPR. Three Critical Steps for GDPR Compliance. Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR Compliance Starts with Data Discovery.

GDPR

GDPR Government Information governance Compliance

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

AIIM

AUGUST 8, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. What kinds of special pain points does unstructured information (i.e.,

GDPR

GDPR Compliance Digital preservation Artificial Intelligence

Guest Post - Three Critical Steps for GDPR Compliance

AIIM

JANUARY 17, 2018

The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. What Do the GDPR and new Privacy Laws Mean for U.S. GDPR Compliance Starts with Data Discovery. GDPR Compliance Starts with Data Discovery. Compliance with GDPR is just a short five months away.

GDPR

GDPR Compliance Data collection Privacy

Guest Post -- GDPR Compliance starts with Data Discovery

AIIM

NOVEMBER 16, 2017

The Privacy and Security Dichotomy. GDPR and Cross Border Data Flows between the EU and the US: Current State of the Law. What Do the GDPR and new Privacy Laws Mean for U.S. 50% of organizations not ready for GDPR. What should your organization budget for GDPR? Compliance starts with data discovery.

GDPR

GDPR Compliance Privacy Paper

GDPR After the Deadline — Part 2 of 3 — Where are organizations in their GDPR journey and how much did they spend to get there?

AIIM

AUGUST 1, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. What kinds of special pain points does unstructured information (i.e.,

GDPR

GDPR Compliance Privacy Marketing

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

AIIM

AUGUST 8, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. What kinds of special pain points does unstructured information (i.e.,

GDPR

GDPR Compliance Digital preservation Artificial Intelligence

GDPR After the Deadline — Part 2 of 3 — Where are organizations in their GDPR journey and how much did they spend to get there?

AIIM

AUGUST 1, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. What kinds of special pain points does unstructured information (i.e.,

GDPR

GDPR Compliance Privacy Marketing

GDPR: it’s the final countdown

Thales Cloud Protection & Licensing

APRIL 25, 2018

Jim DeLorenzo, Solutions Marketing Manager, Thales eSecurity. By now, few businesses can be unaware that there is just one month to go until the EU General Data Protection Regulation, better known as the GDPR, comes into force. The GDPR is almost upon us. Don’t waste any time.

GDPR

GDPR Encryption Data breaches Personal data

What Is Data Minimisation? Definition & Examples

IT Governance

APRIL 18, 2023

Data minimisation is a key part of information security and the GDPR (General Data Protection Regulation) in particular. Its principles are at the heart of effective data protection practices, and are intended to prevent privacy breaches and minimise the damage when security incidents occur. What is data minimisation?

GDPR

GDPR Personal data Data breaches Marketing

The GDPR: Everything you need to know about data controllers and data processors

IT Governance

NOVEMBER 14, 2018

Data controllers and data processors are an integral part of the GDPR. The terms ‘data controller’ and ‘data processor’ have been around for years, but it’s only since the EU GDPR (General Data Protection Regulation) took effect that they’ve been scrutinised. That’s understandable. The basics. Responsibilities of the data processor.

GDPR

GDPR Retail Data collection Personal data

Why risk assessments are essential for GDPR compliance

IT Governance

OCTOBER 15, 2019

Any organisation that’s required to comply with the GDPR (General Data Protection Regulation) must conduct regular risk assessments. However, the GDPR is clear that data is also vulnerable to accidental or unlawful destruction, loss or disclosure. The GDPR risk assessment methodology. Get started with vsRisk.

GDPR

GDPR Risk Compliance Personal data

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

AIIM

JULY 24, 2018

You might also be interested in: The Re-Permissioning Dilemma Under GDPR. Data Privacy and Open Data: Secondary Uses under GDPR. Three Critical Steps for GDPR Compliance. Mitigate Data Privacy and Security Risks with Machine Learning. The Privacy and Security Dichotomy. GDPR Compliance Starts with Data Discovery.

GDPR

GDPR Compliance Privacy Data Privacy

Privacy Advocacy Organization Files GDPR Complaints Against Data Brokers

Hunton Privacy

NOVEMBER 13, 2018

On November 8, 2018, Privacy International (“Privacy”), a non-profit organization “dedicated to defending the right to privacy around the world,” filed complaints under the GDPR against consumer marketing data brokers Acxiom and Oracle. and safeguards ( i.e. , data protection impact assessments, data protection by design, etc.)

