Showing Posts In "Data Protection and Privacy" Category

Data Theft Rises Sharply, Insiders to Blame

A new survey exploring the main causes of corporate data breaches suggests that three out of four organizations in the US have been hit with the loss or theft of sensitive data in the last two years — and insiders are usually the ones at fault. According to the researchers involved in the study, rising […]

New Report Finds Insider Corporate Data Theft and Malware Infections Among Biggest Threat to Digital Business in 2016

Insider data theft and malware attacks top the list of the most significant concerns for enterprise security executives, a new report from Accenture and HfS Research reveals. Of those surveyed, a majority (69%) of respondents experienced an attempted or successful theft or corruption of data by insiders during the prior 12 months, with media and […]

Ten Tips for Addressing Employee Snooping of Personal Data

Ensuring that personal information held by an organization remains confidential and is seen only by employees who need it and for legitimate business purposes is a challenge that needs to be taken seriously. Accountability remains with the organization to safeguard personal information from unauthorized users or disclosure. The Office of the Privacy Commissioner of Canada […]

EU Data Transfers to the U.S.: Considering Your Options after Privacy Shield

With the recent approval of the EU-US Privacy Shield framework and the ability to start filing online registrations on 1 August, many companies have questions about the advantages and disadvantages of Privacy Shield as compared to other cross-border transfer mechanisms to cover trans-Atlantic data flows. Hogan Lovells answers your questions in their publication International Data Transfers – […]

EU Member States Approve Privacy Shield

On July 8, 2016, EU representatives on the Article 31 Committee approved the final version of the EU-U.S. Privacy Shield to permit transatlantic transfers of personal data from the EU to the U.S. The Privacy Shield is a successor framework to the Safe Harbor, which was invalidated by the Court of Justice of the European […]

Beyond Breach Prevention: The Need for Adequate Response

If there’s been any lesson learned in the past decade, it’s that despite tens of billions having been spent on anti-malware, firewalls, intrusion-detection and prevention systems, and other defensive technologies, it’s just not realistic for enterprise security teams to expect to be able to stop every attack. Yet, surprisingly, enterprises focus their efforts and their […]

Government Report Calls For Comprehensive Privacy Law

A new report on consumer privacy from the Government Accountability Office concludes that there ought to be a comprehensive federal law governing the collection, use and sale of personal information by companies since there currently is none. The just-released report on “information resellers” was requested in June 2011 by Sen. Jay Rockefeller (D-W.Va.), who last […]

Getting Rid of Consumer Report Information with the Disposal Rule

Businesses commonly use consumer reports when deciding whether to make a job offer or extend a line of credit. In the wrong hands, consumer reports may also be used to commit fraud and identity theft. This is why the Federal Trade Commission (FTC) enacted the Disposal Rule. As required by the Fair and Accurate Credit […]

Workplace Privacy 2014: What’s New and What Employers May Expect

New laws that went into effect on January 1, 2014, are a harbinger of what employers may expect to see in the coming year regarding workplace privacy: more restrictions on access to applicants’ and employees’ criminal history, credit information, and personal social media content. Employers will now be required to grapple with next-generation issues raised […]

FTC Reaches Settlement With Accretive Health on Inadequate Data Security

On December 31, 2013, the Federal Trade Commission announced that Accretive Health, Inc. (“Accretive”) has agreed to settle charges that the company’s inadequate data security measures unfairly exposed sensitive consumer information to the risk of theft or misuse. Accretive experienced a breach in July 2011 that involved the protected health information of more than 23,000 […]

Subscribe to our Publications