Ë

It’s been the usual mix of data breaches this month, with lots of mistakes being made and lots of ransoms being paid.

Read More

Today marks the first day of National Cyber Security Awareness Month (NCSAM), a collaborative effort that began in 2004 as part of a joint campaign of the National Cyber Security Alliance and the U.S. Department of Homeland Security (DHS).

Read More

It’s time for the month’s list of breaches and cyber attacks, and it’s a big one. Almost 1 billion records were leaked this month – 925,633,824 to be exact.

Read More

The experts I spoke with also saw concepts in the GDPR that were naturally complimentary to PIPEDA. Concepts like “accountability” and “privacy by design” could, and perhaps, should be given prominence in legislative amendments to PIPEDA.

Read More

It’s time to tally up August's breaches. The volume of breaches is actually rather low in comparison to recent months; however, the number of leaked records is a staggering 215,009,428

Read More

The EU-US Privacy Shield offered US businesses an opportunity to meet GDPR requirements prior to enforcement actions, yet the US government continued to neglect data privacy, positioning the EU Parliament to force a unified data protection standard by suspending the Privacy Shield

Read More

It is the responsibility of each business to be compliant with PIPEDA. It is crucial to conduct compliance assessments at each change in protocol, processes, or policies, and to fully understand all that is required of businesses in regard to PIPEDA.

Read More

The GDPR compliance deadline came in by force on 25th May 2018 and applies to all organizations processing and holding the personal information of data subjects. This includes contacts such as customers, partners and patients.

Read More

The minor changes in PCI DSS 3.2.1 reflect how existing requirements are affected once the effective dates and SSL/TLS migration deadlines have passed so that organizations can accurately report how their implementations meet these existing requirements after 30 June.

Read More

In truth, this should be called Data Discovery & Asset Management, because there’s absolutely no point having one without the other. Nor should these things not already be part of your standard practices.

Read More