IT Governance

NOVEMBER 4, 2024

There are often problems with the lawfulnessof personal data processing, largely due to over-reliance on consent. How are organisations failing to process personal data lawfully under the GDPR, and how can they address this while improving their day-to-day business operations? I sat down with Andy to find out more.

Personal data 67

Personal data GDPR Marketing Archiving 67

Data Breach Today

AUGUST 12, 2024

East Valley Institute of Technology Is One of LockBit's Education Sector Victims An Arizona-based technical school is notifying nearly 209,000 current and former students, parents and faculty that their personal, health and financial information was potentially compromised in a LockBit attack earlier this year.

Personal data 147

Personal data Education Ransomware 147

Data Breach Today

APRIL 6, 2021

Letter to Twitter, Google, Others Asks About Selling Information to Foreign Governments A bipartisan group of senators has sent a letter to Google, Twitter, Verizon, AT&T and online advertising firms and networks raising national security concerns about the selling of citizens' personal data, which could end up in the hands of foreign governments.

Personal data 182

Personal data Security Government 182

The Last Watchdog

NOVEMBER 4, 2021

Europe’s General Data Protection Regulations (GDPR) changed the game. Legacy filing systems were not built to keep track of the personal data of specific individuals primarily to be in compliance with the many data protection regulations popping up around the world.

Personal data 237

Personal data Privacy Data Privacy Unstructured data 237

DLA Piper Privacy Matters

SEPTEMBER 6, 2023

On 11 August 2023, India’s long-awaited law governing data protection – the Digital Personal Data Protection Act, 2023 ( DPDP Act ) – received the President’s assent and was published in the official gazette the following day. data subjects, using the GDPR terminology) located within India.

Personal data 111

Personal data GDPR Data breaches Compliance 111

Hunton Privacy

NOVEMBER 8, 2022

SHIFT Counsellors at Law reports from Indonesia that The People’s Representative Council of the Republic of Indonesia has ratified Indonesia’s draft law on personal data protection. The law, which is partly modeled on the EU General Data Protection Regulation, is Indonesia’s first “umbrella regulation” on personal data protection.

Personal data 134

Personal data GDPR Compliance Information Security 134

Security Affairs

AUGUST 4, 2024

USDoD Allegedly Breached National Public Data Database, Selling 2.9 Billion Records [link] pic.twitter.com/Tt8UNppPSu — Dark Web Intelligence (@DailyDarkWeb) April 8, 2024 USDoD attempted to sell the personal data of 2.9 billion individuals, they put the data up for sale for $3,500,000.

Data breaches 145

Data breaches Personal data Sales Archiving 145

Data Protection Report

SEPTEMBER 23, 2021

The declining cost of electronic data storage may have caused some company executives to conclude that retaining personal data forever is “cheap.” The matter involved one of France’s largest insurers, SGAM AG2R LA MONDIALE, which was subject to an inspection by the French data protection authority (the CNIL), in 2019.

Personal data 111

Personal data Insurance GDPR Record destruction 111

Thales Cloud Protection & Licensing

MAY 8, 2024

Navigating Compliance: Understanding India's Digital Personal Data Protection Act madhav Thu, 05/09/2024 - 05:30 In August 2023, the Indian Parliament passed a piece of landmark legislation, the Digital Personal Data Protection (DPDP) Act, marking a significant shift in India's data protection landscape.

Personal data 71

Personal data Compliance Encryption Cloud 71

Hunton Privacy

JANUARY 20, 2022

On January 12, 2022, the French Data Protection Authority (the “CNIL”) published guidelines on the re-use of personal data by data processors for their own purposes (such as product improvement or the development of new products and services) under the EU General Data Protection Regulation (“GDPR”) (the “Guidelines”).

Personal data 135

Personal data GDPR Encryption IT 135

DLA Piper Privacy Matters

OCTOBER 21, 2022

Indonesia’s long-awaited Personal Data Protection Law (“PDPL”) finally came into force on 17 October 2022, helpfully consolidating and clarifying the personal data protection framework in Indonesia. Data Protection Officer (DPO). Overseas Data Transfers. The law is primarily consent-based.

