Since 2017, the New York Department of Financial Services (NYDFS) cybersecurity regulation has established minimum cybersecurity requirements for financial services companies that are licensed or registered by NYDFS. The regulation is set to be updated[1] in 2023 to address the ever-increasing sophistication and scope of cyber threats. NYDFS issued a draft regulation last November, and…
It’s Monday morning and you’ve logged in to start working on your inbox. One email jumps out first: over the weekend a sales team member had their company laptop and a thumb drive stolen at a coffee shop. Or, they accidentally left it there—they’re not quite sure how it got away. Regardless, a Good Samaritan…
Records management and information governance professionals are all too aware data breaches are on the rise. Clients know, too—and they are looking for organizations that fight back. Obtaining SOC 2 certification is one way to show your organization takes data security seriously. RIM and IG professionals play a central role in data security, and RIM/IG’s…
Recent Data Breaches Prompt Big Changes in Australian Privacy Penalties Two massive data breaches exposing the personal information of millions of Australians rocked the country—one in September and another in October— prompting Australia’s parliament to swiftly respond with dramatic increases to penalties allowable under its Privacy Act. In September, telecom company Optus made public news…
California recently became the first state to enact legislation governing the profiling and processing of personal information gathered from children online.[1] The California Age-Appropriate Design Code Act (CAADCA) becomes law on July 1, 2024, and builds upon the state’s current privacy legislation.[2] The law applies to any business that provides an online service, product, or feature…
BOISE, Idaho — If you are following the various privacy laws being passed around the world, you have certainly heard a lot of chatter about cookies. You may also be annoyed by website banners that pop up whenever you view a website. What are cookies and why are they used? Cookies are small text files…
Since our previous post discussing plans for the European Union-U.S. Trans-Atlantic Data Privacy Framework, the United States has taken a significant step toward setting this new framework into action. On Oct. 7, 2022, President Joe Biden signed an “Executive Order on Enhancing Safeguards for United States Signals Intelligence Activities,” which lays out steps the U.S.…
Privacy is a crucial part of records and information management. Privacy, however, can be a puzzling topic to approach. Formal RIM texts frequently contain little privacy. And a RIM professional’s first experience many times involves jumping headlong into some involved issues, and without much exposure to the foundations. This can be like being handed a…
Privacy is everywhere these days. And as RIM professionals, we must be aware of how privacy laws impact records and information management. But terms like ‘sectoral versus comprehensive regulatory approach,’ ‘cross contextual behavioral advertising,’ and many, different—and often convoluted—definitions of ‘personal data’ can make privacy a difficult topic to stay engaged in. Thankfully, for RIM…
April 5, 2023 Virtual Coffee with Consulting: What on Earth is Going on with ChatGPT and What Does it Have to do with IG? ChatGPT is just one of many ventures pushing the boundaries of large language models and AI. The technology is fascinating, but ChatGPT isn’t the only example. And clearly, the sexiness of…