Privacy Shield details lacking, but so far varies little from Safe Harbor
Two weeks ago, European Commissioner Věra Jourová tweeted that the text for Privacy Shield, a new framework for transatlantic data flows, will be finalized by the end of February. The agreement between...
View ArticleCybersecurity questions get the boardroom’s attention
“Security has transcended from an IT issue to a boardroom issue.” This was how Microsoft corporate vice president and CISO Bret Arsenault opened his panel discussion at last month’s RSA Conference in...
View ArticleClik here to view.
SecureWorld Boston highlights value of partnerships
Some 1,500 cybersecurity professionals gathered at this week’s SecureWorld Boston conference that featured discussions with leading industry experts about today’s best cybersecurity practices. The...
View ArticleClik here to view.
Twine Health CEO: Frequent, real-time interaction boosts patient trust
Despite the prevalence of consumer data collection and analysis today, there remains a glaring lack of clear policies and legislation around the protection of that data, according to privacy experts at...
View ArticleClik here to view.
FCC’s consumer privacy proposal: Harmful to innovation?
The FCC’s newly proposed privacy protection rules requires broadband and wireless providers to obtain consumer consent before collecting and sharing their data, but some are concerned this approach is...
View ArticleAt Google, company culture key is to assuring consumer privacy
The lack of comprehensive federal privacy legislation leaves not only consumers vulnerable, but also companies frustrated. Many consumers lack information about the many ways their personal data is...
View ArticleClik here to view.
PCI DSS 3.2 multifactor requirement among the version’s biggest changes
Details surrounding the updated Payment Card Industry Data Security Standard show that version 3.2 includes new multifactor authentication and encryption requirements. Also in recent GRC news: SEC...
View ArticleMedical records theft from NFL team’s trainer could violate HIPAA
Late last month, the NFL Players Association informed its member teams that a Washington Redskins trainer’s laptop containing players’ medical records was stolen and that it would collaborate with the...
View ArticleGRC roundup: UK intelligence agencies’ data collection efforts deemed illegal
Government intrusion of data privacy continues to be a global issue, as a British court recently ruled that UK security agencies illegally collected citizens’ data for 17 years. Also in recent GRC...
View ArticleTrump presidency raises questions for regulatory compliance
The future of regulatory compliance is under scrutiny as President-elect Donald Trump’s administration continues the transition process. Also in recent GRC news: Hackers demanded ransom after disabling...
View Article
