dcsimg

Could your supply chain derail your GDPR compliance efforts?

Last week we reported on the Ticketmaster breach, which might have affected Irish customers. This breach was caused by malicious software located on a customer support product hosted by an external third-party supplier, Inbenta Technologies. Since the breach was announced by Ticketmaster on 23 June, it has emerged that the company may have been warned about the breach as far back as April, … [Read more...]

Swedish Data Inspectorate begins first reviews under the GDPR

  The Data Inspectorate of Sweden has begun its first reviews under the GDPR (General Data Protection Regulation) to ascertain whether authorities and companies that are obliged to appoint a DPO (data protection officer) have done so. Those being examined operate in the private healthcare, insurance and financial sectors. Jonas Agnvall, a lawyer at the Data Inspectorate who is heading the … [Read more...]

Ticketmaster Ireland informs customers of a possible data breach

Ticketmaster Ireland has informed customers about a potential data breach that may have compromised their personal and payment details. Users who purchased tickets from the site between February and June of this year may be affected. “On Saturday, June 23, 2018, Ticketmaster UK identified malicious software on a customer support product hosted by Inbenta Technologies, an external third-party … [Read more...]

How to register a DPO in Ireland

Under the EU General Data Protection Regulation (GDPR), which came into force on 25 May 2018, certain organisations are required to appoint a data protection officer (DPO). These organisations must register the details of their DPO with their relevant supervisory authority. Registering a DPO in Ireland In Ireland, the Office of the Data Protection Commissioner (DPC) has released an online … [Read more...]

Non-EU organisations block European traffic to avoid GDPR obligations

As well as applying to all organisations in the EU that process personal data, the GDPR (General Data Protection Regulation) applies to non-EU organisations that offer goods and services to, or monitor the behaviour of, EU residents. However, numerous organisations outside the EU have simply opted to block EU traffic to their websites rather than comply with the new law. TechCrunch reported on 25 … [Read more...]

The GDPR has arrived – is your organisation compliant?

The EU General Data Protection Regulation (GDPR) has been in effect for almost four weeks now – are you compliant, still working towards compliance or unsure of where to start? Compliance is not optional, and will be or already was a lengthy process for many organisations. Prioritising the areas where a lack of action leaves your organisation most exposed is important. With our extensive knowledge … [Read more...]

5.9 million payment cards compromised in Dixons Carphone Breach

Dixons Carphone has admitted to a major data breach involving 5.9 million payment cards and 1.2 million personal data records. The incident began in July 2017, when attackers attempted to compromise payment cards in Curry’s PC World and Dixons Travel’s processing system. In a second breach, the names, addresses and email addresses of 1.2 million customers were accessed. Dixons Carphone’s chief … [Read more...]

Gain a practical knowledge of the GDPR with our certified training

In a recent Business Post article, IT Governance founder Alan Calder explained the importance of gaining practical knowledge when learning about topics such as ISO 27001 and the General Data Protection Regulation (GDPR). Alan said: “When we are developing a course, we use our real-world experience with clients and the problems we have overcome with them. We build these qualities into our courses, … [Read more...]

3 tips for maintaining GDPR compliance

For the past year or so, cyber security experts have been asking, with increasing concern, whether you’ve complied with the EU General Data Protection Regulation (GDPR) yet. Hopefully you have, but it’s important to remember that compliance isn’t a fixed state. It’s not a point you get to where you can stop and think “mission accomplished”. It’s something that needs to be achieved and maintained – … [Read more...]

Ireland’s data watchdog deals with 1,300 GDPR queries

Since the enforcement of the General Data Protection Regulation (GDPR) on 25 May 2018, Ireland’s data watchdog has dealt with 1,300 GDPR queries, and 60 data breaches have been logged by organisations. The watchdog began receiving the first complaints when the law was implemented last month, and has also begun to receive notifications from organisations about possible data breaches. Most of these … [Read more...]