UK NCSC updates cybersecurity risk management toolkit
The risk management guidance provided by NCSC (National Cyber Security Centre) has undergone its first update in five years, taking into account the significant changes that have occurred in global politics, technology, and cybersecurity during that time. The updated guidance introduces three entirely new sections: 1. The development of an 8-step framework for cyber security […]
Netherlands’ DPA publishes policy paper on data protection, cybersecurity interplay; UK releases updated cybersecurity toolkit
The data protection authority of the Netherlands, Autoriteit Persoonsgegevens, has published a policy document emphasizing the significance and interrelation of data protection and cybersecurity. The paper was presented during a hearing on online safety and cybersecurity conducted by the permanent Parliamentary Committee on Digital Affairs. The Autoriteit Persoonsgegevens expressed concern that data protection has not […]
Nigeria DPA nixes bank directive to collect customers’ social media accounts
The Nigeria Data Protection Commission (NDPC) has raised concerns over the Central Bank of Nigeria’s (CBN)’s recent directive to banks, which requires them to obtain customers’ social media handles as part of enhanced Customer Due Diligence (CDD) regulations. According to the NDPC, this directive is in violation of the law. The commission is currently in […]
Denmark DPA Issues Private-Sector CCTV Guidelines
The Danish Data Protection Authority has recently released new guidance on the topic of television surveillance, specifically aimed at companies. This guide provides companies with essential considerations and insights if they intend to utilize TV surveillance. Given the increasing use of TV surveillance by companies and organizations, it is crucial for them to be knowledgeable […]
South Korea’s PIPC Issues KRW1.15B Data Security Sine; Penalizes Business Operators for PIPA Violations
Broadcasting company HelloVision has been fined KRW 1.15 billion by South Korea’s Personal Information Protection Commission (PIPC) due to a data breach affecting 46,000 individuals. The PIPC accused HelloVision of breaching data security regulations outlined in the Personal Information Protection Act, as well as failing to promptly report the incident or notify the affected individuals […]
European Parliament Think Tank Releases Report on the Metaverse
A study conducted by the Policy Department for Citizens’ Rights and Constitutional Affairs of the European Parliament focused on analyzing the various applications of the metaverse in commercial, industrial, and military contexts. The report examined both the potential benefits and notable concerns related to everyday life, health, work, and security. Furthermore, the study provided recommendations […]
India’s Personal Data Protection Bill on Parliament’s upcoming agenda
According to the Financial Express, the Indian Parliament’s monsoon session, starting on July 17th, will include the discussion of the Personal Data Protection Bill, 2022. The bill was reintroduced in November 2022, following its initial withdrawal in August. The revised legislation now imposes a maximum penalty of INR 5 billion for data breaches, whereas previous […]
US lawmakers introduce data broker bill
U.S. Senators Bill Cassidy, M.D. and Jon Ossoff, along with Representatives Lori Trahan and Chuck Edwards, have introduced the DELETE Act, which aims to safeguard the private online data of Americans. The act proposes the establishment of a system that allows individuals to request the deletion of their personal data from data brokers, who collect […]
South Korea’s PIPC fines 3 businesses for mishandling personal information
Three business operators have faced sanctions for violating the Personal Information Protection Act. They have been penalized for failing to adhere to safety measures related to personal information protection and for delaying the notification and reporting of personal information breaches. The penalties imposed include a total of KRW 1.2333 billion in fines and KRW 18.8 […]
Italy’s DPA issues combined 415K euro fines over abortion-related privacy violations
Italy’s privacy regulator has imposed a fine of over 400,000 euros ($439,440) on Rome’s city council and its cemeteries agency for their previous practice of inscribing the names of mothers on the graves of aborted fetuses. The issue came to light in 2020 when women who had undergone abortions discovered plaques with their names on […]