Data Privacy
Data privacy, also known as information privacy, focuses on the proper handling of data usage, consent, notice, and regulatory obligations. It also includes discussion on the right to control how data is collected, shared, retained, or deleted. Our data privacy blog posts and news articles are written for compliance officers, auditors, and legal professionals. They include expert insights, opinions, training opportunities, events, whitepapers, podcasts, and webinars.
Data breaches will continue to occur, and when organizations are targeted, they may be subject to multiple state and federal laws requiring public disclosure. But as explains, how and when to reveal a breach isn’t a cut-and-dried issue. When a...
Read more
Who has access to what — and when, where and why? Managing the answer to these critical questions is a key component of modern identity governance. Omada's Rod Simmons outline a streamlined solution that relies on automation. New compliance regulations...
Read more
With state laws looming, where do companies actually stand today? A Womble Bond Dickinson survey examined current corporate preparedness along with progress on steps to manage risk associated with geolocation and biometric data. With new consumer privacy laws set to...
Read more
GDPR fines hit hard in 2021, especially hammering fast-growing and evolving businesses for accidental or careless EU GDPR violations. Tugboat Logic's CISO, Jose Costa, explains how creating a privacy-focused culture can minimize risk. When the EU’s General Data Protection Regulation...
Read more
On March 24, Utah joined the ranks of California, Colorado and Virginia, becoming the fourth U.S. state to enact a consumer data privacy law. But it will not be the last, says Alexis Kateifides, senior counsel at OneTrust’s Centers of...
Read more
Data anonymization techniques that maintain a 1:1 relationship between personal info and the people to whom they relate are appropriate in certain use cases. But depending on these techniques in live production environments leaves companies—along with their users and/or employees—vulnerable...
Read more
Since last year's Data Privacy Day, system down times have continued to lengthen. Cyber insurance has continued to grow more expensive. AI remains a double-edged sword. As always, awareness training and security protocols serve the best shields in the ongoing...
Read more
In 2022, nations and organizations around the world will continue working to protect customer data against hackers and accidental breaches. From new international regulations to artificial intelligence, here is a look at how cyber compliance is shifting priorities. We often...
Read more
Moving the needle on data privacy and infosec can be a Sisyphean task. In the struggle, many directors and executives have reached a point of cybersecurity fatigue. But threat actors are only gaining steam. With updating security protocols, the goal...
Read more
On December 15, 2020, the European Commission published its proposals for the European Union Digital Services Act (EU DSA), which aims to create a safer online environment for EU citizens by legally requiring online service providers to swiftly remove illegal content...
Read more
On May 12, 2021, the U.K. government published its draft Online Safety Bill which will place a legal obligation on online platform operators and interactive website owners to swiftly remove illegal content. Under the draft bill, very large online platforms,...
Read more
In many spheres, PCI DSS is like the law of gravity: It affects just about everything. PCI DSS 4.0, the first major update since 2013, is right around the corner. If your business so much as smells cardholder data, this...
Read more
