The New York Department of Financial Services (NYDFS) Cybersecurity Regulation blazed a trail in 2017, forming the basis for similar laws for other industries in other states. Currently, the regulation serves as a useful model for managing cybersecurity risks, regardless of industry.
While the legitimate interests ground for processing under the GDPR can be lawfully applied in many cases, a provisional balance should be established by data controllers with more safeguards for the protection of data subjects.
Given the dearth of cybersecurity pros in the marketplace today, a new Juniper Networks report suggests that security automation is potentially the solution.
Mobile applications collect a lot of personal data. What are the GDPR considerations for mobile app businesses when laying out the concept and execution of their application?
While privacy by design is not a new concept, the GDPR makes it a legal requirement, and thus practical guidance is needed for putting policy into practice. What are the concepts and requirements in the context of recent guidance published by the EDPS and UK ICO?
In a 229-page document, Facebook attempted to provide some clarity for questions from the congressional testimony to the U.S. House and Senate in April. Here are 10 things you might have missed.
The ability of financial institutions to recover data breach losses from non-contacting parties depends on various legal statutes and industry regulations.