Security Affairs

JANUARY 30, 2024

. “Following the temporary ban on processing imposed on OpenAI by the Garante on 30 March of last year, and based on the outcome of its fact-finding activity, the Italian DPA concluded that the available evidence pointed to the existence of breaches of the provisions contained in the EU GDPR.

Data privacy 96

Data privacy Hacking Information Security 96

Heimadal Security

SEPTEMBER 16, 2021

government has entered a Deferred Prosecution Agreement (DPA) with three former intelligence operatives in an attempt to resolve criminal charges relating to their offering of hacking services to a foreign government.

Government 86

Government Hacking Cybersecurity 86

TrustArc

OCTOBER 5, 2021

It was laid before Parliament on 18 May 2021 and issued on 14 September 2021 under the DPA (Data Protection Act) 2018. The ICO’s Data Sharing Code of Practice comes into force on 5 October 2021. Its goal is to enable responsible data sharing by setting up best practices. How to achieve responsible data sharing? […].

116

116

TrustArc

SEPTEMBER 16, 2021

Romain is also a member of the litigation chamber of the Belgian Data Protection Authority and previously worked as legal advisor for both the Belgian DPA […].

105

105

Privacy and Cybersecurity Law

DECEMBER 1, 2015

The Polish DPA has recently issued a statement to the effect that all companies which previously relied on Safe Harbor […].

40

40

Security Boulevard

SEPTEMBER 27, 2021

Attorney’s office reached a deferred prosecution agreement (DPA). Last week, the three-year saga of Huawei’s CFO, Meng Wanzhou, accused of trade secret theft, obstruction of justice and sanctions-busting reached its conclusion. Meng and the U.S. Meng pleaded not guilty to the various fraud charges as part of the proceedings.

Telecommunications 108

Telecommunications Risk Government Cybersecurity 108

Heimadal Security

JANUARY 16, 2023

Article 82 of France’s data protection regulations (DPA), a national statute that complies with the GDPR (General Data […]. The post TikTok Fined $5.4 Million By French Authorities Over Cookie Opt-Out Feature appeared first on Heimdal Security Blog.

Cybersecurity 76

Cybersecurity 76

Heimadal Security

JANUARY 6, 2023

These actions are against Article 82 of the French Data Protection Act (DPA), the French law aligned with […]. Commission Nationale de l’Informatique et des Libertés (CNIL), the French data protection authority, fined Apple €8,000,000 ($8.5M) for collecting user data without the user’s consent. The post Apple Fined $8.0M

Data collection 68

Data collection Advertising Cybersecurity 68

Bleeping Computer

SEPTEMBER 15, 2021

government has entered a Deferred Prosecution Agreement (DPA) with three former intelligence operatives to resolve criminal charges relating to their offering of hacking services to a foreign government. [.].

Hacking 74

Hacking Government 74

Security Boulevard

APRIL 28, 2021

With this, Indusface customers globally can rely on our terms of the Indusface GDPR DPA. We are happy to announce that Indusface GDPR is now part of our Service Terms. The post Indusface GDPR Data Processing Addendum – Now Part of Service Terms appeared first on Indusface.

86

86

CyberSecurity Insiders

FEBRUARY 13, 2023

In the meantime, NATO websites were also targeted in the attack states a German news agency dpa and coincided with the digital invasion on Pepsi Cola Beverages. The company is busy in reviewing the incident and news is out that all the recipients of the breach will be offered a free identity monitoring service through Kroll.

Ransomware 121

Ransomware Insurance Manufacturing Malware 121

Schneier on Security

OCTOBER 3, 2018

The assumption that anything you share with an EU DPA stays confidential in the current media environment has been disproven by my personal experience. I once ran response for a breach of a financial institution, which wasn't disclosed for months as the company was working with the USSS to lure the attackers into a trap. It worked. [.].

CISO 226

CISO Media Hacking 226

BH Consulting

AUGUST 25, 2021

Looking at Ireland specifically, the Data Protection Act 2018 (DPA), section 46, outlines processing of sensitive personal data in relation to employment and social welfare law. Section 45 of the DPA states that organisations must take suitable and specific measures to safeguard data subjects’ fundamental rights and freedoms.

