Tag: GDPR
-
Securing the Future Together: Why Thales and HPE are the Partners You Can Trust
Tags: access, ai, application-security, banking, business, cloud, compliance, computing, control, cryptography, cyber, cyberattack, data, dora, encryption, GDPR, government, Hardware, healthcare, infrastructure, network, nis-2, PCI, resilience, risk, service, software, strategy, threatSecuring the Future Together: Why Thales and HPE are the Partners You Can Trust madhav Tue, 06/17/2025 – 05:15 Across every industry, data drives decisions, innovation, and growth. As organizations modernize with hybrid cloud and AI, the risks to that data scale are just as fast. From sophisticated cyberattacks to increasingly stringent compliance demands, the…
-
Cybercrime losses averted under GDPR rules
First seen on scworld.com Jump to article: www.scworld.com/brief/cybercrime-losses-averted-under-gdpr-rules
-
Unmasking the silent saboteur you didn’t know was running the show
Tags: 5G, access, ai, api, attack, authentication, backup, blockchain, breach, ciso, cloud, compliance, control, cybersecurity, data, defense, endpoint, firewall, firmware, GDPR, governance, Hardware, incident response, iot, ISO-27001, login, malicious, network, nis-2, PCI, service, siem, supply-chain, threat, zero-trustCybersecurity depends on accurate clocks : Your logs are only as valuable as your clocks are accurate. If your servers are out of sync, forget to reconstruct timelines. You’ll spend hours chasing phantom alerts. Event correlation and forensics Your SIEM is only as good as the timestamps it gets. Correlating events across endpoints, firewalls and cloud…
-
Noyb Threatens Meta with Lawsuit for Violating GDPR to Train AI on E.U. User Data From May 27
Austrian privacy non-profit noyb (none of your business) has sent Meta’s Irish headquarters a cease-and-desist letter, threatening the company with a class action lawsuit if it proceeds with its plans to train users’ data for training its artificial intelligence (AI) models without an explicit opt-in.The move comes weeks after the social media behemoth announced its…
-
Your Data, Your Responsibility: Securing Your Organization’s Future in the Cloud
Tags: access, ai, application-security, attack, best-practice, breach, business, cloud, compliance, control, cyberattack, data, data-breach, dora, encryption, finance, framework, gartner, GDPR, google, ibm, infrastructure, international, mfa, network, PCI, phishing, privacy, regulation, risk, saas, service, strategy, threatYour Data, Your Responsibility: Securing Your Organization’s Future in the Cloud madhav Tue, 05/20/2025 – 04:37 Cloud adoption has fundamentally changed the way businesses operate, offering scalability, agility, and cost efficiencies that were unimaginable just a decade ago. But with this shift comes a necessary conversation: the cloud can also introduce complex security risks without…
-
Proposed GDPR Revisions Stokes Privacy Concerns
Privacy Activists Decry Loosening Record-Keeping Requirements. Privacy rights groups urged the European Commission to retreat from proposals to revise the GDPR. Europe pledged to lessen record-keeping obligations for companies with up to 500 employees so long as the data processing isn’t likely to result in a high risk. First seen on govinfosecurity.com Jump to article:…
-
GDPR Changes Risk Undermining its Principles, Civil Society Groups Warn
Civil society groups and academics are calling for the EU’s GDPR to remain unchanged following the EU Commission’s plans to revisit it First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/civil-society-defends-gdpr-data/
-
Brussels Court Slams Tracking-Based Ads, Upholds GDPR Privacy Standards
The Brussels Court of Appeal ruled on May 14, 2025, that the consent model used in tracking-based advertising by major tech companies such as Google, Microsoft, Amazon, and X (formerly Twitter) does not comply with EU privacy laws, including the General Data Protection Regulation (GDPR). First seen on thecyberexpress.com Jump to article: thecyberexpress.com/brussels-court-tracking-ads-gdpr/
-
Meta’s still violating GDPR rules with latest plan to train AI on EU user data, says noyb
‘Legitimate interest’ won’t wash, says privacy outfit, as Zuck’s org claims activists want to ‘delay AI innovation’ First seen on theregister.com Jump to article: www.theregister.com/2025/05/14/metas_still_violating_gdpr_rules/
-
TikTok Fined Euro530 Million Over Chinese Access to EU Data
European regulators sent an unmistakable message about messing around with GDPR-protected data. How can organizations avoid similar compliance hassles? First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/tiktok-fined-530-million-eu-data-servers-china
-
TikTok Fined Euro530m Over Transfers of European User Data to China
Ireland’s data protection watchdog accuses the Chinese social media giant of violating GDPR with transfers of European users’ data to China First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/tiktok-fined-530m-euros-european/
-
TikTok fined Euro530M after EU user data ends up on servers in China
Ireland privacy watchdog says transfers violated GDPR, as Chinese app confirms Euro1B datacenter in Finland First seen on theregister.com Jump to article: www.theregister.com/2025/05/02/tiktok_gdpr_fine/
-
Ireland’s DPC fined TikTok Euro530M for sending EU user data to China
Ireland’s Data Protection Commission (DPC) fined TikTok Euro530M for violating data rules by sending European user data to China. Ireland’s Data Protection Commission (DPC) fined the popular video-sharing platform TikTok Euro530 million for violating data laws by transferring data belonging to European users to China. TikTok violated GDPR by transferring EEA user data to China…
-
TikTok fined Euro530 million for sending European user data to China
The Irish Data Protection Commission (DPC) has fined TikTok Euro530 million (over $601 million) for illegally transferring the personal data of users in the European Economic Area (EEA) to China, violating the European Union’s GDPR data protection regulations. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/tiktok-fined-530-million-for-sending-european-user-data-to-china/
-
TikTok Slammed With Euro530 Million GDPR Fine for Sending E.U. Data to China
