Cyber Security Informer

What is General Data Protection Regulation Act (GDPR)?

Security Boulevard

APRIL 27, 2024

The widespread adoption of cloud services has introduced cybersecurity challenges and compliance complexities due to various privacy regulations in different jurisdictions. Customers relying on multiple cloud providers have limited control over […] The post What is General Data Protection Regulation Act (GDPR)?

Government

Government Cybersecurity Risk

Meta fined €17 million by Irish regulator for GDPR violations

CSO Magazine

MARCH 16, 2022

million) for violating multiple articles of the GDPR (General Data Protection Regulation) related to a series of 12 data breach notifications that occurred in the latter half of 2018. The Republic of Ireland's Data Protection Commission (DPC) has fined Facebook parent company Meta €17 million (US$18.6

Data breaches

How GDPR has inspired a global arms race on privacy regulations

CSO Magazine

APRIL 7, 2022

With many jurisdictions embracing EU-style privacy rules in line with the European Union’s GDPR , such as mandatory data-protection impact assessments, data privacy officers, and notification to individuals and regulators in the event of a data security breach, compliance is increasingly complex and an increasing burden for organizations.

Data privacy

Remember GDPR? Expect another set of cyber regulations around vulnerabilities

SC Magazine

APRIL 14, 2021

Organizations should anticipate having to treat these new vulnerability management guidelines as seriously as they treat GDPR. New regulations are on the way, and preparing for them means less “hair-on-fire” running up to deadlines. For American organizations, only the GDPR wake-up call in 2018 compares. The post Remember GDPR?

Government

Government Risk Information Security InfoSec

Chat app Knuddels fined €20k under GDPR regulation

Security Affairs

NOVEMBER 24, 2018

The chat platform violated GDPR regulation by storing passwords in clear text and for this reason, the regulator imposed its first penalty under the privacy regulation. Securi ty Affairs – GDPR, data breach). The post Chat app Knuddels fined €20k under GDPR regulation appeared first on Security Affairs.

Data breaches

Data breaches Passwords Advertising Accountability

How to comply with GDPR requirements

Security Boulevard

FEBRUARY 5, 2024

Understanding the Basics of GDPR Compliance Within the sphere of cybersecurity, significant strides were made as the European Union (EU) introduced an innovative legislative tool called the General Data Protection Regulation (GDPR), unveiled on May 25, 2018.

Cybersecurity

Italian data protection authority said that ChatGPT violated EU privacy laws

Security Affairs

JANUARY 30, 2024

Italian data protection authority regulator authority Garante said that ChatGPT violated European Union data privacy regulations. In early April 2023, the Italian Data Protection Authority temporarily banned ChatGPT due to the illegal collection of personal data and the absence of systems for verifying the age of minors. .

Data privacy

Data privacy Hacking Information Security

META hit with privacy complaints by EU consumer groups

Security Affairs

MARCH 4, 2024

Below are the questions and answers of my interview: What specific GDPR rules do the consumer groups claim Meta is not complying with? According to GDPR, Meta needs to have a legitimate reason, such as explicit consent, contractual necessity, or legal obligation, to collect and use individuals’ data.

Data collection

Data collection Surveillance Hacking Information Security

Dan Solove on Privacy Regulation

Schneier on Security

APRIL 24, 2024

Law professor Dan Solove has a new article on privacy regulation. In the European Union, the General Data Protection Regulation (GDPR) uses the express consent approach, where people must voluntarily and affirmatively consent. Both approaches fail.

Data collection

Data collection Risk

Hiring kit: GDPR data protection compliance officer

Tech Republic Security

JUNE 20, 2023

The European Union’s General Data Protection Regulation requires every business enterprise and public authority that collects personal data from EU customers and clients to protect that data from unauthorized access. The post Hiring kit: GDPR data protection compliance officer appeared first on TechRepublic. This hiring.

Under Attack: CVE-2023-6700 in ‘Cookie Information’ Plugin Threatens 100k WordPress Sites

Penetration Testing

FEBRUARY 1, 2024

In the ever-evolving Internet landscape, the importance of data privacy and compliance with regulations such as GDPR (General Data Protection Regulation) cannot be overstated.

Penetration Testing

Penetration Testing Data privacy Internet Internet

Data Privacy in Email Communication: Compliance, Risks, and Best Practices

Security Boulevard

APRIL 5, 2024

Learn about data privacy regulations, particularly GDPR. Reading Time: 5 min Data privacy in email communication refers to the protection and confidentiality of personal data. The post Data Privacy in Email Communication: Compliance, Risks, and Best Practices appeared first on Security Boulevard.

