We Need to Talk About NIST’s New Password Management Recommendations
Recently, the National Institute of Standards and Technology (NIST) reversed its stance on organizational password management requirements. The institute now […]
opinion
Stop focusing your information security efforts on the wrong things!
There once was a time not all that long ago when security teams could plead ignorant to IT security risks, […]
New Spanish Data Protection Law raises concerns over the use of sensitive data by political parties
The new Law on Data Protection and Digital Rights (LOPD), recently enacted in Spain, includes a highly controversial provision allowing […]
EDPS calls for closer alignment between consumer and data protection rules in the EU
Consumer law and data protection can no longer afford to work in silos. The EU needs a big-picture approach to addressing systemic […]
A timely raincheck on the GDPR: the law of unintended consequences
As we approach a six-month point since the full implementation date of the GDPR, it is interesting to see evidence […]
Cathay Pacific case shows data breach reporting challenges
Multinational companies experiencing a major data breach face significant challenges in co-ordinating co-operation with investigating authorities around the world. The […]
Massive Data Leaks Keep Happening Because Big Companies Can Afford to Lose Your Data
If you live in the United States, there’s almost a 50 percent chance your personal data was lost in the […]
CIPL Publishes Legal Note on the ePrivacy Regulation and the EU Charter of Fundamental Rights
On November 12, 2018, the Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth LLP published a legal note […]
It’s Amateur Hour in the World of Spyware and Victims Will Pay the Price
We’re living in the golden age of spyware and government hacking, with companies rushing to join a blossoming billion dollar […]
EU Commission Comments on NTIA’s Approach to Consumer Privacy
On November 9, 2018, the European Commission (“the Commission”) submitted comments to the U.S. Department of Commerce’s National Telecommunications and […]
Third-Party Vendor Management Means Managing Your Own Risk
When considering the termination of a vendor relationship, you must consider the vendor, the contract and the business impact. Although […]
Europe’s AI ethics chief: No rules yet, please
In a global race to dominate artificial intelligence technology, Europe needs to keep its urge to regulate under control — […]