Technology


GDPR

Corrective action could trump fines as GDPR evolves

2020-10-14T16:32:00+01:00By

Experts discuss whether EU data protection authorities would be better served using corrective actions other than eye-watering fines to encourage companies to commit to best (and legal) GDPR practices.

Nailedit1200x800

U.S. agencies get nod for using data, smart incentives in enforcement

2020-10-08T17:17:00+01:00By Compliance Week

Both the CFTC and CFPB “Nailed It” this week while corporate heavyweight General Electric found itself in more trouble.

Brian Miller

‘Audit in Action’: BDO partner shares data analytics journey

2020-10-01T19:42:00+01:00By

Brian Miller, national partner of audit transformation and innovation at BDO USA, talked with Compliance Week about how the pandemic has driven adoption of technologies by BDO’s auditors.

Data future

Ask a CCO: What will compliance look like in 5 years?

2020-09-30T16:57:00+01:00By Compliance Week

We asked nine prominent chief compliance officers to look into their crystal balls, and all of them saw data and advanced technology playing a larger role in the future of the profession.

askamii

Five ways the pandemic has changed compliance—perhaps permanently

2020-09-28T15:15:00+01:00By

It’s a good thing you’re all experts in partnering for change, as more than 3 in 4 of you think COVID-19 will have a permanent impact on some compliance functions.

GDPR

Companies face greater risk as GDPR class actions emerge

2020-09-24T18:00:00+01:00By

In the past month three of the world’s largest tech firms have been hit with legal actions that could lead to billion-dollar damages suits for alleged violations of the GDPR. Neil Hodge explores the trend and what to expect moving forward.

Youtube

U.K. lawsuit seeks $3.2B from YouTube for violating children’s privacy

2020-09-14T19:29:00+01:00By

A first-of-its-kind lawsuit in the U.K. alleges YouTube unlawfully collects personal information from children without parental consent and harvests their data for advertising purposes, in violation of British and European data privacy laws.

woods

Gut instinct keeps humans ahead of AI in fight against financial crime

2020-09-11T17:44:00+01:00By

As artificial intelligence evolves and takes on new tasks, whether it can develop the instinct of an experienced compliance professional will be key to its prevalence in the AML world, writes Martin Woods.

Facebook

Ireland’s order to Facebook to halt data transfers could have ‘profound’ impact

2020-09-10T16:06:00+01:00By

The Irish DPC’s order to Facebook to halt the transfer of European citizens’ personal data to the United States could pose operational and legal challenges that set a precedent for not only other tech giants, but companies generally.

aravo 300x200

CPE Webcast: Debunking myths of AI & ML in TPRM technology

2020-09-08T13:00:00+01:00Provided by

This webinar debunks the myths of AI and ML in third-party risk technology and drills into reality with a pragmatic application of how your data can be harnessed to support various risk management use cases.

genpact te cover

White paper: AI-enabled real-time T&E audit analytics to drive compliance and reduce spends

2020-09-04T08:42:00+01:00Provided by

Your company may be spending less on travel and entertainment expenses, but the risk of fraud and regulatory non-compliance is spiking. Without proper safeguards in place to manage T&E spend – a major operating expense – companies face costly consequences.

Nailedit1200x800

Credit social media giants for prepping for election chaos

2020-09-03T18:12:00+01:00By Compliance Week

Silicon Valley’s social media heavyweights deserve a nod for “war-gaming” potential misinformation scenarios in advance of November’s elections, while McDonald’s again finds itself on our “Not Lovin’ It” list.

FTC Building

Age of Learning to pay $10M for billing practices; ‘digital deception’ a trend?

2020-09-02T20:35:00+01:00By

The company that runs ABCmouse Early Learning Academy found itself in the FTC’s crosshairs for what the Commission alleges are unfair billing practices that are part of a wider problem across the internet.

proofpoint300x200

CPE Webcast: Capturing, managing communications data in modern enterprise

2020-09-01T14:00:00+01:00Provided by

Today’s employees and customers generate a lot of communications data, in a lot of formats and in a lot of locations, from computers and on prem servers to mobile devices and the cloud.

RecordsMgmt

Survey: Automating entity management greatly reduces compliance risk

2020-08-31T12:31:00+01:00By

A new study from Compliance Week and Diligent finds that many companies are still using unsecure and inefficient entity management processes, leaving them vulnerable to compliance risk.

Paul C. Dwyer

Q&A: New training takes compliance leaders on ‘non-technical’ cyber-journey

2020-08-27T16:28:00+01:00By

A new training offered by renown expert Paul C. Dwyer helps non-technical practitioners gain confidence in dealing with all aspects of cyber-security or cyber-risk.

Twitter

Clash over draft Twitter GDPR decision exposes differences among EU authorities

2020-08-26T14:23:00+01:00By

As Ireland’s first GDPR decision against Big Tech hangs in limbo, experts are scratching their heads as to why a seemingly straightforward case is headed to the EU’s data governing body to rule on.

