In Europe

Prevailion’s New Hacker Intelligence Service Provides Full Transparency on Undisclosed Corporate Breaches for Compliance and Auditing Professionals

Retrieved on: 
Wednesday, July 15, 2020
Technology, Retail, Legal, Insurance, Human resources, Finance, Consulting, Supply chain management, Small business, Banking, Accounting, Professional services, Data management, Security, Data security, Law, Information privacy, Data protection, General Data Protection Regulation, In Europe, Privacy law, Regulatory compliance, Health Insurance Portability and Accountability Act, Audit

This lack of transparency poses a significant problem for many interested parties, but its particularly challenging for the compliance industry.

Key Points: 
  • This lack of transparency poses a significant problem for many interested parties, but its particularly challenging for the compliance industry.
  • To address this deficiency, the cyber intelligence company Prevailion is now offering a special program for compliance and auditing professionals.
  • This discounted program is available to PCI QSAs, HIPAA compliance officers, SOX and GDPR auditors, and others in the compliance field.
  • Prevailion is also holding a live webinar on Undisclosed Breach Intelligence for compliance professionals on August 5 (register at https://www.prevailion.com/webinar-undisclosed-breach-intelligence/ ).

OneTrust Launches Free CCPA and GDPR Compliance Tools

Retrieved on: 
Tuesday, July 7, 2020
Data security, Data protection, General Data Protection Regulation, In Europe, Information privacy, Privacy law, CCPA, Law, Privacy, California Consumer Privacy Act

ATLANTA, July 7, 2020 /PRNewswire/ --OneTrust today launched new free tools for privacy and security teams to automate GDPR and CCPA compliance programs.

Key Points: 
  • ATLANTA, July 7, 2020 /PRNewswire/ --OneTrust today launched new free tools for privacy and security teams to automate GDPR and CCPA compliance programs.
  • OneTrust Free Tools help users get started with the automation, workflows and record keeping needed to comply with GDPR, CCPA, ISO 270001 and hundreds of the world's privacy laws and security frameworks.
  • The OneTrust Free Tools are backed by OneTrust DataGuidance regulatory research and OneTrust Athena AI.
  • OneTrust Free tools include:
    OneTrust Privacy: Automate assessments, intelligently map data and respond to privacy rights requests for GDPR, CCPA, LGPD and global privacy compliance.

OneTrust Launches Free CCPA and GDPR Compliance Tools

Retrieved on: 
Tuesday, July 7, 2020
Data security, Data protection, Information privacy, Law, Terms of service, General Data Protection Regulation, In Europe, Privacy law, Internet privacy, California Consumer Privacy Act

OneTrust free privacy and cookie tools help teams automate CCPA, GDPR, and global privacy programs

Key Points: 
  • OneTrust free privacy and cookie tools help teams automate CCPA, GDPR, and global privacy programs
    ATLANTA, July 7, 2020 /PRNewswire/ --OneTrust today launched new free tools for privacy and security teams to automate GDPR and CCPA compliance programs.
  • OneTrust Free Tools help users get started with the automation, workflows and record keeping needed to comply with GDPR, CCPA, ISO 270001 and hundreds of the world's privacy laws and security frameworks.
  • The OneTrust Free Tools are backed by OneTrust DataGuidance regulatory research and OneTrust Athena AI.
  • OneTrust Free tools include:
    OneTrust Privacy: Automate assessments, intelligently map data and respond to privacy rights requests for GDPR, CCPA, LGPD and global privacy compliance.

Belgian DPA imposes fine of 1000 euro on a controller for not responding to a request to object to the processing of his data for marketing purposes

Retrieved on: 
Saturday, June 27, 2020
Privacy law, Data security, Information privacy, Data protection, General Data Protection Regulation, In Europe, Privacy, Law, DPA, Draft:THE EU REPRESENTATIVE, Draft:EU REPRESENTATIVE

The Belgian DPA has imposed a fine of 1000 euro on a controller for not responding to a request from a citizen to object to the processing of his data for marketing purposes (article 15.3 GDPR), and for not collaborating with the authority (article 31 GDPR).

