- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By 
Neil Hodge2022-10-24T14:29:00
The head of the U.K. Information Commissioner’s Office (ICO) warned companies not to ignore “crucial measures” to prevent cyber incidents following the regulator’s decision to fine construction firm Interserve 4.4 million pounds (U.S. $5 million) for failing to secure employee personal information.
“The biggest cyber risk businesses face is not from hackers outside of their company but from complacency within their company,” said U.K. Information Commissioner John Edwards in a news release Monday. He added organizations are leaving themselves vulnerable to cyberattacks by ignoring simple measures like updating software and training staff.
The ICO determined Interserve breached the U.K. General Data Protection Regulation (GDPR) by failing to keep the personal information of its 113,000 staff secure when it suffered a ransomware attack. Between March 2019 and December 2020, the ICO said the company, which is in the process of being broken up, failed to take appropriate technical and organizational measures to protect personal data.
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec. Select an option and click continue.
Annual Membership $499 Value offer
Full price one year membership with auto-renewal.
Membership $599
One-year only, no auto-renewal.
The U.K. Information Commissioner’s Office began publishing the details of cases where organizations breached the General Data Protection Regulation but were not fined. Legal experts share their take on the initiative.
Four senior compliance practitioners share their roles in ensuring data privacy compliance at their respective companies and the other departments that support their efforts.
Discord, a popular communication service primarily utilized by the video game community, was assessed a fine of €800,000 (U.S. $829,000) by the French data protection authority for multiple violations of the General Data Protection Regulation related to safeguarding user data.
Eight business executives, including the billionaire owner of Indian energy company Adani Group, were charged with fraud for their alleged roles in a multi-million bribery scheme to win a solar energy contract in India.
Three months after a U.S. district judge declared Google to be running a monopoly, the Department of Justice recommended the tech giant be forced to sell off its popular Chrome browser as part of an effort to resolve antitrust concerns and reshape the power of tech’s biggest companies.
A bank examiner and senior manager at the Federal Reserve Bank of Richmond pled guilty to insider trading after allegedly misappropriating confidential information on seven banks to make profitable trades.
