California Proposition 24

Update: CCPA Upgrade Passes–Everything You Need to Know

Voters in California voted yes on Proposition 24 this past Election Day, November 3. The ballot measure, which creates the California Privacy Rights and Enforcement Act (CPRA), was passed with a 56 percent majority. The law, also known as “CCPA 2.0” , which qualified for the November ballot by earning the signatures of nearly one million…
Read More
SAFE Data Act

The US Senate Proposes a Federal Data Privacy Law

Last week, Senate Republicans added to the growing pile of federal data privacy legislation drafts. The bill, known as the Setting an American Framework to Ensure Data Access, Transparency, and Accountability Act (the SAFE Data Act), is a stab at a comprehensive federal privacy law.  Here’s what to know about the new bill. It Embraces…
Read More
Data Protection Officer

The Role of a Data Protection Officer

Privacy regulations such as the EU’s General Data Protection Regulation (GDPR) and, more recently, Dubai’s Data Processing Law (DPL 2020) make it mandatory for organizations to appoint a Data Protection Officer (DPO). Under GDPR, a DPO is required for any organization that consistently monitors EU-based data subjects on a large scale. This might exclude smaller…
Read More
OCC And Capitol One

OCC Fines Capital One: Key Takeaways

Last year, Capital One experienced one of the largest-ever data breaches of a bank, when a hacker–Paige Thompson–got her hands on the personal information of over 106 million customers and applicants via a misconfigured AWS server. Now, the Office of the Comptroller of the Currency (OCC) has hit the bank with a whopping $80 million…
Read More
Third Party Risk Management

How to Manage Third-Party Risk With Increased Number of Remote Workers

Any compliance officer knows the importance of third-party risk management (TPRM)–and that keeping vendors in compliance with data privacy and protection laws is a continuous process. But, since the Covid-19 pandemic has forced most businesses to work remotely, overseeing vendor compliance has become much more difficult due to lack of a centralized operation. That’s in…
Read More
EasyJet Hack

Breaking Down the EasyJet Hack

Earlier this month, European budget airline EasyJet was hacked. In a “highly sophisticated attack,” 9 million customers had personal information, including email addresses and travel itineraries, compromised. And 2,208 customers had their credit card information stolen. The attack has left many customers “in limbo”, with many questioning how a company that claimed to comply with…
Read More
Privacy Cage

Privacy Cages: The End of Data Privacy Laws? 

Evervault, a Dublin-based data privacy company has raised $16 million in its Series A funding round led by Index Ventures. This takes the total raised by the company to $19 million, giving it crucial resources to “build the API (application programming interface) for data privacy.” The company, founded by Shane Curran, has a simple manifesto:…
Read More
Federated Learning

What is Federated Learning? And How Can Differential Privacy Make it Better?

Machine learning is a constantly growing technology. But some recent developments are particularly noteworthy for business leaders because they are paving the way for fairer, safer, more private, and more affordable machine learning algorithms.  In 2017, Google announced that machine learning models trained with user interaction from mobile devices would adopt federated learning while, in…
Read More
Data Privacy

Complying with Data Privacy Law Lends a Competitive Advantage

Data governance and data privacy compliance almost always complement each other. When organizations are compliant with data privacy and security guidelines, it is likely because an effective data governance strategy is already in place. And the opposite is oftentimes also true. At the risk of oversimplifying these broad concepts, data privacy is about identifying and…
Read More
Back To Top