All Data Privacy articles – Page 13
-
Article
Telenor caught in GDPR conundrum over Myanmar subsidiary sale
A complaint filed with the Norwegian Data Protection Authority alleges Telenor’s progressing sale of its Myanmar-based subsidiary violates the EU’s General Data Protection Regulation by potentially exposing its customers in the region to military surveillance.
-
Article
Lawsuit by BitMEX co-founder could test GDPR’s reach over SARs
Ben Delo, co-founder of cryptocurrency exchange BitMEX, filed a complaint against Wise Payments after the company allegedly refused his requests under the General Data Protection Regulation to provide him with personal information it submitted via suspicious activity reports.
-
Article
Rulemaking on CPRA facing delay
The newly formed California Privacy Protection Agency appears behind schedule on rulemaking for the transition to the California Privacy Rights Act, putting the law’s July 2023 enforcement date in question.
-
Article
Strategies for complying with multiple data privacy regimes
Complying with multiple data privacy regimes is not simple, but it is increasingly becoming expected. A panel at CW’s virtual Cyber Risk & Data Privacy Summit offered their advice regarding the current global privacy landscape.
-
Article
Why high-growth companies should prioritize data privacy
A group of experts at CW’s virtual Cyber Risk & Data Privacy Summit explained how complying with data privacy regulations from Day 1 can provide high-growth companies with certain competitive advantages.
-
Article
Transparency key to navigating modern employee monitoring risk landscape
The opening session of Compliance Week’s virtual Cyber Risk & Data Privacy Summit addressed the challenges of using technology to monitor employees while considering regulatory and ethical risks.
-
Article
How Accor manages global data privacy compliance
Marie-Christine Vittet, vice president of compliance at hospitality chain Accor, shares with Compliance Week the company’s journey toward a global data privacy compliance program.
-
Article
Cosmote, parent company OTE fined $10.6M under GDPR
The Hellenic Data Protection Authority fined mobile phone operator Cosmote and its parent company OTE a total of €9.25 million (U.S. $10.6 million) for a data breach caused by a September 2020 cyberattack and for illegally processing customer data.
-
Article
Meta threatens to pull Facebook, Instagram in Europe over GDPR data transfer dispute
Meta Platforms is threatening to pull down Facebook and Instagram in the European Union over concerns it cannot meet data-sharing rules set in the region’s General Data Protection Regulation.
-
Article
IAB Europe fined $286K under GDPR for data processing violations
The European arm of the Interactive Advertising Bureau was fined €250,000 (U.S. $286,000) by the Belgian Data Protection Authority for data privacy violations regarding its Transparency and Consent Framework.
-
Premium
Epilogue: What happened to Betsy?
The “patient zero” of fictional private utility company Vulnerable Electric’s ransomware crisis learns her fate.
-
Premium
Chapter 4: Recovery and lessons learned post-ransomware attack
Whether fictional private utility company Vulnerable Electric pays the ransom or not in the aftermath of its cyber incident, the two pathways quickly splinter off in different directions with varied endings, each with important lessons to be learned.
-
Premium
Ransomware case study glossary
The field of cybersecurity features a growing list of terminology to describe the many forms, channels, and motivations behind cyberattacks and hacking culture. Learn further definitions for some key terms featured throughout the ransomware case study.
-
Premium
Chapter 3: Ransomware eradication prompts tough choice: To pay or not to pay?
No matter what, the deck is stacked against fictional private utility company Vulnerable Electric as it weighs whether to pay the $5 million ransom demanded by a cybercriminal who breached its systems. Which path do you take?
-
Premium
Chapter 2, Part 2: Ransomware damage control and when to alert stakeholders
Systems at fictional private utility company Vulnerable Electric remain impacted in the aftermath of a ransomware attack, but the chief executive decides it’s time to be forthright with employees and customers.
-
Premium
Chapter 2, Part 1: Containment key to ransomware defense
With Day 2 of fictional private utility company Vulnerable Electric’s ransomware crisis comes the need to grasp the extent of its situation. The cyber incident response team’s synchronized efforts are pivotal as time is of the essence.
-
Article
Survey: Privacy budgets rise as businesses see consistent ROI
Companies believe effective privacy management improves trust, transparency, and provides a return on investment, according to the latest benchmark study by technology vendor Cisco.
-
Article
CW case study offers 360-degree view of ransomware attack
Learn through the eyes of the C-suite at Vulnerable Electric, a fictional private utility company impacted by a significant ransomware attack, as part of Compliance Week’s third case study.
-
Premium
Chapter 1, Part 1: Betsy’s human error triggers ransomware crisis
When one of fictional private utility company Vulnerable Electric’s most dedicated employees falls victim to a social engineering hack, her actions in the immediate aftermath are crucial to what will soon become a crisis for the C-suite.
-
Premium
Chapter 1, Part 2: All hands on deck in C-suite ransomware response
Following the events that triggered a double extortion ransomware attack, the CEO of fictional private utility company Vulnerable Electric mobilizes her cyber incident response team to begin assessing the path forward to dealing with the cybercriminal(s).