Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

Facebook, Samsung and Ring have unveiled new or improved privacy and security tools at CES 2020. [Read More]
The popular UAE-developed mobile application ToTok has returned to the Google Play Store after it was removed on claims it was being used for government spying. [Read More]
Firefox 72 will provide users with an option to delete telemetry data in response to California’s Consumer Privacy Act (CCPA), Mozilla says. [Read More]
Google has fired security engineer Kathryn Spiers allegedly for misusing a security and privacy tool, but she claims it was over labor organizing activity. [Read More]
The German data protection regulator, the Federal Commissioner for Data Protection and Freedom of Information (BfDI), has imposed a €9.55 million ($10.64) GDPR fine on German telecoms provider 1&1 Telecom GmbH. [Read More]
Federal officials are considering requiring that all travelers — including American citizens — be photographed as they enter or leave the country as part of an identification system using facial-recognition technology. [Read More]
A university student in California has filed a class-action lawsuit against video app TikTok, which she accuses of harvesting large amounts of user data and storing it in China. [Read More]
Mastercard has a team working on an initiative aiming to ensure a more sustained security even beyond the letter of the PCI compliance requirements. [Read More]
Twitter announces the launch of a privacy center whose goal is to provide increased transparency on how the social platform handles user information. [Read More]
The European Commission said Monday it had begun a "preliminary investigation" into how Facebook and Google collect personal data and what they do with it. [Read More]

FEATURES, INSIGHTS // Compliance

rss icon

Josh Lefkowitz's picture
Regardless of which framework you use, it’s crucial to operationalize it in the context of your organization’s unique environment and risk factors.
Laurence Pitt's picture
Failure to implement basic cybersecurity hygiene practices will leave retailers vulnerable to damage and fines during a lucrative time for their businesses.
Justin Fier's picture
Over time, holding people responsible will lead individuals to see how their actions impact the security of the organization and come to consider themselves responsible for the security of the company.
Mike Fleck's picture
Big companies can say they are GFPR compliant, but odds are their current structure will never allow them to find, identify, and categorize all the data that they have collected over time.
Laurence Pitt's picture
Despite the long ramp-up towards the GDPR compliance deadline, the effects of the new regulations are still very much in infancy.
Travis Greene's picture
GDPR is proving disruptive for European citizens who are no longer able to interact with services from outside the EU. And the compliance costs can be significant as well. But are there legitimate concerns of overreach?
Bradon Rogers's picture
Complying with GDPR was the immediate challenge, but now there is an opportunity to capture the good work that has been done and make data protection a top of mind focus for enterprises every day.
Josh Lefkowitz's picture
While the upcoming GDPR compliance deadline will mark an unprecedented milestone in security, it should also serve as a crucial reminder that compliance does not equal security.
Alastair Paterson's picture
With domain name WHOIS data subject to the GDPR’s privacy requirements, the system will “go dark” until alternative preparations are made, creating a challenge for this who fight computer fraud and other criminal activity on the Internet.
Ashley Arbuckle's picture
Penalties for non-compliance with GDPR will be severe. For example, if your organization fails to report a data breach within 72 hours, expect a fine.