GDPR

GDPR Privacy Personal data Marketing

GDPR After the Deadline — Part 1 of 3 — The emerging challenges tied to information privacy and security

AIIM

JULY 25, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. What kinds of special pain points does unstructured information (i.e.,

GDPR

GDPR Privacy Artificial Intelligence Security

GDPR After the Deadline — Part 1 of 3 — The emerging challenges tied to information privacy and security

AIIM

JULY 25, 2018

The GDPR’s May 25, 2018 deadline set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. We just published a new market research report on GDPR. What kinds of special pain points does unstructured information (i.e.,

GDPR

GDPR Privacy Artificial Intelligence Security

Why is a DPIA required by the GDPR?

IT Governance

APRIL 23, 2018

The new EU General Data Protection Regulation (GDPR) confirms that privacy must be designed by default into the processing of personal data. Such projects could include a new business acquisition, a new service, or even a new marketing campaign targeting a group of prospects. Privacy by design approach.

GDPR

GDPR Personal data Privacy Data breaches

Belgian DPA Approves First EU Data Protection Code of Conduct for Cloud Service Providers

Hunton Privacy

MAY 24, 2021

The EU Cloud CoC is the first transnational EU code of conduct since the entry into force of the EU General Data Protection Regulation (the “GDPR”). The EU Cloud CoC aims at creating a baseline for implementation of GDPR for all the service types of the cloud market. e) of the GDPR.

Cloud

Cloud GDPR Compliance Personal data

Weekly podcast: Exactis, BetVictor, Ticketmaster, and GDPR complaints

IT Governance

JUNE 29, 2018

This week, we discuss the apparent leak of 340 million data records, a vulnerability that exposed sensitive BetVictor data, a data breach affecting up to 40,000 Ticketmaster customers, and the number of GDPR complaints since 25 May. The BBC reports that Ticketmaster is “confident” it has complied with the GDPR.

GDPR

GDPR Passwords Data breaches Access

ICO Reflects on a Year of GDPR

Hunton Privacy

JUNE 12, 2019

On May 30, 2019, the UK Information Commissioner’s Office (“ICO”) published its reflections on the year that has passed since the implementation of the EU General Data Protection Regulation (“GDPR”), together with a blog post by Elizabeth Denham, the UK Information Commissioner.

GDPR

GDPR Paper Compliance Data breaches

Irish Data Protection Commission fined Meta $414 Million

Security Affairs

JANUARY 5, 2023

“Final decisions have now been made by the DPC in which it has fined Meta Ireland €210 million (for breaches of the GDPR relating to its Facebook service), and €180 million (for breaches in relation to its Instagram service).” Both complaints were made on the date on which the GDPR came into operation, on 25 May 2018.

GDPR

GDPR Compliance Marketing IT

Sam McNicholls-Novoa on CyberComply

IT Governance

DECEMBER 20, 2023

Making compliance easy with our Cloud-based solution CyberComply is a Cloud-based, end-to-end solution that simplifies compliance with a range of cyber security and data privacy standards and laws, including ISO 27001 , the GDPR (General Data Protection Regulation), and more. The number one software for GDPR compliance.

GDPR

GDPR Compliance Data Privacy Privacy

Building cyber security careers

IT Governance

OCTOBER 21, 2021

The UK government’s Cyber security skills in the UK labour market 2021 report estimates that approximately 680,000 UK businesses (50% of those surveyed) have a basic skills gap. Information security is a broader category that protects all information assets, whether in hard copy or digital form. UK skills gap.

Security

Security Information Security GDPR Data Privacy

Brazilian Data Protection Law Update – Delayed Enforcement, Lack of Administrative Structure, and Market Unreadiness

Data Matters

JULY 22, 2020

Considering these new circumstances, the imposition of new costs in connection to the LGPD may not be welcomed by market actors, even if those costs were foreseeable when the law was initially published. On the other hand, the current unconventional scenario may trigger the interest in, or need for, unorthodox acts.

Marketing

Marketing Compliance Personal data GDPR

UK Introduces Data Protection and Digital Information (No. 2) Bill

Hunton Privacy

MARCH 8, 2023

According to UK government in its press release , the Bill will “introduce a simple, clear and business-friendly framework that will not be difficult or costly to implement – taking the best elements of GDPR and providing businesses with more flexibility about how they comply with the new data laws”.

Personal data

Personal data GDPR Government Marketing

CNIL Fines Google €50 Million for Alleged GDPR Violations

Hunton Privacy

JANUARY 23, 2019

This fine against Google is the first fine imposed by the CNIL under the GDPR and the highest fine imposed by a supervisory authority within the EU under the GDPR to date. Alleged GDPR Violations. In addition, the CNIL also found that users’ consent was not specific or unambiguous, as required by the GDPR. Background.