Data privacy

Data privacy Risk Cybersecurity

Why App Security Teams Need to Understand GDPR Compliance

Security Boulevard

APRIL 25, 2023

If you are part of an app and security team, or work with sensitive data, especially those in the tech industries, or have a global consumer base, then GDPR compliance needs to be on your radar.

What is the Difference Between DORA and GDPR?

Centraleyes

DECEMBER 14, 2023

DORA, or the Digital Operational Resilience Act , marks a transformative milestone in financial regulation. Key Components of DORA Drawing from existing EU regulations, supervisory authority guidance, and global standards in security and ICT risk management, DORA sets out to harmonize qualitative criteria for ICT risk management.

Data breaches

Data breaches Risk Penetration Testing Cybersecurity

EU GDPR Compliance Checklist

Tech Republic Security

OCTOBER 15, 2023

The EU General Data Protection Regulation is a comprehensive set of rules designed to keep the personal data of all EU citizens collected by any organization, enterprise or business safe from unauthorized access or use. The GDPR went into effect on May 25, 2018, and organizations need to comply. Failure to do so, would be.

British Airways: A Case Study in GDPR Compliance Failure

Security Boulevard

SEPTEMBER 2, 2022

An investigation into the breach by Britain's Information Commissioner Office (ICO) concluded that British Airways had violated Europe’s General Data Protection Regulation (GDPR). The post British Airways: A Case Study in GDPR Compliance Failure appeared first on Source Defense.

Risk

Risk Government

DEEP TECH NEWS: Respecting individual rights by using ‘privacy preserving aggregate statistics’

The Last Watchdog

JANUARY 28, 2024

Rising data privacy regulations underscores the need for such a capability, Boyle told me. Here are a few key takeaways: Rising regulations It’s not just the tech giants that have a strategic imperative to better understand user behaviors. This, in turn, has led to rising data privacy regulations.

Data privacy

Data privacy Financial Services Healthcare Advertising

UK Data Protection Act & GDPR: No More Confusion

TrustArc

JUNE 15, 2022

A guide to the GDPR General Data Protection Regulation and the UK Data Protection Act from TrustArc, the leader in privacy management software such as PrivacyCentral.

Software

Unstructured Data and What it Means for GDPR Compliance

Security Boulevard

MAY 4, 2022

Back on May 25, 2018, the European Union’s General Data Protection Regulation (GDPR) came into effect, meaning all organizations that offer goods or services to European Union residents, or collect consumer data within the region, are now required to comply with the regulation.

Unstructured Data

Unstructured Data Data privacy Risk Government

GDPR and Website Data Leakage:A Complex Problem With a Simple Solution

Security Boulevard

SEPTEMBER 8, 2022

By Source Defense Now in its fourth year, the European Union’s General Data Protection Regulation (GDPR) is one of the strictest, most complex, and most confusing data privacy laws in the world. Although that complexity initially meant that accountability got off to a slow start, GDPR fines are now becoming more common and costly.

Data privacy

Data privacy Accountability Risk Government

Importance of Data Security and GDPR

Security Boulevard

JULY 26, 2023

Data security and General Data Protection Regulation (GDPR) are critical to address these issues. The post Importance of Data Security and GDPR appeared first on Security Boulevard. Identity fraud losses are on the rise.

Risk

Risk Cybercrime Government Cybersecurity

What is GDPR Compliance and its 7 principles?

Security Boulevard

NOVEMBER 16, 2023

With 67% of EU residents aware of it, the GDPR is thought to be the strictest data privacy law in the world. In the year 2018, the General Data Protection Regulation called GDPR was in effect. The main objective was […] The post What is GDPR Compliance and its 7 principles? appeared first on Kratikal Blogs.

Data privacy

Data privacy Risk Government

EU privacy regulators to create taskforce to investigate ChatGPT

CSO Magazine

APRIL 14, 2023

The European Data Protection Board (EDPB) plans to launch a dedicated task force to investigate ChatGPT after a number of European privacy watchdogs raised concerns about whether the technology is compliant with the EU's General Data Protection Regulation (GDPR).

Technology

TikTok Faces Massive €345 Million Fine Over Child Data Violations in E.U.

The Hacker News

SEPTEMBER 16, 2023

The Irish Data Protection Commission (DPC) slapped TikTok with a €345 million (about $368 million) fine for violating the European Union's General Data Protection Regulation (GDPR) in relation to its handling of children's data.

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR, the EU’s flagship data privacy and “right to be forgotten” regulation, has made the stakes of a data breach higher than ever.

Data privacy

Data privacy Encryption Data breaches Insurance

Is GDPR Making Ransomware Worse?

Security Boulevard

AUGUST 11, 2021

As a landmark piece of legislation, the General Data Protection Regulation (GDPR) was undoubtedly created with the safety and privacy of European consumers’ personal data in mind. GDPR may be making it easier for ransomware operators to do business. . GDPR may be making it easier for ransomware operators to do business. .

