CNIL Recommendations on the Prevention and Remediation of SQL Injections

10/10/2020


CNIL Recommendations on the Prevention and Remediation of SQL Injections

Securing an information system is essential to guarantee that the customers’ personal data is not stolen or compromised. SQL injection is a widespread attack, which can cause serious harm to individuals. It can allow a remote control of the server or installing a keylogger. The CNIL recommends how to protect against SQL attack and what to do in the case of becoming a victim of the attack.


Continue Reading
Summary of the Information on U.S. Privacy Safeguards Relevant to SCCs and Other EU Legal Bases for EU-U.S.Data Transfers after Schrems II

29/09/2020


Summary of the Information on U.S. Privacy Safeguards Relevant to SCCs and Other EU Legal Bases for EU-U.S.Data Transfers after Schrems II

The U.S. Government has prepared the White Paper, which outlines the robust limits and safeguards in the United States pertaining to government access to data.


Continue Reading
Premera Blue Cross Settles HIPAA Violation

29/09/2020


Premera Blue Cross Settles HIPAA Violation

The U.S. Department of Health and Human Services has announce that Premera Blue Cross had agreed to pay $6.85 million to the Office for Civil Rights at the HHS and to implement a corrective action plan to settle potential violations of the Health Insurance Portability and Accountability Act Privacy and Security Rules related to a breach affecting over 10.4 million people.


Continue Reading
The Irish Data Protection Commission Publishes Guidance Relating to Third Parties Accidentally in Receipt of Personal Data Relating to Other Individuals

06/09/2020


The Irish Data Protection Commission Publishes Guidance Relating to Third Parties Accidentally in Receipt of Personal Data Relating to Other Individuals

The Irish Data Protection Commission has issued Guidance to individuals and organizations who accidentally receive personal data, and Guidance to controllers who lose control over personal data in those circumstances.


Continue Reading
Eight Organisations in Breach of the Singaporean Personal Data Protection Act

30/08/2020


Eight Organisations in Breach of the Singaporean Personal Data Protection Act

The Singaporean Personal Data Protection Commission announced on August 03, 2020 that eight organisations were found in breach of the Personal Data Protection Act.


Continue Reading
The Office of the Privacy Commissioner of Canada new Privacy Guide for Businesses

26/08/2020


The Office of the Privacy Commissioner of Canada new Privacy Guide for Businesses

The Office of the Privacy Commissioner of Canada (OPC) has published the new Privacy Guide for Businesses. The Guide provides the summary of the PIPEDA and an overview of the CASL. It also addresses important points when dealing with data breaches and provides information on how to obtain a meaningful consent.


Continue Reading
The OAIC Notifiable Data Breaches Report: January–June 2020

11/08/2020


The OAIC Notifiable Data Breaches Report: January–June 2020

The Office of the Australian Information Commissioner has issued the Notifiable Data Breaches Report for the period from January to June 2020. The Commissioner, Angelene Falk, has said that malicious or criminal attacks including cyber incidents remain the leading cause of data breaches involving personal information in Australia.


Continue Reading