GDPR

GDPR Personal data Privacy Access

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

The wait is finally over—this Friday the European Union General Data Protection Regulation (GDPR) will come into force. However, the challenges of GDPR certainly don’t end on the date this law goes into implementation. Many of our clients ask us when and how they may be called upon to demonstrate compliance with the GDPR.

GDPR

GDPR Personal data Compliance Data breaches

Why Cyber Insurance is Essential in 2022

IT Governance

MAY 24, 2022

Even with these actions, you’re likely to see a dip in customers and clients as they lose trust in your ability to protect their sensitive information. Organisations can also find useful guidance in ISO 27001 , the international standard that describes best practice for information security management.

Insurance

Insurance Data breaches GDPR Ransomware

CIPL Submits Response to the EDPB Guidelines on Virtual Voice Assistants

Hunton Privacy

APRIL 27, 2021

The EDPB’s Guidelines are intended to help organizations identify the risks associated with virtual voice assistants (“VVAs”), implement the relevant mitigation measures and provide guidance regarding the application of the EU General Data Protection Regulation (“GDPR”).

GDPR

GDPR Artificial Intelligence Privacy Personal data

GUEST ESSAY: ‘CyberXchange’ presents a much-needed platform for cybersecurity purchases

The Last Watchdog

OCTOBER 19, 2020

For organizations looking to improve their security posture, this is causing confusion and vendor fatigue, especially for companies that don’t have a full time Chief Information Security Officer. They are responding to a trend of companies moving to meet rising compliance requirements, such as PCI-DSS and GDPR.

Cybersecurity

Cybersecurity B2B Sales Compliance

Weekly podcast: Yahoo hacker sentenced, acoustic DoS attack and GDPR compliance fails

IT Governance

JUNE 1, 2018

It will be reporting the incident, as mandated by the GDPR. It’s also worth reminding you that, as well as ensuring you comply with the GDPR, it’s worth checking you comply with the PECR (that’s the Privacy and Electronic Communications (EU Directive) Regulations 2003). Ahhh… compliance.

GDPR

GDPR Compliance Computer and Electronics Data breaches

ICO Confirms UK Firms May Rely on Public Interest Derogation for SEC Transfers

Hunton Privacy

JANUARY 29, 2021

On January 19, 2021, the UK Information Commissioner’s Office (“ICO”) published its analysis of the application of the UK General Data Protection Regulation (the “UK GDPR”) to transfers from UK-based firms or branches that are registered, required to be registered or otherwise regulated by the U.S. exchange or market.

GDPR

GDPR Compliance Marketing Security

Tentative further steps towards an agreed ePrivacy Regulation

Data Protection Report

FEBRUARY 15, 2021

Direct marketing. There is little substantive change here, although Member States are entitled to provide a specific period of time after which direct marketing consents will be effective expire or assign call identification prefixes to identify direct marketing calls. Retention and surveillance. Re-purposing of data.

Metadata

Metadata GDPR Privacy Marketing

3 reasons cyber security training is essential

IT Governance

OCTOBER 31, 2018

Placing staff on information security training courses will help them understand the mistakes they’re making and teach them to work more effectively. Cyber security laws and regulations inevitably contain complex requirements, so organisations need employees with specialist knowledge to achieve compliance. GDPR training courses.

Security

Security GDPR Information Security Data breaches

3 reasons cyber security training is essential

IT Governance

OCTOBER 31, 2018

Placing staff on information security training courses will help them understand the mistakes they’re making and teach them to work more effectively. Cyber security laws and regulations inevitably contain complex requirements, so organisations need employees with specialist knowledge to achieve compliance. GDPR training courses.

Security

Security GDPR Information Security Data breaches

Belgian Data Protection Authority Releases 2019 Annual Report

Hunton Privacy

OCTOBER 7, 2020

Notably, 2019 was the year of the Belgian DPA’s first fines under the EU General Data Protection Regulation (the “GDPR”) and the release of the Belgian DPA’s 2019-2025 Strategic Plan. In May 2019, the Belgian DPA imposed its first fine under the GDPR for abusive use of personal data in violation of the GDPR purpose limitation principle.

GDPR

GDPR Data breaches Personal data Privacy

Data controller vs data processor: what’s the difference?