Ransomware

EU slaps Meta with $1.3 billion fine for moving data to US servers

Bleeping Computer

MAY 22, 2023

billion fine on Facebook after claiming that the company violated Article 46(1) of the GDPR (General Data Protection Regulation). [.] The Irish Data Protection Commission (DPC) has announced a $1.3

Technology

EU General Data Protection Regulation Policy

Tech Republic Security

AUGUST 8, 2023

The EU General Data Protection Regulation is a comprehensive set of rules designed to keep the personal data of all EU citizens collected by any organization, enterprise or business safe from unauthorized access or use. The GDPR went into effect on May 25, 2018, and the provisions in the law greatly affected the manner in.

How Will ISO 27701 and the GDPR Affect Your Organization?

The State of Security

JANUARY 10, 2022

has no comprehensive cybersecurity law, many organizations still fall under state, international, or industry regulations. Two of the most prominent controlling publications are the General Data Protection Regulation (GDPR), and the ISO 27701 standard. The post How Will ISO 27701 and the GDPR Affect Your Organization?

Cybersecurity

What is the Difference Between DORA and GDPR?

Security Boulevard

DECEMBER 14, 2023

DORA, or the Digital Operational Resilience Act, marks a transformative milestone in financial regulation. The European Commission initially proposed this forward-looking […] The post What is the Difference Between DORA and GDPR? The post What is the Difference Between DORA and GDPR? appeared first on Centraleyes.

Data Protection Authorities In The EU Have Issued 661 GDPR-Related Fines In Three Years

Hot for Security

MAY 21, 2021

Despite many enforcement challenges seen throughout the years, European Union Data Protection Authorities, operating under the General Data Protection Regulation (GDPR), have issued a whopping 661 fines for a total of nearly 300 million Euros. In contrast, Spain issued the most significant number of GDPR fines, at 222 fines.

Data privacy

Data privacy Internet Internet Data breaches

GUEST ESSAY: How ‘DPIAs” — data privacy impact assessments — can lead SMBs to compliance

The Last Watchdog

JANUARY 9, 2023

Related: GDPR sets new course for data privacy. But this same characteristic can also be a disadvantage, as SMBs often lack the resources and expertise to keep up with complex regulations. It should be no surprise that data security regulations are on the rise. Scarce resources. DPIA starting point.

Data privacy

Data privacy Small Business Data collection Cyber Risk

GDPR certification is here at last – here’s why it’s a game changer

BH Consulting

AUGUST 31, 2022

Since the EU General Data Protection Regulation came into force in May 2018, there hasn’t yet been a way to prove compliance with it. Luxembourg’s GDPR-CARPA is the first officially recognised certification scheme to be adopted under the regulation. So why has it taken this long for a GDPR certification scheme to launch?

Data privacy

Data privacy Data breaches Government Accountability

WhatsApp fined €225M over GDPR issues

Security Affairs

SEPTEMBER 5, 2021

The instant messaging company violated the actual General Data Protection Regulation (GDPR). “The Data Protection Commission (DPC) has today announced a conclusion to a GDPR investigation it conducted into WhatsApp Ireland Ltd. Recently another tech giant, Amazon, faced a record $888 million fine over GDPR violation.

Hacking

Hacking Information Security

India drafts new privacy bill for transfer of personal data internationally

CSO Magazine

NOVEMBER 18, 2022

The Indian federal government on Friday published a new draft of data privacy laws that would allow personal data transfer to other nations under certain conditions, and impose fines for breaches of data-transfer and data-collection regulations. The proposed legislation has been in the works for about four years.

Data collection

Data collection Data privacy Banking Government

5 reasons why GDPR was a milestone for data protection

We Live Security

MAY 25, 2022

The landmark regulation changed everyone’s mindset on how companies worldwide collect and use the personal data of EU citizens. The post 5 reasons why GDPR was a milestone for data protection appeared first on WeLiveSecurity.

Italian Data Protection Watchdog Accuses ChatGPT of Privacy Violations

The Hacker News

JANUARY 30, 2024

GDPR [General Data Protection Regulation]," the Garante per la protezione dei dati personali (aka the Garante) said in a statement on Monday. Italy's data protection authority (DPA) has notified ChatGPT-maker OpenAI of supposedly violating privacy laws in the region. It also said it

Why Isn't GDPR Being Enforced?

Schneier on Security

MAY 2, 2019

Politico has a long article making the case that the lead GDPR regulator, Ireland, has too cozy a relationship with Silicon Valley tech companies to effectively regulate their privacy practices.

