Data Protection Archive
When it comes to cybersecurity and data privacy regulation, most U.S. businesses look at Europeans with a certain degree of smugness. After all, Europeans must deal with the onerous GDPR (General Data Protection Regulation). European organizations can use an individual’s …
The UK’s transition out of the EU (Brexit) will end on 31 December 2020, bringing with it major changes to the way organizations interact with stakeholders based in the country. It’s not just UK–EU relationships that will be affected; the …
The U.S. Presidential election has left voters grasping for certainty when it comes to executive leadership. What is clear is that voters in California have overwhelmingly approved Proposition 24, also known as the CPRA (California Privacy Rights Act). The CPRA …
PCI DSS. SOC 1 and 2. COBIT® 5. NIST CSF. NIST SP 800-53. NY SHIELD. NYDFS. ISO 27001. What are they and what do they have in common? Why should you care? How do you choose between them? They are …
If the past few years have taught us anything, it’s that anything can be hacked: small businesses, multinationals, schools, and even smart devices in our homes. It shouldn’t come as a surprise, then, to learn that the U.S. G.A.O. (Government …
Last month, the DoD (Department of Defense) published amendments to the Defense Federal Acquisition Regulation Supplement, introducing the requirements for the upcoming CMMC (Cybersecurity Maturity Model Certification) program. The rule, which will become effective from November 30 – following a …
Organizations in the U.S. spend $8.64 million responding to data breaches, which is more than double the global average. This finding comes from Ponemon Institute’s Cost of a Data Breach Report 2020, which provides annual analyses into data security practices …
Artech Information Systems, one of the largest IT staffing organizations in the U.S., recently disclosed a ransomware attack that occurred earlier this year. The incident, which affected individuals’ personal, health, and financial information, is the latest in a long line …
The investment bank Morgan Stanley faces a $5 million class action lawsuit following claims that it failed to secure personal data that was stored on discarded computers. The suit has been brought by Morgan Stanley customer Timothy Smith in the …
This is a guest article written by David Balaban. The author’s views are entirely his own and may not reflect the views of IT Governance USA. DDoS (distributed denial-of-service) attacks have been wreaking havoc on organizations since the mid-1990s. Their …
