All Data Privacy articles – Page 44
-
Blog
Intronis Winter Release ‘15 Simplifies Hybrid Cloud Backup and Recovery
Intronis, a provider of backup and data protection solutions for the IT channel, this week announced the Winter Release ‘15 of its Intronis ECHOplatform. The Intronis Winter Release ’15 introduces several new business-building features and core functionalities designed to help channel partners better support more complex cloud, virtualized and physical ...
-
Article
Insurers Feel Fresh Heat on Cyber-Security Practices
Image: New York plan to bolster cyber-security oversight in the insurance sector, including regular, targeted assessments of cyber-security as part of its exam process. “Recent cyber-security breaches should serve as a stern wake-up call for insurers and other financial institutions to strengthen their cyber-defenses,” said New York Department of Financial ...
-
Article
An Insider Look at the EU’s Binding Corporate Rules
Companies that move data throughout Europe, or beyond its borders, face a long and exacting list of privacy and security demands. Some companies are choosing to take advantage of Binding Corporate Rules (BCRs), presenting their data compliance framework for approval by data protection authorities. BCRs, despite a lengthy approval process, ...
-
Blog
MetricStream Launches New Cyber-Security Hub
Unified Compliance, developer of the Unified Compliance Framework, and MetricStream, a provider of GRC apps, plan to launch through a joint initiative a new cyber-security hub via MetricStream’s portal ComplianceOnline.com, a GRC advisory network and online community. The cyber-security hub will consolidate and connect all major cyber-security requirements in a ...
-
Article
When State Attorneys General Come Knocking
Sometimes a sheriff arrives from the federal government to take an enforcement action against your company, and sometimes a posse of state attorneys general follow behind, determined to investigate you too. Such is the case for JP Morgan, now being pressed by 19 states for more detail on its massive ...
-
Blog
Anthem Discloses Huge Data Breach
Health insurer Anthem said hackers gained unauthorized access to its IT systems and stole personal information relating to tens of millions of current and former members and employees. Calling it a “very sophisticated external cyber-attack,” Anthem CEO Joseph Swedish said the breach does not appear to have compromised credit card ...
-
Article
SEC, FINRA Dropping Hints on Risk
Compliance officers looking to read some tea leaves about what worries the Securities and Exchange Commission these days might want to skim the 2015 exam priorities that the SEC and FINRA have posted. That guidance applies foremost to financial firms, but “it’s only a matter of time before they require ...
-
Blog
AvePoint Compliance Guardian SP 3 Helps With Data Loss Prevention
AvePoint, a provider of enterprise-class Big Data management, governance, and compliance software solutions for next-generation social collaboration platforms, has announced the general availability of AvePoint Compliance Guardian Service Pack (SP) 3. Compliance Guardian mitigates privacy, information security, and compliance risks across your information gateways with a comprehensive risk management process ...
-
Article
Latest PCI Standard Pushes Toward Risk Management
Image: Version 3.0 of the PCI Data Security Standard goes into effect this month—and maybe, just possibly, it will strengthen companies’ discipline against credit card data theft. The new standard prods companies to approach security as a continuous risk monitoring duty. “You can’t have smooth implementation until you start to ...
-
Blog
ECI Launches New Data Security Solution, PayArmor
Electronic Commerce International, a payment processing solutions provider, today announced the launch of PayArmor, a new way for companies to protect customer data from cyber criminals. PayArmor is a multi-layered suite of security and compliance services built to safeguard businesses against fraud, credit card data security breaches and to ...
-
Blog
Another Step Forward in Tackling Cyber-Security Risk
Image: Dec. 31—COSO’s Internal Control — Integrated Framework talks a good game about being useful beyond financial reporting risks, but Compliance Week Editor Matt Kelly has always wondered how that works in practice. Then came a nifty piece of guidance: a taxonomy of operational risks in cyber-security, published by the ...
-
Podcast
Podcast: Navigating the Pitfalls of Geolocation Data
Uber, Snapchat, and Golden Technologies are the latest companies to come under fire for how they use the geolocation data they colect from their customers. In this week’s podcast, we talk to Fernando Bohorquez, a partner at the law firm BakerHostetler who specializes in privacy and data security issues, about ...
-
Blog
Sony, Lesson 1: Communication Breakdown
Image: The lessons from Sony’s surrender to North Korean hackers last week are too many to count right now, so let’s start with an immediate one: understand the risks your company creates with its communication habits, and enforce smarter business practices to change them. Easy enough to say, Compliance Week ...
-
Blog
Bank CEOs, Boards Get Another Batch of Cyber-Security Help
Bank CEOs and boards have a fresh batch of cyber-security guidance to evaluate. On Wednesday, The Conference of State Bank Supervisors released “Cybersecurity 101: A Resource Guide for Bank Executives,” a document that collects industry-recognized standards and best practices that are currently used within the financial services industry.
-
Blog
TD Bank to Pay $625K for Data Breach
TD Bank this week reached a $625,000 settlement with the Massachusetts Attorney General’s Office after losing unencrypted back-up tapes containing personal information of more than 260,000 consumers nationwide, and delaying notice of the incident. The final settlement amounted to $825,000, but the AG’s Office credited the bank $200,000 to reflect ...
-
Article
Companies Struggle Over When to Report They’ve Been Hacked
Image: When a company discovers that sensitive data has been compromised, two of the toughest decisions that it faces are whether and when to let regulators, customers, and the public know about the loss. While companies may be hesitant, government officials say they can help. “Getting search warrants, arrest warrants, ...
-
Blog
StarCompliance Selects Carpathia for Enhanced Compliance Audit Capabilities
StarCompliance, a provider of employee conflicts-of-interest compliance solutions for financial services firms, has selected Carpathia, a cloud services and managed-hosting provider, to help enhance its security and compliance audit capabilities. Details inside.
-
Blog
Accuvant and FishNet Security Join Forces
Accuvant and FishNet Security, both providers of information-security services and solutions, recently signed a definitive agreement to join forces. This move brings together the complementary strengths of the two organizations, creating a new provider with a broader suite of services, solutions, expertise, and expanded reach to meet customers’ complex and ...