Data privacy

Data privacy Software Cybersecurity

Differences in App Security/Privacy Based on Country

Schneier on Security

SEPTEMBER 30, 2022

Users in countries not covered by data protection regulations, such as GDPR in the EU and the California Consumer Privacy Act in the U.S., For instance, 71 apps available from Google Play have clauses to comply with GDPR only in the EU and CCPA only in the U.S. are at higher privacy risk.

Mobile

Mobile Internet Internet VPN

GDPR and Schrems II Compliance Checklist

TrustArc

DECEMBER 14, 2022

TrustArc’s experts explain regulations for international data transfers, including standard contractual clauses, General Data Protection Regulation and Schrems II compliance. The post GDPR and Schrems II Compliance Checklist appeared first on TrustArc Privacy Blog.

OpenAI Is Not Training on Your Dropbox Documents—Today

Schneier on Security

DECEMBER 19, 2023

If OpenAI are training on data that they said they wouldn’t train on, or if Facebook are spying on us through our phone’s microphones, they should be hauled in front of regulators and/or sued into the ground. Hooray for the EU and GDPR.) It’s only a matter of time, unless we get serious government privacy regulation.

Government

Government Banking Risk Internet

UK: Post-Brexit Data Transfer Consultations Started

TrustArc

AUGUST 16, 2021

On 11 August, the data protection regulator in the United Kingdom, the Information Commissioner’s Office (ICO) opened a consultation on international data transfer post-Brexit. Like the EU GDPR, the UK GDPR allows for data transfers based on so-called appropriate safeguards, which include the use of approved model clauses.

Why 40% of privacy compliance tech will rely on AI by 2023

Tech Republic Security

FEBRUARY 25, 2020

The rise of regulations like GDPR have launched personal data security into the spotlight, and artificial intelligence is here to help.

Artificial Intelligence

The New Indian Personal Data Protection Bill (PDPB) Compared to GDPR

Security Boulevard

AUGUST 31, 2021

The EU’s General Data Protection Regulation (GDPR) has been around for some time now and has set the stage for other countries and regions to follow suit. As such, understanding a new data protection regulation can be fast-tracked by looking at the similarities and differences between the new regulation and GDPR.

Risk

Risk Government

What is General Data Protection Regulation Act (GDPR)?

Meta fined €17 million by Irish regulator for GDPR violations

Trending Sources

How GDPR has inspired a global arms race on privacy regulations

Remember GDPR? Expect another set of cyber regulations around vulnerabilities

Chat app Knuddels fined €20k under GDPR regulation

How to comply with GDPR requirements

Italian data protection authority said that ChatGPT violated EU privacy laws

META hit with privacy complaints by EU consumer groups

Dan Solove on Privacy Regulation

Hiring kit: GDPR data protection compliance officer

Under Attack: CVE-2023-6700 in ‘Cookie Information’ Plugin Threatens 100k WordPress Sites

Data Privacy in Email Communication: Compliance, Risks, and Best Practices

Why App Security Teams Need to Understand GDPR Compliance

What is the Difference Between DORA and GDPR?

EU GDPR Compliance Checklist

British Airways: A Case Study in GDPR Compliance Failure

DEEP TECH NEWS: Respecting individual rights by using ‘privacy preserving aggregate statistics’

UK Data Protection Act & GDPR: No More Confusion

Unstructured Data and What it Means for GDPR Compliance

GDPR and Website Data Leakage:A Complex Problem With a Simple Solution

Importance of Data Security and GDPR

What is GDPR Compliance and its 7 principles?

EU privacy regulators to create taskforce to investigate ChatGPT

TikTok Faces Massive €345 Million Fine Over Child Data Violations in E.U.

Security Compliance & Data Privacy Regulations

Is GDPR Making Ransomware Worse?

EU slaps Meta with $1.3 billion fine for moving data to US servers

EU General Data Protection Regulation Policy

How Will ISO 27701 and the GDPR Affect Your Organization?

What is the Difference Between DORA and GDPR?

Data Protection Authorities In The EU Have Issued 661 GDPR-Related Fines In Three Years

GUEST ESSAY: How ‘DPIAs” — data privacy impact assessments — can lead SMBs to compliance

GDPR certification is here at last – here’s why it’s a game changer

WhatsApp fined €225M over GDPR issues

India drafts new privacy bill for transfer of personal data internationally

5 reasons why GDPR was a milestone for data protection

Italian Data Protection Watchdog Accuses ChatGPT of Privacy Violations

Why Isn't GDPR Being Enforced?

Differences in App Security/Privacy Based on Country

GDPR and Schrems II Compliance Checklist

OpenAI Is Not Training on Your Dropbox Documents—Today

UK: Post-Brexit Data Transfer Consultations Started

Why 40% of privacy compliance tech will rely on AI by 2023

The New Indian Personal Data Protection Bill (PDPB) Compared to GDPR

Stay Connected