Halimah DeLaine Prado

Google promotes veteran legal exec to general counsel

2020-08-25T21:05:00+01:00By

Embroiled in a federal antitrust investigation, tech giant Google announced the appointment of Halimah DeLaine Prado as its new general counsel.

Employee monitoring

How far is too far with employee monitoring? Barclays case could offer litmus

2020-08-20T14:54:00+01:00By

The U.K. Information Commissioner’s Office is investigating allegations that Barclays Bank had effectively been spying on employees by using an intrusive software system that monitored workers’ activity.

columnist icons - kyle

Trump’s TikTok crusade a hollow win for privacy

2020-08-19T16:44:00+01:00By

There’s no questioning the need to protect the data of U.S. citizens from China, but it’s naïve to think pressuring TikTok to take up a U.S. owner is anything more than a hollow victory given our lack of federal oversight in the area of privacy.

socure ai cover img

e-Book: Artificial intelligence: Risks and benefits for compliance

2020-08-19T07:45:00+01:00Provided by

Artificial Intelligence (AI) tools are being deployed in numerous areas by financial institutions and broker-dealer firms.

Salesforce

Oracle, Salesforce targeted in class-action GDPR lawsuits

2020-08-17T20:51:00+01:00By

A European privacy group is pursuing multiple class-action lawsuits against Oracle and Salesforce for alleged violations of the EU’s General Data Protection Regulation, estimating damages sought could exceed €10 billion (U.S. $11.9 billion).

processunity300x200

CPE Webcast: Future-proof your global supply chain with data & analytics

2020-08-13T14:00:00+01:00Provided by

The COVID-19 pandemic has certainly changed the landscape of global risk, and many organizations are quickly adapting their third-party risk management processes as a result.

columnist_nicodemus

Without guidance, U.S. companies in limbo after Privacy Shield scrapped

2020-08-12T19:31:00+01:00By

Despite a recent court ruling to scrap the EU-U.S. Privacy Shield, the program is apparently still alive and well in the United States. It’s time to move on, writes Aaron Nicodemus.

Twitter

Twitter could face up to $250M FTC fine for misuse of data

2020-08-04T15:34:00+01:00By

Twitter disclosed in a regulatory filing that it could face fines of up to $250 million by the Federal Trade Commission for misusing people’s personal information for advertising purposes.

Europedata

Five tips for EU-U.S. data transfers post-Privacy Shield

2020-08-04T15:21:00+01:00By

As the fallout from the demise of the Privacy Shield continues to play out, here are a handful of steps companies can take to protect themselves from potential GDPR violations when transferring data between the European Union and the United States.

Nailedit1200x800

What do FIFA chief, ‘Florida man,’ and Trump have in common? All Failed It this week

2020-07-30T18:18:00+01:00By Compliance Week

The lesson in this week’s edition of “Nailed It or Failed It?” is the more things change, the more they stay the same.

Data money

IBM report: Average data breach cost nearly $4M in past year

2020-07-30T16:41:00+01:00By

An IBM report that examined more than 500 cyber-security breaches occurring between August 2019 and April 2020 found the average breach costs companies $3.86 million and requires nearly 300 days to identify and contain.

cybergrx300x200

CPE Webcast: Digital transformation & cyber risk: What you need to know

2020-07-28T14:00:00+01:00Provided by

Join Larry Ponemon, founder of Ponemon Institute, and Dave Stapleton, CISO of CyberGRX, as they discuss the impact digital transformation is having on cyber-security and some best practices you can implement to better protect your organization.

Egnyte smart content cover img

White paper: Smart Content Governance - Unleash the Power of the Modern Cloud-based Office

2020-07-28T02:06:00+01:00Provided by

Now more than ever, companies need strong data governance that can be applied across multiple repositories, apps, and devices, no matter where work gets done.

EU US privacy

Companies paying price for EU-U.S. Privacy Shield removal

2020-07-27T21:43:00+01:00By

The legal and financial burden for companies to comply with the recent ruling to invalidate the EU-U.S. Privacy Shield might actually be worse than first thought, if an FAQ from the European Data Protection Board is any indication.

Twitter

Twitter cyber-attack should be wake-up call for firms

2020-07-21T17:57:00+01:00By Jake Plenderleith, International Compliance Association

The recent cyber-attack directed at Twitter was the online equivalent of an explosive device being detonated. The ICA breaks down lessons learned from the hack and what firms can do to enhance their cyber-security controls.

Twitter fail

How Twitter got hacked, and what you can learn from it

2020-07-16T20:43:00+01:00By

Twitter just suffered the biggest cyber-attack in its history. But is it being set up for something bigger? We explore that possibility and much more.

