dcsimg
September 19, 2019

CEOs offer their own view of a US data privacy law

Last week, the chief executives of more than 50 mid- and large-sized companies urged Congress to pass a national data privacy law to regulate how companies collect, use, and share Americans’ data. Buried deep within the chief executives’ recommendations for such a law, presented as a policy framework for guidance, was a convenient proposal: Private individuals should not be allowed to sue … [Read more...]

Filed Under: Brave, Brave browser, Business Roundatble, California, California Consumer Privacy Act, Center for Democracy and Technology, consumer privacy, consumer privacy law, Data privacy, data privacy law, data privacy laws, data privacy legislation, EFF, Electronic Frontier Foundation, EU, European Union, facebook, Federal Trade Commission, GDPR, general data protection regulation, Maine, montana, Nevada, pay-for-privacy, privacy, Purism, Senator Ron Wyden, Technet, US data privacy laws, US data privacy legislation, US Federal Trade Commission, Vermont
July 30, 2019

How to get your Equifax money and stay safe doing it

Following the enormous data breach of Equifax in 2017—in which roughly 147 million Americans’ suffered the loss of their Social Security numbers, addresses, credit card and driver’s license information, birthdates, and more—the company has agreed to a settlement with the US Federal Trade Commission, in which it will pay at least $650 million. Much of that settlement—up to $425 million—is … [Read more...]

Filed Under: Awareness, credit monitoring, data breach, data breach settlement, Equifax, EU, European Union, Federal Trade Commission, fraud, fraud prevention, FTC, GDPR, general data protection regulation, identity theft, phishing, scams, settlement, social security numbers
July 25, 2019

The GDPR: Why you need to review your third-party service providers’ security

Organisations share personal data with third parties all the time, but can they be trusted?  The GDPR (General Data Protection Regulation) extended the scope of responsibility when it comes to data protection and privacy, so where does that leave you when it comes to security incidents caused by service providers?    How third-party relationships work under the GDPR Before we begin, let’s be … [Read more...]

Filed Under: Data Protection, EU GDPR, GDPR, gdpr awareness, gdpr explained, GDPR training, general data protection regulation, guidance GDPR, third parties
July 17, 2019

Data breach costs Netherlands hospital €460,000

Haga Hospital, based in the Netherlands, was this week fined €460,000 by the Dutch data protection authority (AP) for breaching the GDPR (General Data Protection Regulation).   Haga was investigated by the AP after 85 hospital employees had access to the medical records of Samantha de Jong, AKA Barbie, a well–known Dutch reality TV star.   In addition to the fine, Haga must improve the … [Read more...]

Filed Under: breach, Breaches and Hacks, cyber breach, data breach, data breach notification, data breaches, Data Protection, eu general data protection, eu general data protection regulation, GDPR, GDPR Breach, general data protection regulation
July 12, 2019

Should you take a GDPR or DPO training course?

The introduction of the GDPR (General Data Protection Regulation) has led to a surge in interest in data protection training courses.  Education is particularly important for anyone taking on the responsibilities of the DPO (data protection officer), a position that’s become a formal requirement for many organisations.  But how should you pursue training? Should you enrol on a DPO training … [Read more...]

Filed Under: Data Protection, data protection commissioner, Data Protection Officer, DPO, DPO training, EU GDPR, eu general data protection, GDPR, gdpr compliance, gdpr foundation, gdpr practitioner, GDPR training, gdpr training courses, general data protection regulation
July 10, 2019

What should a US federal data privacy law ideally include?

In the constant David-and-Goliath struggle between digital privacy advocates and corporate privacy invaders, the question of how to legally protect Americans with a comprehensive, federal data privacy law provides conflicting answers. Advocates want protections, which Big Tech interprets as restrictions. As of today, there is no one digital privacy law to rule them all. While a few state laws … [Read more...]

Filed Under: AB 846, AB 873, Brave, Brave browser, California Consumer Privacy Act, data broker, Data privacy, data privacy laws, data privacy legislation, digital bill of rights, Disconnect, DuckDuckGo, European Union, federal data privacy law, federal data privacy legislation, GDPR, general data protection regulation, Ghostery, internet service provider, Lavabit, Maine, preempt, preemption, privacy, protonmail, Purism, right to access, social purpose company, US data privacy laws, US data privacy legislation, US Senate Judiciary Committee, Vermont, Vivaldi
June 20, 2019

Things to consider when processing biometric data

Biometric data is being used in countless systems these days. If you’ve ever used your fingerprint scan to unlock your phone or facial recognition software, then your biometric data is being processed.  But like any form of data, biometrics – i.e. information relating to individual’s physical, physiological or behavioural characteristics – are potentially accessible by malicious sources, and the … [Read more...]

Filed Under: biometric data, data, Data Protection, Data Protection Act, Data Protection Bill, data protection commissioner, data protection principles GDPR, EU GDPR, eu general data protection, eu general data protection regulation, GDPR, gdpr awareness, gdpr compliance, GDPR consent, GDPR documentation, general data protection regulation
May 17, 2019

WhatApp users urged to update app after serious security vulnerability discovered

WhatsApp, the messaging app owned by Facebook, confirmed a serious security vulnerability in its system on Monday, 13 May that left users open to spyware installations on their phone.   The breach, affecting both iOS and Android users, enabled the software to be installed through voice calls, even if the call wasn’t picked up. In some cases, the call was removed from the call log, so the missed … [Read more...]

Filed Under: Breaches and Hacks, data breach, data breach notification, data breaches, eu general data protection, eu general data protection regulation, GDPR, general data protection regulation
May 3, 2019

The top six takeaways for corporate data privacy compliance

For nearly two months, Malwarebytes Labs has led readers on a journey through data privacy laws around the world, exploring the nuances between “personal information” and “personal data,” as well as between data breach notification laws in Florida, Utah, California, and Iowa. We explored the risks of jumping into the global data privacy game, comparing the European Union’s laws with the laws … [Read more...]

Filed Under: Apple, California Online Privacy Protection Act, cybersecurity law, cybersecurity laws, data breach notification, data breach notification law, Data privacy, data privacy compliance, data privacy law, data privacy laws, data privacy legislation, GDPR, general data protection regulation, Helix DNA, mozilla, online privacy, personal data, personal information, personally identifiable information, privacy, privacy policy, protonmail, Security world, signal, Uber, user privacy, whatsapp
May 3, 2019

Ireland’s DPC investigates Facebook over password breach

Ireland’s DPC (Data Protection Commission) has launched a statutory inquiry into Facebook following the disclosure of a data breach affecting millions of users.  The social media giant announced in March that a routine security review at the beginning of the year found millions of user passwords stored in plaintext on … [Read more...]

Filed Under: Breaches and Hacks, data breach, data breaches, Data Protection, data protection commissioner, data protection principles GDPR, eu general data protection regulation, facebook, GDPR, GDPR Breach, general data protection regulation
Next Page »