dcsimg

CCTV is a Data Compliance Issue

As a company owner, you may well think that you can install closed-circuit television (CCTV) cameras as you see fit on company premises, but the reality is a little different. … [Read more...]

How the GDPR affects cookie policies

Cookies are mentioned only once in the GDPR (General Data Protection Regulation), but the repercussions are significant for any organisation that uses them to track users’ browsing activity. Recital 30 of the GDPR states: Natural persons may be associated with online identifiers […] such as internet protocol addresses, cookie identifiers or other identifiers […]. This may leave traces which, in … [Read more...]

Data privacy law updates eyed by Singapore

In early 2019, Singapore’s data privacy regulators proposed that the country’s data privacy law could use two new updates—a data breach notification requirement and a right of data portability for the country’s residents. The proposed additions are commonplace in several data privacy laws around the world, including, most notably, the European Union General Data Protection Regulation, or GDPR, … [Read more...]

GDPR: When do you need to seek consent?

Under the GDPR (General Data Protection Regulation), knowing how and when you need to seek consent can be tricky. Many people mistakenly think that organisations must get consent to process personal data, but consent is one of six lawful grounds for processing data, and you’d be advised to seek it only if none of the other grounds apply. The other lawful grounds are: A contract with the … [Read more...]

GDPR: The implications of working from home or on the road

Remote working has become an increasingly popular option for organisations over the past few years, thanks to technological advancements that help employees stay connected and productive while out of the office. These technologies are more than essential than ever in light of the COVID-19 pandemic. Social distancing has forced many of us to stay at home for the foreseeable future, meaning remote … [Read more...]

A week in security (March 30 – April 5)

Last week on Malwarebytes Labs, we offered readers tips for safe online shopping now that cybercriminals are ramping up Internet-based attacks, showed the impact that GDPR has around the world, and helped users understand how social media platforms mine their personal data. We also hosted our bi-weekly podcast, Lock and Code, with guest Adam Kujawa, who discussed the state of data privacy … [Read more...]

GDPR: An impact around the world

A little more than one month after the European Union enacted the General Data Protection Regulation (GDPR) to extend new data privacy rights to its people, the governor of California signed a separate, sweeping data protection law that borrowed several ideas from GDPR, sparking a torch in a legislative data privacy trend that has now spanned at least 10 countries. In Chile, lawmakers are … [Read more...]

How to respond to DSARs (data subject access requests) during the COVID-19 pandemic

As organisations adjust to the chaos that the 2019 novel coronavirus (COVID-19) has brought, they are bound to be limited in the business processes they can perform. Among the problems they face is the ability to comply with the GDPR (General Data Protection Regulation) – and in particular to respond to DSARs (data subject access requests). With many employees working from home – and the … [Read more...]

What does the GDPR mean for B2B marketing?

Two years after the GDPR (General Data Protection Regulation) took effect, a lot of organisations remain unsure of how to approach compliance. This is especially apparent in B2B marketing, which deals with both business information and personal information. Employees often don’t know which details are subject to the GDPR’s rules and how extensive their data protection practices should be. Let’s … [Read more...]

GDPR: third-party data processors’ responsibilities

Under the GDPR (General Data Protection Regulation), your organisation’s compliance requirements depend on whether you are a data controller or data processor.  A data controller is the person or organisation that determines how and why personal data is processed.  A data processor is the person or organisation that processes personal data on behalf of a data controller.  Many … [Read more...]