Katarina Baker 
Imagine you are a member of a finance team. You receive an email from one of your suppliers containing an invoice for goods recently received. It requests that payment be made to a new bank account not previously used for such transfers. What would you do? The Business Email Compromise (‘BEC’) scam compromises business executives’ or … Read more
Organizations are recognizing that data scientists can play a valuable role in enterprise IT security. However, effective security requires a collaborative effort between data scientists and security professionals within an enterprise. While data scientists have a pivotal role to play, they cannot and should not operate in a vacuum. Leveraging Data Science to Mitigate Security … Read more
Fact is for most companies that they are already transmitting data internationally, because they use the Internet (for example, to email spreadsheets to various office locations), or because they have subsidiaries, customers, suppliers or channel partners in other jurisdictions. In most cases, data transfers occur because data is needed in different jurisdictions, not because of … Read more
Fact is that the United States enacted the USA Patriot Act in October 2001 to fight terrorism and money laundering activities. The statute’s title – USA Patriot Act – stands for Uniting and Strengthening America by Providing Appropriate Tools Required to Intercept and Obstruct Terrorism Act. It was intended to clarify, simplify and strengthen investigative … Read more
Fact is that data privacy and security laws primarily hold the data controller responsible for compliance – i.e., the customer in a service provider relationship. The customer has to ensure that the data made available to the service provider has been collected in compliance with privacy laws, data subjects have consented or received notice, filings have … Read more
Fact is that service providers may not always be able to limit their liability vis-à-vis the data subjects in scenarios where they contract with corporate customers and not the data subjects themselves. If hackers gain unlawful access to information residing in a hosted database, the service provider may be liable directly vis-à-vis the data subjects … Read more
We continue to separate fact from fiction in the context of cloud computing in our Cloud Myths Series. In case you missed our first myth, you can see it here. Myth 2: Cloud Computing Involves More Data Sharing and that is Inherently Bad for Privacy. Fact is that transferring data to data processing agents (who process data … Read more
Information is power…but it also creates organizational riskInformation is an increasingly valuable business asset. It is a resource that can help empower a business, allow it to uncover new opportunities and develop a competitive edge. For example, many online businesses routinely sift through massive amounts of data collected from users for insights into how they … Read more
The concept of AI is generally attributed to computer scientist John McCarthy, back in the ’50ies. It is extremely broad and complex, yet it may be summarized (at the risk of oversimplification) as machine intelligence designed to perform a defined set of actions and to learn from experience. AI is nowadays part of our lives, often … Read more
Sharing personal data in connection with the sale of a business can create risk for both the seller and the purchaser if not undertaken in compliance with data protection requirements as illustrated in a recent German case. In this post, we point out the perils of sharing personal data in connection with an asset deal … Read more