Technology 105

Technology 105

Threatpost

JANUARY 22, 2019

The French Data Protection Authority (DPA) found a lack of transparency when it comes to how Google harvests and uses personal data for ad-targeting purposes.

67

67

SecureWorld News

JANUARY 29, 2021

The Norwegian Data Protection Authority (DPA) recently notified the dating app Grindr of its intentions to administer a fine of NOK 100 million ($11.7 If Grindr is fined the proposed 10% of its annual turnover, it would result in the largest fine in the history of the Norwegian DPA.

Marketing 53

Marketing 53

Javvad Malik

NOVEMBER 5, 2021

Did you know that there’s a bug with the SA account in version 7 that…” “Do you know the DPA?” .” “Have you experience with windows Es Que El” He asked, clearly reading from a script. “Yeah, I know Windows sequel server. So far so good. Until it got to the questions.

Banking 133

Banking Retail Education Marketing 133

Security Affairs

JULY 5, 2023

The Austrian Data Protection Authority (DPA) decided on April 22, 2022, that the use of Google Analytics (GA) violates the GDPR. In February 2022, the French privacy regulator ruled against the use of Google Analytics.

Surveillance 89

Surveillance Government Risk Hacking 89

Security Affairs

NOVEMBER 27, 2018

The Dutch Data Protection Authority (Dutch DPA) fined the company 600,000 euro ($679,790) for failing to protect the personal information of 174,000 Dutch citizens. “The Dutch Data Protection Authority (Dutch DPA) imposes a fine of €600.000 upon Uber B.V. ” states the Dutch DPA.

Data breaches 86

Data breaches Cyber Attacks Advertising Hacking 86

Troy Hunt

MARCH 13, 2019

“Cookie walls don't comply with GDPR, says Dutch DPA”: [link] — Troy Hunt (@troyhunt) March 8, 2019.

Banking 249

Banking VPN Risk Advertising 249

Security Affairs

AUGUST 22, 2021

million customers Adobe addresses two critical vulnerabilities in Photoshop Hamburg’s data protection agency (DPA) states that using Zoom violates GDPR Kalay cloud platform flaw exposes millions of IoT devices to hack Fortinet FortiWeb OS Command Injection allows takeover servers remotely 1.9

Data breaches 102

Data breaches Mobile Ransomware DNS 102

Security Affairs

AUGUST 23, 2019

“ The Belgian Data Protection Authority (DPA) as well as the Hessian authority of Germany have been notified by Mastercard company of a data breach detected on 19 August 2019 which would have affected a large number of data subjects, a significant portion of which would be German customers.”

Data breaches 89

Data breaches Identity Theft Advertising Financial Services 89

Security Affairs

SEPTEMBER 17, 2020

The news agency dpa reported that a report from North Rhine-Westphalia state’s justice minister revealed that the hospital was hit by a ransomware attack, which infected 30 servers at its network and an extortion note was found on one of the systems. Currently the hospital is restoring its IT systems and resuming the operations.

Ransomware 135

Ransomware Cyber Attacks Advertising Hacking 135

Malwarebytes

AUGUST 7, 2023

This proceeding started in 2021, when the Dutch DPA imposed a fine of € 750,000 ($820,000) on TikTok. The size of the fine is not yet known but will surely be in the millions of Euros.

Risk 95

Risk Advertising Government Accountability 95

BH Consulting

SEPTEMBER 29, 2021

In July 2021, The Dutch Data Protection Authority (DPA) fined TikTok Inc €750,000. The Dutch DPA announced its investigation into TikTok back in May 2020, centred on whether it was appropriately safeguarding children’s data. TikTok did however appeal this fine.

Media 52

Media Mobile Advertising Marketing 52

Security Affairs

SEPTEMBER 22, 2020

The news agency dpa cited a report from North Rhine-Westphalia state’s justice minister that revealed the hospital was hit by a ransomware attack, which infected 30 servers at its network and an extortion note was found on one of the systems.

Ransomware 108

Ransomware Advertising Cyber Attacks Malware 108

Security Affairs

SEPTEMBER 15, 2021

“In addition to the financial penalties, as part of the DPA, the defendants agreed to full cooperation with the relevant Department and FBI components; the immediate relinquishment of any foreign or U.S. security clearances; a lifetime ban on future U.S. CNE techniques), and restrictions on employment for certain U.A.E. organizations.”

