All Privacy articles – Page 2
-
Article
Data privacy and cyber-security considerations in M&A deals
The increasingly ominous specter of cyber-risk can cast a shadow over any merger or acquisition. But due-diligence practices can lower the risk.
-
Blog
MediaPro launches GDPR Privacy Awareness Solution
MediaPro recently launched its General Data Protection Regulation (GDPR) Privacy Awareness Solution, designed to help companies comply with one of the most significant data privacy regulatory updates in recent years.
-
Article
5 things FinServ firms should know about the NY cyber-law
With New York’s new cyber-security law in effect, compliance officers will need to stay agile to remain compliant with data protection rules. Here are five tips for how to do just that.
-
Blog
Some key cyber-security tips for financial firms
As the SEC and FINRA are taking cyber-security much more seriously, John Reed Stark outlines a few ways in which financial firms can also do more to protect their data.
-
Article
Global business in Trump’s protectionist era
Trump’s election, Brexit, and failed trade agreements herald a new era of protectionism, but only strong regulations can deal with data protection and tax evasion, writes Nick Henderson.
-
Article
New York’s proposed cyber-security compliance challenge
Starting in January, strict new rules form the Empire State will require compliance officers to make sure their organizations make the grade when it comes to data protection. More from Todd Taylor.
-
Article
Before M&A, think cyber: what every board needs to know
Nothing can sideline a merger or acquisition quite so well as dodgy cyber-security compliance. Simone Petrella discusses what every board should know in advance.
-
Article
Better cyber-security through better cyber-compliance training
The Achilles’ heel of every cyber-security program is compliance. Javvad Malik offers some tips on how the right kind of training can fix that.
-
Article
TalkTalk’s £400,000 data hack fine is a dire warning
Regulators have used TalkTalk as an example that they can and will go after companies that take cyber-security and protecting customer data lightly. Neil Hodge explores.
-
Blog
There simply are not enough cyber-security specialists
Companies need to get much more aggressive when it comes to recruiting the right talent to head their cyber-security efforts, writes John Reed Stark.
-
Article
Amid corruption scandals, compliance booms in Brazil
It might seem that corruption scandals are one of Brazil’s leading exports this year, but amid renewed government anti-bribery enforcement efforts, the country’s compliance sector is growing by leaps and bounds. Rodrigo Amaral has more.
-
Article
This is not a game: Scenario planning can help protect your organization’s reputation
With some 4,000 cyber-attacks occurring every day, compliance officers are looking for any solution to help protect their organization from cyber-risk. A method worth considering is wargaming: a simulation that provides a live example of what a cyber-attack might look like and illustrates what can be to better protect the ...
-
Article
In cyber-security, the real enemy strikes from within
While organizations are trying to understand their cyber-risk and how best to address it, focusing on external threats can overlook an even greater problem, say guest contributors Mark Dorosz and Jennifer Benson: security flaws from internal employees who don’t understand, or don’t care, about upholding the organization’s defenses.
-
Blog
Cyber-security due diligence: a new imperative
Weak cyber-security is as much a hallmark of corporate mismanagement as poor corporate governance, bad tone from the top, and check-the-box compliance. But by taking the due diligence aspects of cyber-security seriously, compliance officers can turn data protection into an opportunity. John Reed Stark has more.
-
Blog
SEC's Ceresney says more cybersecurity cases 'coming down the pike'
The SEC has begun to bring cybersecurity-related enforcement actions under Regulation S-P of the Securities Act of 1933, and Enforcement Director Andrew Ceresney stated this week that more such cases are now "coming down the pike."
-
Blog
France fines Google $112,000 over right to be forgotten
France’s data protection regulator has fined Google €100,000 (U.S. $112,000) after it refused to comply with the regulator’s order to remove URLs from search results everywhere. The fine follows a May 2014 ruling by the European Union Court of Justice, affording European citizens the right to ask search engine providers ...
-
ArticleThe current state of the EU-U.S. Privacy Shield
The EU-U.S. Privacy Shield, a new compliance framework for the transatlantic transferral of personal information, is almost ready. But the strict data privacy compliance obligations it would impose require a close look now to prevent running afoul of tough data standards that become law later.
-
Article
Preparing for the EU’s new Data Protection Rule
Sweeping changes to the EU’s data protection laws means new compliance headaches for any U.S. company that collects and handles data on citizens of the European Union. “It’s a game changer, primarily because it sets standards that many companies haven’t had to worry about,” said Hilary Wandall, associate vice president ...
-
Article
Liability Protections Included in New Cyber-Security Law
You may have not even noticed it, but discreetly tucked into the massive omnibus spending bill signed into law last month is a provision that effectively makes it safer for companies to share cyber-threat information with one another—but critics argue the bill doesn’t go far enough to ease privacy concerns.
-
Blog
The SEC’s Newly Proclaimed Search Warrant Authority
The Securities and Exchange Commission has broad subpoena powers that this dedicated corps of highly credentialed professionals—inspired by a noble sense of mission, and rich with a long history of investor advocacy—tries to use in the best way possible. But when it comes to issuing subpoenas for electronic storage devices, ...