Data Protection Archive

If the past few years have taught us anything, it’s that anything can be hacked: small businesses, multinationals, schools, and even smart devices in our homes. It shouldn’t come as a surprise, then, to learn that the U.S. G.A.O. (Government …

Last month, the DoD (Department of Defense) published amendments to the Defense Federal Acquisition Regulation Supplement, introducing the requirements for the upcoming CMMC (Cybersecurity Maturity Model Certification) program. The rule, which will become effective from November 30 – following a …

Artech Information Systems, one of the largest IT staffing organizations in the U.S., recently disclosed a ransomware attack that occurred earlier this year. The incident, which affected individuals’ personal, health, and financial information, is the latest in a long line …

The investment bank Morgan Stanley faces a $5 million class action lawsuit following claims that it failed to secure personal data that was stored on discarded computers. The suit has been brought by Morgan Stanley customer Timothy Smith in the …

US organizations that transfer personal data into and out of the EU for commercial reasons have been left in limbo after last month’s ECJ (European Court of Justice) ruling that invalidated the EU–US Privacy Shield. The framework has been heavily …

This is a guest article written by David Balaban. The author’s views are entirely his own and may not reflect the views of IT Governance USA. Ransomware is one of the most unnerving phenomenon in the cyber threat landscape. It …

Invalidation of the Privacy Shield U.S. companies that do business in the EU are in for a nasty shock. For the past four years, the EU–U.S. Privacy Shield framework has allowed them to transfer data from the EU in line …