Surveillance 130

Surveillance Hacking Government Cybersecurity 130

Malwarebytes

JUNE 26, 2023

The Belgian Data Protection Authority (DPA) can issue a fine up to 4% of the global turnover of Proximus, which is roughly $250 million. We have therefore filed a complaint with the Belgian Data Protection Authority, who is competent for Proximus, BICS and TeleSign.” ” The lawsuit could end up to be very costly.

Mobile 72

Mobile Software Accountability Technology 72

BH Consulting

MAY 27, 2021

By paying attention to what their DPA deems to be the most important parts of GDPR, judging by the fines, smaller firms and organisations can focus their compliance programmes more effectively. GDPR is a large piece of legislation and it can be tough for SMEs and startups to navigate.

Ransomware 52

Ransomware Information Security Cybersecurity 52

BH Consulting

DECEMBER 19, 2023

If dealing with HR data commit to cooperate in investigations to comply with the advice of competent EU authorities in such cases register with HR EU Data Protection Authorities (DPAs) paying the requisite US$50 annual fee and arbitration fee. The EU DPA panel fee is payable to the United States Council for International Business (USCIB).Your

Data privacy 52

Data privacy Media Accountability Technology 52

McAfee

MAY 26, 2020

Though terrifying for many people, Brexit was handled relatively easily through a transition period, which goes until 31 st December 2020, during which UK organisations are bound by two laws: the EU GDPR and the UK DPA (Data Protection Act 2018 ). The EU GDPR will no longer apply directly in the UK at the end of the transition period.

Antivirus 52

Antivirus VPN Risk Software 52

BH Consulting

DECEMBER 1, 2020

Update your standard DPA template to remove any references to Privacy Shield. If the DPA does not specify, clarify if the processor has implemented additional safeguards to secure the data. The EDPB states: “Should you wish to keep on transferring data to the U.S., Are you serious? What should I do now?

Surveillance 52

Surveillance Encryption Government Risk 52

Privacy and Cybersecurity Law

FEBRUARY 6, 2020

Similarly, the GDPR still applies, and data protection agreements (DPA) are still required as part of an agreement with organizations that process personal data of individuals from the UK. The UK’s Data Protection Act of 2018 incorporates the GDPR into UK law.

Cybersecurity 59

Cybersecurity 59

Privacy and Cybersecurity Law

FEBRUARY 6, 2020

Similarly, the GDPR still applies, and data protection agreements (DPA) are still required as part of an agreement with organizations that process personal data of individuals from the UK. The UK’s Data Protection Act of 2018 incorporates the GDPR into UK law.

Cybersecurity 59

Cybersecurity 59

Security Affairs

NOVEMBER 24, 2018

“He told the company that after a hacker attack, it turned to the DPA and informed users immediately and extensively about the attack. . “the company from Karlsruhe violated the obligation to ensure the security of personal data, informed the Baden-Wuerttemberg data protection commissioner Stefan Brink on Thursday in Stuttgart.”

Data breaches 88

Data breaches Passwords Advertising Accountability 88

Security Boulevard

DECEMBER 2, 2022

s Data Protection Act (DPA) in 2018 by stealing and selling customer records to rogue organizations incurred a 6-month prison sentence. These penalties can include individual fines and jail time— and like fines, they encompass a wide spectrum of severity. For instance, one individual who violated the U.K.’s

Data privacy 52

Data privacy Risk Accountability Encryption 52

Privacy and Cybersecurity Law

JANUARY 27, 2021

In this regard, the LGPD also establishes that both data controller and data processor, despite the lack of obligation to enter into a DPA, shall take appropriate technical, security and administrative measures to protect personal data, subject to being held liable in case of data breach.

Data breaches 52

Data breaches Marketing Information Security Risk 52

Privacy and Cybersecurity Law

MAY 25, 2021

In a recent judgment of April 26, 2021, the Belgian Data Protection Authority (“DPA”) fined a financial institution (the “Company”) €100,000 for – amongst other things – failure to provide an adequate level of cybersecurity. Key takeaways. ROI of cybersecurity measures increases with this decision. Combining the function of DPO.

Cybersecurity 52

Cybersecurity CISO Risk Banking 52