Personal data 98

Personal data Compliance Risk Access 98

DLA Piper Privacy Matters

AUGUST 1, 2023

On 18 July 2023, Singapore’s Personal Data Protection Commission (“ PDPC ”) issued for public consultation a set of proposed guidelines for the use of personal data in AI recommendation and decision systems (“ Proposed Guidelines ”). The public consultation is open until 31 August 2023.

Personal data 98

Personal data Artificial Intelligence B2B Government 98

Data Protection Report

APRIL 5, 2023

The alleged GDPR infringements: The Garante apparently took its action after becoming aware of a recent data breach at ChatGPT, where users’ chat titles and payment information was exposed.

Personal data 111

Personal data GDPR Data breaches Privacy 111

Data Breach Today

FEBRUARY 1, 2019

teeters on the edge of a "no deal" Brexit, the country's information commissioner has warned businesses to prepare, saying that any organization that handles Europeans' personal data must ensure they have a legal transfer arrangement in place for continuing to do so.

Personal data 177

Personal data Privacy 177

Data Protection Report

APRIL 30, 2024

The claims related to the company’s sharing personal data without consumer consent and making it very difficult for consumers to cancel their subscriptions to this telehealth service. The order also, in Section IX, set forth data destruction requirements and a data retention policy.

Personal data 85

Personal data Privacy Information governance Compliance 85

Security Affairs

APRIL 11, 2021

An SQL database containing the personal data of 1.3 Researchers from Cyber News have discovered that the personal data of 1.3 million Clubhouse users was leaked online days after LinkedIn and Facebook also suffered data leaks. The post Personal data of 1.3 million scraped Clubhouse user records.

Personal data 145

Personal data Phishing Passwords Authentication 145

DLA Piper Privacy Matters

AUGUST 4, 2022

On 3 August, the Indian Central Government withdrew the Personal Data Protection Bill, 2019 ( PDP Bill ). The PDP Bill, which has drawn criticism from both privacy advocates and industry stakeholders, was first published in 2018 and was to be India’s first law on the protection of personal data.

Personal data 97

Personal data Government Privacy IT 97

Data Protection Report

FEBRUARY 28, 2020

The Personal Data Protection Act B.E. However, most of the operational provisions, including provisions relating to the rights of a data subject, the obligations of a data controller and the penalties for non-compliance, will become effective on 27 May 2020, 1 year after the PDPA is published. Definition of Personal Data.

Personal data 93

Personal data Compliance Privacy Access 93

Threatpost

AUGUST 13, 2020

Researchers disclosed flaws in Amazon Alexa that could allow attackers to access personal data and install skills on Echo devices.

Personal data 137

Personal data Access IoT Data Privacy 137

Data Protection Report

MARCH 28, 2023

In a recent decision (the Decision ), [1] the Personal Data Protection Commission ( PDPC ) considered for the first time a company’s reliance on the Legitimate Interests Exception (as defined below) under the Personal Data Protection Act 2012 ( PDPA ) when the consent procured is invalid.

Personal data 98

Personal data Risk Access IT 98

The Guardian Data Protection

FEBRUARY 12, 2018

Firm to appeal decision by Berlin regional court which upholds complaints that users not given informed consent Facebook’s default privacy settings and use of personal data are against German consumer law, according to a judgement handed down by a Berlin regional court.

Personal data 223

Personal data Privacy GDPR IT 223

The Guardian Data Protection

NOVEMBER 21, 2022

In high court case that could set precedent for millions, Tanya O’Carroll alleges owner Meta is breaking UK data laws A human rights campaigner is suing Facebook’s owner in the high court, claiming the company is disregarding her right to object against the collection of her personal data.

Personal data 97

Personal data IT Privacy Security 97

Troy Hunt

FEBRUARY 4, 2024

By design, all the personal information including email and IP address, phone number, gender, bcrypt hashed password, 2FA secret and backup code and the code that can be immediately used to reset the password is returned to every single person that uses this feature.

Personal data 145

Personal data Passwords Data breaches IT 145

Data Protection Report

JANUARY 16, 2024

On 25 December 2023, the Personal Data Protection Committee ( PDPC ) published two notifications detailing regulations for cross-border transfers of personal data under Sections 28 and 29 ( Notifications ) of the Personal Data Protection Act B.E. 2562 (2019) ( PDPA ). What is next?

