fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " data breach "

Warning for workers after charity employee is prosecuted for data protection offences

People working with personal information have been warned they have to obey strict privacy laws after a charity worker was prosecuted for making his own copies of sensitive data.

Source: Warning for workers after charity employee is prosecuted for data protection offences | ICO

Survey of data security requirements in multistate breach settlements

Businesses that operate across state lines must comply with multiple state consumer protection statutes. Often these statutes include prohibitions against “deceptive” and “unfair” trade practices. Attorneys general at the state level have interpreted consumer protection statutes to provide de facto data security requirements for businesses to follow when collecting and storing the personal data of consumers. In the case of a data breach, attorneys general may bring an enforcement action against companies for violating consumer protection laws by failing to secure consumer data.

Source: Survey of data security requirements in multistate breach settlements

Data breach guidance to influence market practice around the terms of data processing contracts

Technology suppliers could be forced to contractually commit themselves to much shorter deadlines for reporting data breaches to their clients than they do currently as a result of new guidance proposed by EU data protection watchdogs.

Source: Data breach guidance likely to influence emerging market practice around the terms of data processing contracts under GDPR, says expert

WP29 releases draft breach notification guidelines

The EU’s General Data Protection Regulation imposes stricter obligations on data controllers and processors to ensure the security of personal data. One of the new mechanisms introduced to reach this objective is data breach notification, a concept familiar to U.S.-based privacy professionals, but still relatively new to the EU.

Source: WP29 releases draft breach notification guidelines

>