The European Commission is preparing a proposal mandating more cooperation among national government agencies charged with enforcing the General Data Protection Regulation. Nationally driven enforcement of the regulation has emerged as a sore point for some during the GDPR's first half decade.
As data extends well beyond on-premises infrastructure into multi-cloud and hybrid cloud environments, IT and security teams are looking for ways to better manage the entire data lifecycle. A key piece of these efforts is to reduce risk without compromising user productivity.
A variety of technology and tools exists...
A Scottish school system decided not to use facial recognition in its secondary school cafeterias after international outcry. The U.K. Information Commissioner's Office said Tuesday that the North Ayrshire Council failed to obtain freely given consent for the system.
A member of a criminal data breach forum says he's selling email addresses and phone numbers of 400 million Twitter users. If verified, the data breach would be a further blow to Twitter and its beleaguered chief executive as regulators increase pressure over the firm's security practices.
As privacy legislation has expanded in recent years, so has the scope of the privacy programs that support it. Regulation has been and still is one of the top drivers for privacy programs but the days of “tick-the-box” compliance are no more.
Download this eBook to learn more about:
Regulations such as the GDPR and CPRA have brought consumer privacy rights into the spotlight. Cookie banners are now normal real estate on a website, and consumers are used to companies asking them for permission to collect, store, and use their personal data.
More recently, employees are waking up to privacy...
The introduction of the California Consumer Privacy Act (CCPA) in 2018 was a turning point for US state privacy laws. As more states introduce privacy laws, organizations must be aware of, and be able to manage, the varying provisions which can make cross-state compliance a complex undertaking.
Download this eBook...
As the US privacy landscape becomes more complex, understanding it becomes crucial. The US privacy landscape has expanded significantly over the past year and currently, 5 states have laws that will be going into effect in 2023.
Download this comprehensive guide to assess the current and upcoming policies:
A U.S. senator is suggesting adding cybersecurity standards to the list of federal prerequisites for medical practice participation in Medicare. Cybersecurity is a patient safety issue, says Mark Warner (D-Va.). He today released a slew of proposals for augmenting healthcare cybersecurity.
Domain name registrars track domain name owners via "whois" data, which is a crucial tool for investigators combating cybercrime. But Kroll's Alan Brill says that since the EU General Data Protection Regulation went into effect, many registrars no longer publicly share such information, and that's a problem.
Thales plans to enter the customer identity and access management market through its purchase of an emerging European CIAM player. The French firm plans to capitalize on OneWelcome's strong product by extending its footprint beyond Europe and into North America and Asia-Pacific.
The European Parliament has granted Europol permission to receive and process datasets from private parties and pursue research projects for better handling of security-related cases. Use of these powers will be overseen by the European Data Protection Supervisor and the Fundamental Rights Officer.
The Dutch Data Protection Authority has imposed penalties of 3.7 million euros ($4 million) and 565,000 euros ($600,000) on the Dutch Tax and Customs Administration and the Ministry of Foreign Affairs, respectively, for violating the General Data Protection Regulation.