insurancejournal.com – Over a third (36%) of companies who paid a ransom to cyber criminals went on to be targeted for a second time, according to the latest Cyber Readiness
UK privacy advocate files complaint with ICO over facial recognition database
iapp.org – Big Brother Watch lodged a complaint with the U.K. Information Commissioner’s Office over a facial recognition image database. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1590630766882353152
China seeks comments on revised draft cross-border processing guidelines
iapp.org – Draft “Practice Guidelines for Cybersecurity Standards — Security Certification Specification for Cross-Border Processing of Personal Information” released… Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1590509822000402432
Probe leads to MEP’s spyware moratorium proposal
iapp.org – Dutch Member of European Parliament Sophie In’t Veld is calling for a moratorium on EU member states’ use of spyware. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1590449663689510913
Credit reporting company, telecom provider agree to multistate data breach settlement
iapp.org – Experian and T-Mobile entered into multistate settlements over data breaches sustained by both companies. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1590419730225332224
Training the Next Generation of Cyber Ninjas with Continuing Education
insurancejournal.com – As cyber attack methods are constantly evolving, guests on this episode of The Insuring Cyber Podcast offered their best advice for how to evolve with
Tech groups call bill to increase data breach penalties ‘overreach’
iapp.org – Tech groups called Australian privacy legislation that increases data breach penalties to $50 million or more “overreach” by targeting overseas customers. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1590177569374351360
ANPD releases 2023-2024 regulatory agenda
iapp.org – Brazil’s data protection authority, the Autoridade Nacional de Proteção de Dados, published its 2023-2024 regulatory agenda. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1590147456934748161
US senators request halt to FTC privacy rulemaking
iapp.org – U.S. senators sent a letter to FTC Chair Lina Khan asking the agency to stop its rulemaking initiative on commercial surveillance and lax data security. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1590087266189266944
The FTC’s rapidly evolving standards for MFA
iapp.org – This article looks at major decisions from the U.S. FTC and CISA that represent a big leap forward in the expectations placed on data custodians for use of M… Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1590057866961920001
ANPD seeks input on simplified registration of personal data processing operations
iapp.org – The ANPD is seeking opinions on a simplified registration model of personal data processing operations for small handling agents. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1589966750187081728
US senator seeks feedback on health care cybersecurity legislation
iapp.org – U.S. Sen. Mark Warner, D-Va., released a white paper calling for feedback to craft legislation that would address cybersecurity threats in health care. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1589936238018142208
Home stretch: Finalization of CPRA regulations draws closer
iapp.org – The California Privacy Protection Agency is drawing closer to finalizing California Privacy Rights Act regulations. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1589815153280811009
SolarWinds agrees to tentative $26M settlement over data breach
iapp.org – SolarWinds Corp. has tentatively agreed to a $26 million settlement with the SEC over a December 2020 breach. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1589682904501714944
A view from DC: The school of hard notices
iapp.org – IAPP Managing Director, Washington, D.C., Cobun Zweifel-Keegan offers insight on the latest privacy happenings in and around D.C. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1589670685638524930
Notes from the Asia-Pacific region, 4 Nov. 2022
iapp.org – IAPP India Advisory Group Member Shivangi Nadkarni offers the latest on the state of India’s data privacy. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1588803539312283649
TikTok’s updated privacy notice spells out data access
iapp.org – TikTok updated its European privacy notice and divulged details of company-wide user data access. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1588712877795442689
Research: Social media posts may impact student privacy
iapp.org – Researchers found an estimated 4.9 million public Facebook posts shared by schools and districts could identify students. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1588682790161326080
Nearly half of US government employees targeted in cellular credential theft attacks
iapp.org – Nearly half of all U.S. state, local and federal government employees were targeted in cellular-based credential theft attacks in 2021. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1588622695524188161
Pennsylvania bill would establish a state AI registry
iapp.org – Members of the Pennsylvania House of Representatives introduced a bill to create a state artificial intelligence registry. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1588592683571941378