NIST updates its Risk Management Framework
US National Institute of Standards and Technology (NIST) has published draft update to its Risk Management Framework for Information Systems […]
US
GDPR lacks clarity and threatens transatlantic trade
A lack of clarity around how new EU data protection laws apply poses a threat to EU-US trade, the US […]
US News Outlets Block European Readers Over New Privacy Rules
The move by several major news organizations illustrated that some companies would prefer to lose European readers than to risk […]
Facebook accused of conducting mass surveillance through its apps
Facebook used its apps to gather information about users and their friends, including some who had not signed up to […]
Jourova to press for EU-US data sharing deal
EU justice chief Vera Jourova will push for a new data access agreement with the United States when she meets […]
US court cases reflects ‘social shift’ in how data is viewed
Two recent decisions in two different federal appeals courts regarding who has the right to sue over data breaches reflect […]
Why the ‘encryption exception’ may be over used
EU General Data Protection Regulation and some U.S. state laws provides the “encryption exception” – it can be used to […]
Hacker Breaches Securus, the Company That Helps Cops Track Phones Across the US
A hacker has provided Motherboard with the login details for a company that buys phone location data from major telecom […]
GDPR isn’t the only game in town – US state developments also looming
Companies gearing up for the European Union’s implementation of the General Data Protection Regulation - which introduces significant new obligations […]
IBM Executives Press US Lawmakers Not to Adopt EU Privacy Law
More than 100 IBM executives will descend on Capitol Hill this week with a simple message for policy makers: don’t […]
FTC, privacy, and vendor due diligence—and opt-in consent
On April 30, 2018, the U.S. Federal Trade Commission (FTC) released for public comment an administrative complaint and proposed consent […]
UK NIS Regulations impose new cybersecurity obligations
The UK NIS Regulations (implementing the NIS Directive) come into force in the UK on 10 May 2018. These Regulations […]