Europe Justice

Europe’s top court strikes down U.S.-EU data transfer rule

2020-07-16T15:21:00+01:00By

In a surprise decision that will have a major impact on trans-Atlantic data transfers, Europe’s top court ruled Thursday that a mechanism used by thousands of companies to send data to the United States is unlawful.

Nailedit1200x800

Nailed It or Failed It? Twitter’s meltdown exposes major vulnerability

2020-07-16T09:29:00+01:00By Compliance Week

In this week’s “Nailed It or Failed It?”, we reflect on the most troubling aspect of Wednesday’s giant Twitter hack while giving Wells Fargo a rare kudos for being good corporate citizens.

Twitter

Giant Twitter hack impacts Joe Biden, Barack Obama, Bill Gates, others

2020-07-15T22:40:00+01:00By DeAnn Orie

Perhaps the biggest Twitter hack of all time was perpetrated Wednesday against such notable figures as Joe Biden, Bill Gates, Elon Musk, former President Barack Obama, and Jeff Bezos, among others.

AI United States

Study: U.S. largest target for ‘significant’ cyber-attacks

2020-07-13T15:55:00+01:00By

The United States has been on the receiving end of more significant cyber-attacks over the last 14 years than triple any other country, according to new research.

KYC-Tech

What regulators want to know about KYC technology

2020-07-09T13:06:00+01:00By

So, your company has decided to embark on an update of its legacy Know Your Customer system. Hear from experts on how to begin the process of onboarding that tech to the regulators.

askamii

Ask Amii mailbag: What to do when back-to-work guidance falls to you

2020-07-02T12:50:00+01:00By

Executive coach Amii-Barnard Bahn offers some tips for when your compliance title morphs into “Chief Public Health Officer,” plus ways to highlight the compliance function at your company and more.

David Lefort

Market forces, not regs, leading the charge for data privacy

2020-06-30T19:13:00+01:00By

Data privacy is about to become a more tangible concept to Americans not due to regulation like the CCPA, but because the most influential brand in the nation is making it a pillar of how it does business.

Columnist_Hodge

Ireland’s GDPR report shows it’s yet to hold Big Tech accountable

2020-06-29T18:31:00+01:00By

The Irish Data Protection Commission review of its GDPR investigations has come under fire for ignoring Big Tech and lacking information pertinent to inquiries into firms like Apple, Facebook, Google, and more.

CCPA_cartoon

Experts: CCPA enforcement will prioritize children’s privacy, digital marketing

2020-06-25T15:01:00+01:00By

What will enforcement of the California Consumer Privacy Act look like at first? Experts offer their take, in addition to providing guidance for companies still not in compliance with the landmark legislation.

truyo300x200

CPE Webcast: Key privacy considerations for getting back to business

2020-06-25T14:00:00+01:00Provided by

Throughout the pandemic, technology will play a critical role as businesses adapt to this “new normal.” One strategy industries will rely on to provide employees and consumers with peace of mind is the use of temperature screening technology.

FTC

FTC stumps for additional resources to police privacy

2020-06-23T18:41:00+01:00By

The FTC says it would consider creating three new units to pursue privacy enforcement investigations if Congress would increase its full-time employee headcount.

Google

French court upholds Google’s $57M GDPR fine

2020-06-22T16:29:00+01:00By

The top administrative court in France shot down Google’s appeal of a €50 million (U.S. $57 million) fine the tech giant received last year for violations of the EU’s General Data Protection Regulation.

Social media

DOJ proposes rollback of legal shields for Twitter, Facebook

2020-06-18T19:24:00+01:00By

The Department of Justice has proposed a series of rollbacks of protections for online platforms that would encourage them to police their content.

Cyber-security

Report slams ‘woefully lax’ cyber-security controls at CIA

2020-06-18T17:00:00+01:00By

Cyber-security protections deployed for some of the nation’s most secret data was “woefully lax,” according to a 2017 intelligence brief that detailed shortcomings at the CIA following the agency’s 2016 data breach.

ContactTracing

Contact tracing app development stunted by inaction in Congress

2020-06-17T18:44:00+01:00By

As federal officials dicker over details in a federal data privacy law, the coronavirus continues to spread. Development of a key technological tool in the fight is being kneecapped by their inaction.

SecuritiesRobot

Report: AI tools carry many benefits, some risks for securities industry

2020-06-12T17:55:00+01:00By

A study on the use of artificial intelligence in the securities industry by FINRA found a number of challenges with the technology—data bias, customer privacy, and cyber-security among them—but noted it can offer “significant benefits.”

California lawsuit

Data broker lawsuit involving ZoomInfo could provide CCPA enforcement insight

2020-06-11T16:18:00+01:00By

As the July 1 enforcement deadline of the California Consumer Privacy Act inches closer, a recently filed lawsuit between two data marketing firms may shed light on the efforts companies must take to comply with the new law.