All Data Privacy articles – Page 14
-
ArticleClosing the data risk gap: How technology enables data protection
Legal and compliance teams ranked data privacy and cybersecurity threats the No. 1 biggest risk entering 2022. Further survey results reveal roadblocks to organizations’ proactive compliance.
-
ArticleNew Utah privacy law ‘lighter’ than predecessors
Utah has become the fourth U.S. state to pass a comprehensive data privacy law, with others potentially on the way during this legislative session. Experts weigh in on how the Utah law compares to its counterparts in California, Colorado, and Virginia.
-
ArticleExperts optimistic, though wary, toward Privacy Shield successor
Legal and data privacy experts have expressed cautious optimism regarding the announcement that the United States and European Union have reached an agreement in principle to resume transatlantic data flows.
-
ArticleThird time’s the charm? Agreement in principle reached on U.S.-EU data flows
The United States and European Union have reached an agreement in principle on how to handle transatlantic data flows, a thorny issue that has resulted in two prior frameworks being scrapped by the EU’s top court.
-
ArticleNew ICO head strives for reassurance in first speech
John Edwards, head of the U.K. Information Commissioner’s Office, said he wants to bring greater certainty for companies regarding their data compliance needs, especially if the government’s drive to reduce regulatory burdens results in the EU withdrawing its data adequacy decision.
-
ArticleMomentum building toward Privacy Shield replacement?
Recent comments by EU and U.S. lawmakers and insights from privacy experts suggest a new mechanism to replace the defunct Privacy Shield and ensure safe transatlantic data transfers might soon be introduced.
-
ArticleHow EU regulators are warning of Russian data protection threats
Regulators in Norway, Germany, Lithuania, Estonia, Denmark, and Sweden address how companies can prepare for increased data protection and cybersecurity risks in the wake of Russia’s invasion of Ukraine.
-
ArticleFormer CafePress owner to pay $500K in FTC settlement over data breach
Residual Pumpkin Entity, the former owner of CafePress, must pay $500,000 in redress under a proposed settlement with the Federal Trade Commission addressing allegations CafePress failed to secure personal data and covered up a data breach.
-
ArticleMeta fined $18.6M under GDPR for 2018 data breaches
The Irish Data Protection Commission fined Meta’s Irish subsidiary 17 million euros (U.S. $18.6 million) for a series of personal data breaches that took place nearly four years ago.
-
ArticleClearview AI fined $22M in Italy over unlawful data collection
Facial image aggregator Clearview AI was fined €20 million (U.S. $22 million) for unlawfully processing the biometric and geolocation data of Italian citizens in violation of privacy laws including the General Data Protection Regulation.
-
ArticleAmazon transport arm GDPR fine imparts lesson on criminal record checks
Amazon Road Transport was fined €2 million (U.S. $2.2 million) for trying to carry out criminal record checks on freelance truck drivers it wanted to hire without Spanish law to back up the practice.
-
ArticleIAB Europe fighting back against ‘grossly unfair’ GDPR fine
Townsend Feehan, chief executive of the European arm of the Interactive Advertising Bureau, discusses the ramifications of her organization’s €250,000 (then-U.S. $286,000) fine under the General Data Protection Regulation in Belgium.
-
ArticleTelenor caught in GDPR conundrum over Myanmar subsidiary sale
A complaint filed with the Norwegian Data Protection Authority alleges Telenor’s progressing sale of its Myanmar-based subsidiary violates the EU’s General Data Protection Regulation by potentially exposing its customers in the region to military surveillance.
-
ArticleLawsuit by BitMEX co-founder could test GDPR’s reach over SARs
Ben Delo, co-founder of cryptocurrency exchange BitMEX, filed a complaint against Wise Payments after the company allegedly refused his requests under the General Data Protection Regulation to provide him with personal information it submitted via suspicious activity reports.
-
ArticleRulemaking on CPRA facing delay
The newly formed California Privacy Protection Agency appears behind schedule on rulemaking for the transition to the California Privacy Rights Act, putting the law’s July 2023 enforcement date in question.
-
ArticleStrategies for complying with multiple data privacy regimes
Complying with multiple data privacy regimes is not simple, but it is increasingly becoming expected. A panel at CW’s virtual Cyber Risk & Data Privacy Summit offered their advice regarding the current global privacy landscape.
-
ArticleWhy high-growth companies should prioritize data privacy
A group of experts at CW’s virtual Cyber Risk & Data Privacy Summit explained how complying with data privacy regulations from Day 1 can provide high-growth companies with certain competitive advantages.
-
ArticleTransparency key to navigating modern employee monitoring risk landscape
The opening session of Compliance Week’s virtual Cyber Risk & Data Privacy Summit addressed the challenges of using technology to monitor employees while considering regulatory and ethical risks.
-
ArticleHow Accor manages global data privacy compliance
Marie-Christine Vittet, vice president of compliance at hospitality chain Accor, shares with Compliance Week the company’s journey toward a global data privacy compliance program.
-
ArticleCosmote, parent company OTE fined $10.6M under GDPR
The Hellenic Data Protection Authority fined mobile phone operator Cosmote and its parent company OTE a total of €9.25 million (U.S. $10.6 million) for a data breach caused by a September 2020 cyberattack and for illegally processing customer data.