Personal data 59

Personal data IT Security Privacy 59

Data Breach Today

JANUARY 13, 2021

Information Stolen From European Medicines Agency Documents on COVID-19 vaccines and medications - including some containing personal information - that were stolen in a cyberattack last month on the European Medicines Agency have been leaked on the internet.

Personal data 226

Personal data 226

Hunton Privacy

AUGUST 7, 2020

On July 13, 2020, a Committee of Experts within India’s Ministry of Electronics and Information Technology (“the Committee”) published the first draft of a Non-Personal Data Governance Framework for India for public consultation. address privacy concerns, including from re-identification of anonymized personal data.

Personal data 102

Personal data Government Metadata Privacy 102

Data Protection Report

FEBRUARY 25, 2020

Outbreak of the coronavirus and personal data privacy. There have been several data breach incidents which have given rise to concerns over privacy and potential discrimination against people from Wuhan and Hubei Province. Highlights of the CAC Circular.

Personal data 133

Personal data Big data Data Privacy Data breaches 133

Data Protection Report

FEBRUARY 16, 2024

The right of access to personal data looks set to be a key focus area for data protection regulators for 2024 in both the EU and the UK. The European Data Protection Board (EDPB) announced that its 2024 co-ordinated enforcement action will look at how controllers implement the right of access to personal data.

Personal data 59

Personal data Access IT 59

DLA Piper Privacy Matters

SEPTEMBER 27, 2022

The Singapore Court of Appeal has recently clarified that ‘emotional distress’ is an actionable loss and damage under the existing right of private action of Personal Data Protection Act 2012 (“ PDPA “). For example, the Court observed that loss of control of personal data would not constitute loss or damage under the PDPA.

Personal data 98

Personal data Communications 98

Data Protection Report

FEBRUARY 1, 2021

On 29 January 2021, the Personal Data Protection Commission ( PDPC ) announced that certain sections of the Personal Data Protection (Amendment) Act 2020 (the PDPA Amendments ) will take effect from 1 February 2021 – please see PDPC’s announcement here ; the gazetted Commencement Notification here.

Personal data 98

Personal data Data breaches Authentication IT 98

IT Governance

NOVEMBER 17, 2020

Under the GDPR (General Data Protection Regulation) , all personal data breaches must be recorded by the organisation and there should be a clear and defined process for doing so. In this blog, we take a look at the scenarios in which data protection breaches in schools must be reported. When must breaches be reported?

Personal data 104

Personal data Data breaches Data collection GDPR 104

Hunton Privacy

AUGUST 5, 2021

On August 2, 2021, the Italian Data Protection Authority ( Garante per la protezione dei dati personali , “Garante”) announced that it had levied a €2,500,000 fine on Deliveroo Italy s.r.l.

Personal data 105

Personal data GDPR IT 105

Hunton Privacy

JULY 18, 2023

Palazzi from Allende & Brea in Argentina reports that on June 30, 2023, the Argentine Executive Branch sent the new proposed Personal Data Protection Bill (the “Bill”) to the National Congress for consideration. 25,326 of 2000).

Personal data 52

Personal data GDPR Privacy Data Privacy 52

IT Governance

APRIL 22, 2021

TikTok is again being accused of illegally processing children’s personal data. She alleges that TikTok is violating the GDPR (General Data Protection Regulation) by collecting excessive data and failing to explain what it’s used for. TikTok has continually defended the way it processes children’s personal data.

Personal data 115

Personal data IT GDPR Privacy 115

Security Affairs

JANUARY 27, 2023

A Dutch hacker who was arrested at the end of last year claims to have stolen the personal data of almost all Austrians. At the end of November 2022, the Amsterdam police arrested a 25-year-old man from Almere who is suspected of having stolen or traded the personal data of tens of millions of people around the world.

Personal data 98

Personal data Archiving Phishing Security 98

DLA Piper Privacy Matters

JUNE 27, 2023

Global flows of personal data have been a source of geopolitical concern for many years now. To date, these compliance challenges were essentially limited to personal data processing, so some organisations and sectors had to do more than others.

Personal data 52

Personal data Data Privacy GDPR Compliance 52