Microsoft: Navigating your compliance score in a shifting landscape
How on earth do you begin to get a handle on your compliance performance when the landscape is constantly shifting? Dan Cousineau and Graham Hosking explain how Microsoft Compliance Manager can help.
Spring cleaning? Don’t forget the data
This time of year is traditionally the time when we declutter our homes and remove what we don’t need. Sonia Cheng explains why the same principle should apply to data, particularly as the pandemic has led to the accumulation of information from new sources
Breaking the link between GDPR breach transparency and pain
The transparency requirements of GDPR are fuelling “micro-claims” for compensation, in addition to high-profile class action lawsuits. Stewart Room, preparing for his session at PrivSec Global, suggests the current system is creating perverse incentives and argues for a better solution
Facebook fined €7m in Italy for non-compliance with data practices
Italy’s Competition Authoity has fined Facebook €7m ($8.42m) for not complying with changes to data practices ordered by the anti-trust authority in November 2018
Compliance, cloud migration and securing the “new normal”
As remote working looks set to become the new normal, businesses need to ensure their corporate information and data protection is secure. In the first in a series of Covid-themed articles this week, Andy Beverley outlines some of the key considerations
Brazil’s new data protection regime
As the LGPD finally came into effect last month, PrivSec Report explores the new law and the impact it could have on the Brazilian data protection ecosystem and culture.
The Risks of Checkbox Compliance
A key principle of the GDPR is that personal data must be processed securely, using “appropriate technical and organisational measures” – the “security principle”. To meet this principle, organisations implement a variety of IT security technologies, all aimed at protecting information where it is stored and processed.
Privacy lawyer gives insight on the disruption expected after Schrems II ruling
Abigail Dubiniecki, freelance lawyer and privacy professional, talks with PrivSec about the likely complications that will follow the invalidation of the Privacy Shield and the new terms of Standard Contractual Clauses (SCCs).
Privacy Landscape in the Middle East
Privacy landscape in the Middle East has been flourishing in the last ten years with privacy laws and regulations emerging across the region.
Addressing Privacy and Data Security Implications of the Coronavirus
COVID-19 arrives just as the first omnibus privacy statute in the United States, the CCPA became effective. Since its January 1 effective date, we continue to wait for finalization of the CCPA regulations and enforcement that was slated for July 1.
Capturing consent and signing contracts
On May 25 2018, the General Data Protection Regulation (GDPR) became the main legal framework for data protection in the EU. The new laws apply to any company offering goods or services to EU citizens and managing personal data.
How do business cards sit with GDPR?
Think back to the last business event you attended. You likely met new contacts and at some point may have said, “Here, drop me a line,” reaching into your pocket to produce your details embossed on a flashy, tactile card.
Dealing with subject access requests under GDPR
Under the new General Data Protection Regulation (“GDPR”), which will come into force on 25 May 2018, individuals will benefit from heightened rights in terms of their ability to request and access personal data from any entities holding such data about them.
GDPR compliance: Where does the responsibility lie?
The natural assumption ahead of GDPR implementation is that businesses and service providers have, or are, taking steps to ensure that their systems and processes are compliant.
