Navigating Retention of Data Privacy Compliance Records Data privacy law compliance is in large measure about showing your work. Five years into the swell of new comprehensive data privacy laws, privacy teams are getting used to ensuring their organization’s personal data activities are well documented. This means creating records—often lots of them. And for records…
The Personal Data Protection Law (PDPL) is Saudi Arabia’s first comprehensive data protection law. It was published in the Official Gazette in September 2021 and came into effect on March 17, 2023. This law governs all aspects of the processing of the personal data of individuals residing in the country. Organizations will have until Sept.…
Refresh your news feed and you will often see yet another company has become the victim of a data leak. Today, most companies are storing sensitive information electronically, making data leaks a major concern. Information security is becoming more important than ever. Data Leak vs. Data Breach So, what is a data leak? Data leaks…
Data privacy laws continue to gain momentum among U.S. states. Just this spring, comprehensive consumer privacy bills have been enacted in Indiana, Iowa, Montana, and Tennessee. Florida enacted its Technology Transparency Act in June. Washington has also taken steps toward comprehensive privacy legislation with its My Health My Data Act, although it is more targeted…
Since 2017, the New York Department of Financial Services (NYDFS) cybersecurity regulation has established minimum cybersecurity requirements for financial services companies that are licensed or registered by NYDFS. The regulation is set to be updated[1] in 2023 to address the ever-increasing sophistication and scope of cyber threats. NYDFS issued a draft regulation last November, and…
It’s Monday morning and you’ve logged in to start working on your inbox. One email jumps out first: over the weekend a sales team member had their company laptop and a thumb drive stolen at a coffee shop. Or, they accidentally left it there—they’re not quite sure how it got away. Regardless, a Good Samaritan…
Records management and information governance professionals are all too aware data breaches are on the rise. Clients know, too—and they are looking for organizations that fight back. Obtaining SOC 2 certification is one way to show your organization takes data security seriously. RIM and IG professionals play a central role in data security, and RIM/IG’s…
Recent Data Breaches Prompt Big Changes in Australian Privacy Penalties Two massive data breaches exposing the personal information of millions of Australians rocked the country—one in September and another in October— prompting Australia’s parliament to swiftly respond with dramatic increases to penalties allowable under its Privacy Act. In September, telecom company Optus made public news…
California recently became the first state to enact legislation governing the profiling and processing of personal information gathered from children online.[1] The California Age-Appropriate Design Code Act (CAADCA) becomes law on July 1, 2024, and builds upon the state’s current privacy legislation.[2] The law applies to any business that provides an online service, product, or feature…
BOISE, Idaho — If you are following the various privacy laws being passed around the world, you have certainly heard a lot of chatter about cookies. You may also be annoyed by website banners that pop up whenever you view a website. What are cookies and why are they used? Cookies are small text files…