Posts Tagged ‘data breaches’
More Tips on Good Data Protection
Another week, another enforcement action from the Federal Trade Commission giving us a glimpse into what modern data protection programs should look like. This time the company in question is a telecommunications company that flubbed basic data protection protocols and then suffered a breach; and as usual, the FTC gives compliance, privacy, and IT security…
Read MoreBold FTC Action Against Drizly
Fascinating enforcement action from the Federal Trade Commission this week, which brought charges of poor cybersecurity practices against an online liquor store and its CEO personally — who will need to abide by the terms of the consent order even if he leaves the company and takes another job elsewhere! The company is Drizly.com, which…
Read MoreAnother Cyber Disclosure Example!
Well this is a splendid bit of good timing: two days after we wrote about poor disclosure of a cybersecurity breach at one large company, another large company has suffered a breach of its own and given us a very different example of how to handle your disclosure duties. The latest victim is T-Mobile, which…
Read MoreFTC Warns on Data Security Orders
The Federal Trade Commission posted a reminder Monday of its “new and improved” data security orders, which compliance and risk professionals might want to read for its lessons about cybersecurity oversight and compliance generally. The statement, published on the FTC Business Blog, reviews several changes the FTC made last year to its data security orders.…
Read MoreSurvey: Third-Party Data Risk Still a Mess
Another year, another report confirming what most compliance and IT security officers already know: third-party vendors are an enormous security and privacy risk, and oversight of those parties is a mess. That’s the message of a report released Thursday by Opus and the Ponemon Institute, which surveyed more than 1,000 IT and data security professionals…
Read MoreGoogle’s Perfect Privacy Breach
You gotta give Google credit. Only that outfit, with perhaps the most intellectually talented employees in Corporate America today, could come up with a data breach so maddening and thought-provoking for corporate compliance officers. The breach was discovered last March. A glitch in the Google+ social media network had exposed the personal data for nearly…
Read MoreTrump Admin Speaks on Data Breaches, Fintech
The Treasury Department came out swinging Tuesday in favor of a national data breach law and a light regulatory touch for “fintech firms” swarming into the banking and compliance worlds. Those were two among more than 80 recommendations contained in a 200-page report from the Treasury Department looking at fintech and nonbank financial firms. The…
Read MoreReport: Healthcare Breaches Less Awful
Good news, kinda sorta, for healthcare compliance professionals worried about data breaches: the total number of reported breaches fell last year, as did the number of patient records exposed; and the portion of breaches caused by accidental disclosure or lost devices fell, too. Taken altogether, one might even say that all those data privacy efforts…
Read More