Ireland’s Data Protection Commission (DPC) on Tuesday fined popular video-sharing platform TikTok Euro530 million ($601 million) for infringing data protection regulations in the region by transferring European users’ data to China.”TikTok infringed the GDPR regarding its transfers of EEA [European Economic Area] User Data to China and its transparency requirements,” the DPC said in a…
-
Privacy regulator fines TikTok $600 million over EU data transfers to China
The Irish Data Protection Commission (DPC) fined Chinese-owned TikTok Euro530 million ($600 million) for violating GDPR rules about data transfers outside of Europe. First seen on therecord.media Jump to article: therecord.media/tiktok-fined-gdpr-data-chinese-servers
-
TikTok Fined 530 Million Euros for Data Transfer to China
Irish DPC Imposes a Fine for GDPR Violations. TikTok must pay 530 million euros to the Irish data regulator for non-compliance with European privacy law. The nearly $600 million fine stems from TikTok’s storage of European user data on servers in China and failure to disclose data transfers to China from July 2020 through November…
-
GDPR Data Breach Notification Template With Examples [Download]
The GDPR is a law developed by the European Union (EU) to protect individuals’ personal data. Although it originated in the EU, several countries and organisations outside Europe have to date also adopted this regulation, which shows how detailed and well-thought-out it is. Among many of the GDPR’s guidelines, the data breach notification letter is……
-
6 types of risk every organization must manage, and 4 strategies for doing it
Tags: ai, attack, backup, best-practice, breach, business, compliance, control, cyber, cybersecurity, data, finance, framework, fraud, GDPR, governance, government, grc, hacker, healthcare, infrastructure, insurance, intelligence, law, mitigation, office, phishing, ransom, ransomware, regulation, risk, risk-assessment, risk-management, service, startup, strategy, technology, threat, training, vulnerabilityCybersecurity risks Threats such as data breaches, phishing attacks, system intrusions, and broader digital vulnerabilities fall under the umbrella of security risks. The definition of cybersecurity risk is constantly evolving, now encompassing threats related to artificial intelligence and AI-driven systems.If you’re trying to mitigate risks in this area, you need to think not just about…
-
Assassin’s Creed maker faces GDPR complaint for forcing single-player gamers online
Collecting data from solo players is a Far Cry from being necessary, says noyb First seen on theregister.com Jump to article: www.theregister.com/2025/04/24/ubisoft_noyb_complaint/
-
Securing digital products under the Cyber Resilience Act
In this Help Net Security interview, Dr. Dag Flachet, co-founder at Codific, explains what the Cyber Resilience Act (CRA) means for companies and how it compares to GDPR in … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/04/18/dag-flachet-codific-cyber-resilience-act-regulatory-standards-for-organizations/
-
UK Fines Law Firm 60,000 Pounds for Ransomware Data Breach
Firm Failed to Close Outdated User Account, Waited 43 Days to Notify Regulators. The U.K. Information Commissioner’s Office imposed a fine of 60,000 pounds against Liverpool-based law firm DDP Law for GDPR violations relating to a 2022 ransomware hack and data leak that exposed sensitive information including the details of its clients’ cases. First seen…
-
Introducing Wyo Support ADAMnetworks LTP
Tags: attack, best-practice, business, compliance, cyber, cybersecurity, data, email, endpoint, finance, GDPR, government, guide, healthcare, infrastructure, insurance, law, linkedin, PCI, phishing, radius, ransomware, regulation, service, skills, strategy, technology, threat, tool, training, update, zero-trustADAMnetworks is excited to announce Wyo Support to the family of Licensed Technology Partners. “After working with the various systems and technologies, there are few that compare with the protection that ADAMnetworks provides. It reduces the attack surface from the broad side of a barn down to the size of a keyhole. No other technology…
-
EU’s GDPR Article 7 Poses New Challenges for Businesses To Secure AI-Generated Image Data
As businesses worldwide embrace digital transformation, the European Union’s General Data Protection Regulation (GDPR), enacted in 2018, remains a cornerstone of data privacy and security. A recent safety report highlighting the rapid advancement of artificial intelligence (AI) has renewed focus on GDPR compliance, particularly Article 7, which governs consent requirements for handling personal data, including…
-
10 things you should include in your AI policy
Tags: access, ai, best-practice, breach, business, ceo, ciso, compliance, cybersecurity, data, data-breach, finance, framework, gartner, GDPR, governance, incident response, insurance, law, monitoring, privacy, regulation, risk, software, strategy, switch, technology, tool, training, updateInput from all stakeholders: At Aflac, the security team took the initial lead on developing the company’s AI policy. But AI is not just a security concern. “And it’s not just a legal concern,” Ladner says. “It’s not just a privacy concern. It’s not just a compliance concern. You need to bring all the stakeholders…
-
Europe preparing to ‘ease the burden’ of landmark data privacy law
EU officials say it’s possible to make GDPR compliance easier for smaller organizations while ensuring that data privacy rules still work as intended. First seen on therecord.media Jump to article: therecord.media/eu-proposal-changes-gdpr-small-medium-businesses
-
Navigating Saudi Arabia’s Personal Data Protection Law (PDPL): A Guide to Compliance
Tags: access, ai, compliance, control, data, GDPR, governance, guide, identity, intelligence, law, monitoring, privacy, serviceNavigating Saudi Arabia’s Personal Data Protection Law (PDPL): A Guide to Compliance madhav Thu, 04/03/2025 – 04:30 The Kingdom of Saudi Arabia (KSA) has taken a significant step towards bolstering data protection with its Personal Data Protection Law (PDPL), marking a pivotal moment in the region’s digital landscape. The PDPL, enforced by the Saudi Data…