IT Governance

AUGUST 19, 2020

The concept of data controllers and data processors has been around for years, but the roles come with clearly defined responsibilities under the GDPR (General Data Protection Regulation). Say, for example, that you are a marketing executive at a retailer who wants to conduct a survey on shoppers’ browsing habits. Privacy as a Service.

GDPR

GDPR Personal data Compliance Privacy

U.S. states pass data protection laws on the heels of the GDPR

Data Protection Report

JULY 9, 2018

states have recently introduced and passed legislation to expand data breach notification rules and to mirror some of the protections provided by Europe’s newly enacted General Data Protection Regulation (“GDPR”). See our previous blog posts on GDPR here and here. Several U.S. Below are the key takeaways from U.S.

GDPR

GDPR Data breaches Personal data Insurance

CNIL Adopts Its First Sanction as Lead Supervisory Authority, Fining French Online Shoe Retailer

Hunton Privacy

AUGUST 11, 2020

On August 5, 2020, the French Data Protection Authority (the “CNIL”) announced that it has levied a fine of €250,000 on French online shoe retailer, Spartoo, for various infringements of the EU General Data Protection Regulation (“GDPR”). Background. Spartoo is a French-based company specializing in online shoe sales. CNIL Decision.

Retail

Retail GDPR IT Personal data

Data protection strategy: Key components and best practices

IBM Big Data Hub

MAY 28, 2024

It supports the same security measures as data security but also covers authentication, data backup, data storage and achieving regulatory compliance, as in the European Union’s General Data Protection Regulation (GDPR). billion fine on the California-based Meta for GDPR violations.

Data breaches

Data breaches GDPR Compliance Encryption

Maintaining GDPR and Data Privacy Compliance in 2024

A guide to cyber security for marketing agencies

Webinars

Trending Sources

How to implement the General Data Protection Regulation (GDPR)

Webinars

The Re-Permissioning Dilemma Under GDPR

ICO Publishes Report on Compliance in Direct Marketing Data Broking Sector

GDPR and The Data Governance Imperative

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

Guest Post - Three Critical Steps for GDPR Compliance

Guest Post -- GDPR Compliance starts with Data Discovery

GDPR After the Deadline — Part 2 of 3 — Where are organizations in their GDPR journey and how much did they spend to get there?

GDPR After the Deadline — Part 3 of 3 — How do IIM technologies fit into the GDPR puzzle?

GDPR After the Deadline — Part 2 of 3 — Where are organizations in their GDPR journey and how much did they spend to get there?

GDPR: it’s the final countdown

What Is Data Minimisation? Definition & Examples

The GDPR: Everything you need to know about data controllers and data processors

Why risk assessments are essential for GDPR compliance

GDPR Compliance Obligations: The relationship between Data Controllers and Third-Party Processors

Privacy Advocacy Organization Files GDPR Complaints Against Data Brokers

GDPR After the Deadline — Part 1 of 3 — The emerging challenges tied to information privacy and security

GDPR After the Deadline — Part 1 of 3 — The emerging challenges tied to information privacy and security

Why is a DPIA required by the GDPR?

Belgian DPA Approves First EU Data Protection Code of Conduct for Cloud Service Providers

Weekly podcast: Exactis, BetVictor, Ticketmaster, and GDPR complaints

ICO Reflects on a Year of GDPR

Irish Data Protection Commission fined Meta $414 Million

Sam McNicholls-Novoa on CyberComply

Building cyber security careers

Brazilian Data Protection Law Update – Delayed Enforcement, Lack of Administrative Structure, and Market Unreadiness

UK Introduces Data Protection and Digital Information (No. 2) Bill

CNIL Fines Google €50 Million for Alleged GDPR Violations

GDPR is upon us: are you ready for what comes next?

Why Cyber Insurance is Essential in 2022

CIPL Submits Response to the EDPB Guidelines on Virtual Voice Assistants

GUEST ESSAY: ‘CyberXchange’ presents a much-needed platform for cybersecurity purchases

Weekly podcast: Yahoo hacker sentenced, acoustic DoS attack and GDPR compliance fails

ICO Confirms UK Firms May Rely on Public Interest Derogation for SEC Transfers

Tentative further steps towards an agreed ePrivacy Regulation

3 reasons cyber security training is essential

3 reasons cyber security training is essential

Belgian Data Protection Authority Releases 2019 Annual Report

Data controller vs data processor: what’s the difference?

U.S. states pass data protection laws on the heels of the GDPR

CNIL Adopts Its First Sanction as Lead Supervisory Authority, Fining French Online Shoe Retailer

Data protection strategy: Key components and best practices

Stay Connected