All Data Privacy articles – Page 14
-
ArticleColorado third state to enact comprehensive privacy law
The Colorado Privacy Act largely mirrors its predecessors in California and Virginia but includes greater fines per violation of $20,000. The law is set to take effect July 1, 2023.
-
ArticleBritish Airways settles 2018 data breach class action
British Airways has settled one of the U.K.’s largest group actions after thousands of people sought compensation following a 2018 data breach that resulted in the airline being fined under the GDPR.
-
Resourcee-Book: The current state of global privacy regulation
Will states be able to move forward with their own privacy laws? A provision in a recent bill passed in Florida may be a stumbling block.
-
ArticleNew tech, legal precedent forcing GDPR to evolve
Companies’ priorities regarding compliance with the GDPR are likely to become more focused because of a mixture of recent legal decisions and efforts by the European Commission to keep privacy rules in sync with changes in technology.
-
WebcastCPE Webcast: How Motorola is transforming evidence collection for data protection compliance
A popular saying among security, privacy and corporate compliance circles is “trust, but verify”. It’s a popular saying because it neatly captures so much of what compliance professionals have to do: collecting evidence to verify compliance.
-
ArticleNew rules for SCCs: What you need to know
The latest set of standard contractual clauses for companies transferring data between the European Union and third countries, such as the United States, is meant to align more closely with the GDPR and root out government snooping.
-
WebcastCPE Webcast: Streamlining HIPAA & HITRUST compliance with an alternative reporting approach
Your organization might be using HITRUST to manage multiple compliance initiatives, including HIPAA, NIST and the ISOs. The framework sets up a good set of practices that lend well to various privacy regulations and standards, yet connecting all that data for fast reporting is where most organization’s hit a wall. ...
-
ArticleCJEU ruling opens Facebook, others to greater GDPR liability
The EU’s top court ruled any of the bloc’s national data protection authorities can pursue a privacy complaint against Facebook or any other Big Tech firm and not just the supervisory authority where the company has its European headquarters.
-
ArticleReported Amazon fine ($425M) ‘biggest test’ of GDPR enforcement yet
Amazon reportedly faces a fine of more than $425 million under the GDPR that would show EU regulators firmly have Big Tech companies—and their practices—in their crosshairs.
-
ArticleEU probes of Microsoft, Amazon reignite calls for new Privacy Shield
European investigations into whether Amazon and Microsoft’s cloud-based services infringe EU privacy rules have once again shone a spotlight on how—and when—the United States and the European Union intend to come up with a new Privacy Shield.
-
ArticleReport: GDPR fines more than doubled in Year 3
Data protection authorities issued 287 known GDPR fines between March 2020 and March 2021—a 120 percent increase in frequency, according to a new report from CMS.
-
ArticleGDPR’s future: Fine amounts, transparency among top points of contention
Experts believe the GDPR is largely “future-proof,” though fine decisions that vary considerably from one EU country to the next and lack of transparency remain areas of concern for the privacy law three years in.
-
ArticleThree years of GDPR: Many milestones, but calls for change increase
Despite its achievements, the General Data Protection Regulation’s flaws have become evident. Some are already questioning whether the regulation—and the way it is regulated—are fit for purpose and whether the law needs to be changed.
-
ArticleSurvey: Data access further complicated by emerging privacy laws
A recent survey of 100 executives from Fortune 500 companies found more than half are struggling to balance easy access to company data with privacy and security compliance under laws like the GDPR and CCPA.
-
ArticlePrivate right of action proving problematic for state privacy laws
An enforcement provision allowing customers to sue businesses that misuse their personal data is a key stumbling point for state-level data privacy legislation.
-
ArticleWhat you need to know about proposed EU rules for trustworthy AI
With various levels of defined risk and the potential for steep fines for offenders, the European Commission’s recent proposal to ensure trust in the use of artificial intelligence should receive urgent attention from industries beyond Big Tech.
-
ArticleGDPR one-stop shop ‘unsustainable,’ says key regulators
Irish Data Protection Commissioner Helen Dixon and European Data Protection Supervisor Wojciech Wiewiórowski are among those who believe the one-stop shop provision of the GDPR needs to be reformed for the long term.
-
ArticleLawmakers push FTC to investigate Google Play for COPPA violations
Two lawmakers sent a letter to the Federal Trade Commission urging the agency to investigate Google Play for potentially violating children’s privacy.
-
ArticleFines key attention to data privacy from boards, says ICO head
The threat of fines has done more to focus boardroom attention on data privacy and effective cyber-security than any other measure, U.K. Information Commissioner Elizabeth Denham believes.
-
ArticlePrivacy by design: How to lower risk and improve outcomes
Amy Holcroft, chief privacy officer at Hewlett Packard Enterprise, shares her experience using privacy-by-design practices to help her company develop and utilize technology in a way that meets compliance requirements.