All Data Privacy articles – Page 46
-
Blog
Another Step Forward in Tackling Cyber-Security Risk
Image: Dec. 31—COSO’s Internal Control — Integrated Framework talks a good game about being useful beyond financial reporting risks, but Compliance Week Editor Matt Kelly has always wondered how that works in practice. Then came a nifty piece of guidance: a taxonomy of operational risks in cyber-security, published by the ...
-
Podcast
Podcast: Navigating the Pitfalls of Geolocation Data
Uber, Snapchat, and Golden Technologies are the latest companies to come under fire for how they use the geolocation data they colect from their customers. In this week’s podcast, we talk to Fernando Bohorquez, a partner at the law firm BakerHostetler who specializes in privacy and data security issues, about ...
-
Blog
Sony, Lesson 1: Communication Breakdown
Image: The lessons from Sony’s surrender to North Korean hackers last week are too many to count right now, so let’s start with an immediate one: understand the risks your company creates with its communication habits, and enforce smarter business practices to change them. Easy enough to say, Compliance Week ...
-
Blog
Bank CEOs, Boards Get Another Batch of Cyber-Security Help
Bank CEOs and boards have a fresh batch of cyber-security guidance to evaluate. On Wednesday, The Conference of State Bank Supervisors released “Cybersecurity 101: A Resource Guide for Bank Executives,” a document that collects industry-recognized standards and best practices that are currently used within the financial services industry.
-
Blog
TD Bank to Pay $625K for Data Breach
TD Bank this week reached a $625,000 settlement with the Massachusetts Attorney General’s Office after losing unencrypted back-up tapes containing personal information of more than 260,000 consumers nationwide, and delaying notice of the incident. The final settlement amounted to $825,000, but the AG’s Office credited the bank $200,000 to reflect ...
-
Article
Companies Struggle Over When to Report They’ve Been Hacked
Image: When a company discovers that sensitive data has been compromised, two of the toughest decisions that it faces are whether and when to let regulators, customers, and the public know about the loss. While companies may be hesitant, government officials say they can help. “Getting search warrants, arrest warrants, ...
-
Blog
StarCompliance Selects Carpathia for Enhanced Compliance Audit Capabilities
StarCompliance, a provider of employee conflicts-of-interest compliance solutions for financial services firms, has selected Carpathia, a cloud services and managed-hosting provider, to help enhance its security and compliance audit capabilities. Details inside.
-
Blog
Accuvant and FishNet Security Join Forces
Accuvant and FishNet Security, both providers of information-security services and solutions, recently signed a definitive agreement to join forces. This move brings together the complementary strengths of the two organizations, creating a new provider with a broader suite of services, solutions, expertise, and expanded reach to meet customers’ complex and ...