The Czech data protection authority imposed a whopping 351 million CZK fine on Avast Software, a cybersecurity firm, for unlawfully sharing personal data of millions of its antivirus users with a subsidiary company.
The recent malicious cyberattack on Change Healthcare, a major provider of revenue cycle management and data solutions for the healthcare industry, has brought significant compliance risks and challenges to UnitedHealth Group, the parent company of Change Healthcare.
The European Data Protection Board (EDPB) unveiled its ambitious strategy for the forthcoming years, setting the stage for a nuanced approach to data protection in an ever-evolving digital landscape. Far beyond a mere blueprint, this strategy embodies a visionary response to contemporary data protection needs, propelled by collaboration and foresight.
U.S. Representative Cathy McMorris Rodgers (R-WA) and Senator Maria Cantwell (D-WA) have jointly introduced the American Privacy Rights Act, a historic bipartisan initiative aimed at reshaping data privacy regulations nationwide. This draft legislation represents a significant effort to establish comprehensive data privacy rights and protections for Americans while streamlining existing state laws and introducing stringent enforcement mechanisms.
In a recent article, the French data protection authority, CNIL, shared insights from their analysis of the economic impact of the General Data Protection Regulation (GDPR) in Europe. Additionally, this past fall they had published another article in the Revue européenne des Médias et du Numérique, studying the multifaceted consequences of GDPR implementation since its inception in 2018.
In a rapidly digitizing world where cyber threats loom large, corporate boards are grappling with the imperative to fortify their cybersecurity measures. A collaborative effort between Diligent Institute and Bitsight sheds light on the intricate relationship between board governance structures and cybersecurity performance.
The Information Commissioner’s Office (ICO) has taken a significant stride towards enhancing international collaboration in data protection and privacy enforcement by joining the Global Cooperation Arrangement for Privacy Enforcement (Global CAPE). This move aims to foster cross-border cooperation and streamline information sharing among participating countries.