europe | Orthology.eu

David Ruiz April 2, 2019

The global data privacy roadmap: a question of risk

For most American businesses, complying with US data privacy laws follows a somewhat linear, albeit lengthy, path. Set up a privacy policy, don’t lie to the consumer, and check the specific rules if you’re a health care provider, video streaming company, or kids’ app maker. For American businesses that want to expand to a new market, though, complying with global data privacy laws is more akin to … [Read more...]

Filed Under: Africa, amazon, Argentina, asia, Bahrain, Brazil, china, CNIL, Data privacy, data privacy laws, data protection authority, europe, European Union, GDPR, general data protection regulation, global data privacy, Google, Microsoft, Middle East, National Data Protection Commission, Personal Information Protection Act, privacy, Qatar, singapore, South Korea, whitelist

Niall McCreanor October 25, 2018

Swedish Data Inspectorate completes first GDPR Reviews

400 organisations and public authorities have been audited by the Swedish Data Inspectorate in its first review, to ascertain whether a DPO (data protection officer) has been appointed where required. The review showed deficiencies in nearly 25% of the organisations and authorities selected. Under the GDPR (General Data Protection Regulation), all public authorities and certain organisations are … [Read more...]

Filed Under: Comply with the GDPR, data breach, Data Protection, Data Protection Act, Data Security, eu data protection directive, EU GDPR, eu general data protection regulation, europe, fines GDPR, GDPR, GDPR Breach, gdpr compliance, GDPR consent, GDPR documentation, general data protection regulation, sweden

Luke Irwin September 27, 2018

Are you ready for a data breach?

A new report has suggested that most SMEs (small and medium enterprises) don’t have anywhere near the estimated €102,000 it costs to respond to a data breach. InsuranceBee’s survey found that 83% of respondents had no money reserved to get back to normal following a cyber security incident, and 25% were unaware that that it would even cost money to put things right. Breaches are … [Read more...]

Filed Under: Data Protection, DPO, EU GDPR, eu general data protection regulation, europe, fines GDPR, GDPR, GDPR Breach, gdpr compliance, GDPR consent, GDPR documentation, GDPR e-learning, GDPR elearning, GDPR training

Sophie Meunier September 19, 2018

43% of people plan to remove their personal data from social media

If you look someone up on Facebook or LinkedIn, you’ll be able to gather huge amounts of information about them without them ever knowing. Until recently, nobody seemed to think about the risks involved; it was just the way things were, and if you didn’t get on board, you were left out from a whole virtual world. But thanks to the recent Facebook data scandal and the introduction of the EU GDPR … [Read more...]

Laura Downes August 15, 2018

Summer offers to kick-start your cyber security journey. Don’t miss out!

IT Governance is a leading global provider of IT governance, risk management and compliance solutions, with a special focus on cyber resilience, data protection, the PCI DSS (Payment Card Industry Data Security Standard), ISO 27001 and cyber security. We are committed to helping organisations protect themselves and their customers from the perpetually evolving range of cyber threats. Our deep … [Read more...]

Filed Under: Business Continuity, Compliance, Comply with the GDPR, cyber attack, Cyber Resilience, Cyber Security, cybercrime, Data Protection, europe, GDPR, gdpr compliance, ISO 27001, IT Best Practice, phishing, Risk Management, Staff Awareness, Training

Niall McCreanor August 14, 2018

How to respond to a data breach

Under the EU GDPR (General Data Protection Regulation), organisations must report personal data breaches to their supervisory authority within 72 hours of discovering or becoming aware of it. You might think that’s an impossibly short deadline, but don’t fear, you’re not expected to provide a comprehensive report at this stage. The process is simply to ensure that organisations are aware of … [Read more...]

Filed Under: Data Protection, Data Protection Act, DPO, DPO as a service, EU GDPR, eu general data protection regulation, europe, fines GDPR, GDPR, GDPR Breach, gdpr compliance, GDPR consent, GDPR documentation, GDPR training

Luke Irwin August 10, 2018

Majority of EU member states missed NIS Directive deadline

Critical service providers across Europe are in for a bumpy ride later this year, and they have their governments to thank. These organisations are subject to the NIS Directive (Directive on security of network and information systems), which each EU member state was required to transpose into national law by 9 May 2018. However, we’re now three months past that deadline and only 11 nations have … [Read more...]

Filed Under: Business Continuity, Compliance, Cyber Resilience, Cyber Security, Data Protection, europe, privacy, Staff Awareness

Niall McCreanor July 3, 2018

Swedish Data Inspectorate begins first reviews under the GDPR

The Data Inspectorate of Sweden has begun its first reviews under the GDPR (General Data Protection Regulation) to ascertain whether authorities and companies that are obliged to appoint a DPO (data protection officer) have done so. Those being examined operate in the private healthcare, insurance and financial sectors. Jonas Agnvall, a lawyer at the Data Inspectorate who is heading the … [Read more...]

Filed Under: Data Protection, EU GDPR, eu general data protection regulation, europe, GDPR, GDPR Breach, gdpr compliance, GDPR consent, GDPR documentation, gdpr foundation, general data protection regulation

Luke Irwin June 15, 2018

3 tips for maintaining GDPR compliance

For the past year or so, cyber security experts have been asking, with increasing concern, whether you’ve complied with the EU General Data Protection Regulation (GDPR) yet. Hopefully you have, but it’s important to remember that compliance isn’t a fixed state. It’s not a point you get to where you can stop and think “mission accomplished”. It’s something that needs to be achieved and maintained – … [Read more...]

Filed Under: Data Protection, Data Protection Act, eu general data protection regulation, europe, GDPR, GDPR Breach, gdpr compliance, GDPR consent, gdpr foundation, GDPR reading material, GDPR resources, GDPR training, general data protection regulation

Luke Irwin June 11, 2018

Most GDPR emails are unnecessary or illegal

The majority of privacy policy emails sent by organisations in preparation for the EU General Data Protection Regulation (GDPR) were unnecessary, and some were even illegal, a number of data protection experts have said. The problem is with organisations’ interpretation of the GDPR’s consent requirements. Many believe that organisations need to obtain everybody’s consent again or else delete them … [Read more...]

Majority of EU member states missed NIS Directive deadline

SEARCH

RECENT POSTS

Archives

DISCLAIMER