Key Points: 
  • The Belgian DPA has imposed a fine of 1000 euro on a controller for not responding to a request from a citizen to object to the processing of his data for marketing purposes (article 15.3 GDPR), and for not collaborating with the authority (article 31 GDPR).
  • In a previous decision, the Belgian DPA had ordered the controller to meet the request of the plaintiff and to notify the Belgian DPA of the action taken on the request.
  • For this attitude, as well as the established infringement of the right to object, the Belgian DPA decided to eventually impose a 1000 euro fine.
  • This press release was originally published by the national supervisory authority and was published here at the request of the SA for information purposes.

Belgian DPA imposed a fine of 1,000 EUR on an association that sent direct marketing messages to (former) donors for fundraising

Retrieved on: 
Saturday, June 27, 2020
Data security, Data protection, Information privacy, Privacy law, Privacy, General Data Protection Regulation, In Europe

The Belgian Data Protection Authority has imposed a fine of 1,000 EUR on an association that, on the basis of its legitimate interest (Article 6.1, f) GDPR), sent direct marketing messages to (former) donors for its fundraising.

Key Points: 
  • The Belgian Data Protection Authority has imposed a fine of 1,000 EUR on an association that, on the basis of its legitimate interest (Article 6.1, f) GDPR), sent direct marketing messages to (former) donors for its fundraising.
  • The Litigation Chamber decided that the data controller thereby infringed Articles 6.1, 17.1, c) and d), 21.3 and 21.4 GDPR.
  • First of all, the Litigation Chamber found that the data controller did not comply with the data erasure request and the data subject's right to object.
  • This decision implements the 2020-2025 Strategic Plan of the Belgian Data Protection Authority, of which 'direct marketing' is one of the priority strategic points.

Thirty-second plenary session: Statement on the interoperability of contact tracing applications, statement on the opening of borders and data protection rights, response letters to MEP Körner on laptop camera covers and encryption and letter to the[...]

Retrieved on: 
Wednesday, June 17, 2020
Data security, Data protection, Information privacy, Privacy law, General Data Protection Regulation, In Europe, Information, Schengen Area, Computer security, Public Company Accounting Oversight Board

During its 32nd plenary session, the EDPB adopted a statement on the interoperability of contact tracing apps, as well as a statement on the opening of borders and data protection rights.

Key Points: 
  • During its 32nd plenary session, the EDPB adopted a statement on the interoperability of contact tracing apps, as well as a statement on the opening of borders and data protection rights.
  • The Board also adopted two letters to MEP Krner - on encryption and on Article 25 GDPR - and a letter to CEAOB on PCAOB arrangements.
  • Giving data subjects information and control will increase their trust in the solutions and their potential uptake.
  • The goal of interoperability should not be used as an argument to extend the collection of personal data beyond what is necessary.
  • Ensuring interoperability is not only technically challenging and sometimes impossible without disproportionate trade-offs, but also leads to a potential increased data protection risk.
  • The EDPB adopted a statement on the processing of personal data in the context of reopening the Schengen borders following the COVID-19 outbreak.
  • These include lawfulness, fairness and transparency, purpose limitation, data minimisation, storage limitation, security of data and data protection by design and by default.
  • 46 (2) (a) and 46 (3) (b) GDPR for transfers of personal data between EEA and non-EEA public authorities.

Privacera Announces Latest Version of the Privacera Platform for Secure Data Sharing in Databricks

Retrieved on: 
Wednesday, June 17, 2020
Data security, Information, Privacy law, Computing, Information privacy, Data protection, General Data Protection Regulation, In Europe, Databricks, Data mining, Information sensitivity, Computer security

Privacera provides secure data sharing across the enterprise and balances the competing mandates of data democratization while adhering to applicable privacy and industry regulations such as GDPR and CCPA.

