If you are weighing whether you need a privacy policy for your website. We’ll shortly answer your question. If you are hoping to create a website irrespective of your region, the answer is yes. And why do you need a privacy policy? Well, having a policy is part of good business practice. You want to assure … Read more
The Federal Trade Commission (FTC) published a new guide: Start with Security: A Guide for Business. The FTC derived these ten lessons from the 50+ data security settlements reached with companies in recent years. Given how the Wydham case confirmed that the FTC has enforcement authority in this area, companies should assess, and document, their data … Read more
We’ve given our take on some of the common misconceptions about cloud computing that are expressed by the public (see Myth 1 and Myth 2). Join us now as we focus on the security of cloud computing. Myth 3: Cloud Computing is Bad for Data Security. The fact is that employee malice and negligence (e.g., lost laptop, smart phone, … Read more
Under the European General Data Protection Regulation (GDPR), which will start to apply on 25 May 2018, many companies will be required to appoint a Data Protection Officer (DPO). Violating the requirements relating to the appointment of a DPO can be sanctioned with fines of up to EUR 10 million or up to 2 percent … Read more
Once confined to scientific research and criminal investigations, biometric data is now frequently used in everyday scenarios like building access controls, mobile devices and airport security checks. It is hailed for enhancing security but it is also feared for invading privacy. In this post, you will learn five basics you should know about biometrics. Click here for … Read more
In light of the GDPR, the German data protection authorities (German DPAs) have issued new guidance regarding the implementation of whistleblowing hotlines. The new position of the German DPAs is so fundamentally different from their pre-GDPR position that German companies should review, and likely implement changes to, any existing whistleblowing hotlines offered to their employees. … Read more
Since its genesis, the General Data Protection Regulation (GDPR) has been winding its way through the long and arduous EU law-making process. If you did not follow this process, here is your chance to catch up in a few minutes. If you are on top of the process to date, check back in next week … Read more
Organizations are recognizing that data scientists can play a valuable role in enterprise IT security. However, effective security requires a collaborative effort between data scientists and security professionals within an enterprise. While data scientists have a pivotal role to play, they cannot and should not operate in a vacuum. Leveraging Data Science to Mitigate Security … Read more
Fact is for most companies that they are already transmitting data internationally, because they use the Internet (for example, to email spreadsheets to various office locations), or because they have subsidiaries, customers, suppliers or channel partners in other jurisdictions. In most cases, data transfers occur because data is needed in different jurisdictions, not because of … Read more
Fact is that the United States enacted the USA Patriot Act in October 2001 to fight terrorism and money laundering activities. The statute’s title – USA Patriot Act – stands for Uniting and Strengthening America by Providing Appropriate Tools Required to Intercept and Obstruct Terrorism Act. It was intended to clarify, simplify and strengthen investigative … Read more