Key Points: 
  • Privacera provides secure data sharing across the enterprise and balances the competing mandates of data democratization while adhering to applicable privacy and industry regulations such as GDPR and CCPA.
  • As a part of this launch, Privacera also announced a partnership with Databricks , the Data and AI company.
  • Privacera provides a natively integrated solution that extends security for data access and management of Databricks clusters.
  • Automated Data Discovery and Classification - Artificial intelligence-based data discovery scans, classifies, and tags data and creates a data catalog so data teams can understand where sensitive data exists.

New TrustArc Survey Data Shows Nearly One-Third of Organizations Are Just Starting CCPA Planning

Retrieved on: 
Wednesday, June 17, 2020
Data security, Privacy law, Law, Politics and technology, Data protection, General Data Protection Regulation, In Europe, Information privacy, Privacy, CCPA, Childhood Cancer Parents Alliance, TrustArc

"There are more than 900 global privacy laws to which organizations must adhere, making privacy management an ongoing and dynamic challenge," said Chris Babel, CEO, TrustArc.

Key Points: 
  • "There are more than 900 global privacy laws to which organizations must adhere, making privacy management an ongoing and dynamic challenge," said Chris Babel, CEO, TrustArc.
  • "The TrustArc survey highlights just how difficult it can be to comply with even a single new regulation, such as CCPA, let alone the entire list of existing laws.
  • CCPA Compliance Readiness Mostly Lacking; Prior GDPR Preparedness a Boost
    Nearly one-third of survey respondents (29%) say they have just started planning for CCPA.
  • Nine percent have not started with CCPA compliance, and 15% have a plan but have not started implementation.

AST Private Company Solutions Leverages Box Platform to Power Astrella and Transform the Private Ownership Market

Retrieved on: 
Wednesday, June 3, 2020
Data management, Security, Technology, Software, Networks, Internet, Data security, Information privacy, Data protection, General Data Protection Regulation, In Europe, Privacy law, Vera Security, Privacy, Law

AST Private Company Solutions (AST PCS) today announced that it is leveraging Box Platform to power AST PCSs new Astrella capitalization (cap) table and ownership data management system, providing users with an encrypted cloud environment and immediate access to Boxs secure cloud content management platform, data storage and collaboration tools.

Key Points: 
  • AST Private Company Solutions (AST PCS) today announced that it is leveraging Box Platform to power AST PCSs new Astrella capitalization (cap) table and ownership data management system, providing users with an encrypted cloud environment and immediate access to Boxs secure cloud content management platform, data storage and collaboration tools.
  • By building this new feature on the Box Platform, Astrella users are able to seamlessly maintain company documents more securely and comply with the General Data Protection Regulation (GDPR).
  • Astrella was developed by AST PCS, the Silicon Valley-based unit of ownership data management leader AST , as a transformative technology in private company shareholder management.
  • Founded in 2019, AST PCS is an affiliate of AST and is focused on serving private companies worldwide.

MESA FINAL DEADLINE MONDAY: ROSEN, NATIONALLY REGARDED INVESTOR COUNSEL, Reminds Mesa Air Group, Inc. Investors of Important June 1 Deadline in First Federal Securities Class Action Filed by the Firm – MESA

Retrieved on: 
Saturday, May 30, 2020
Legal, Professional services, Data security, Data protection, General Data Protection Regulation, In Europe, Information privacy, Privacy law, Law, Security, Securities Class Action, Privacy

To join the Mesa class action, go to http://www.rosenlegal.com/cases-register-1825.html or call Phillip Kim, Esq.

Key Points: 
  • To join the Mesa class action, go to http://www.rosenlegal.com/cases-register-1825.html or call Phillip Kim, Esq.
  • toll-free at 866-767-3653 or email [email protected] or [email protected] for information on the class action.
  • Rosen Law Firm represents investors throughout the globe, concentrating its practice in securities class actions and shareholder derivative litigation.
  • 1 by ISS Securities Class Action Services for number of securities class action settlements in 2017.