(Oct 25, 2016) There are new cybersecurity regulations coming early next year for financial services companies in New York state, and they're the cause of some stirring amongst those charged with data protection and privacy. The Cybersecurity Requirements for Financial Services Companies, open for public comment for the next month, is the result of The New York State Department of Financial Services' (DFS) close monitoring of the "ever-growing threat posed to information and financial systems by nation-states, terrorist organizations and independent criminal actors," the regulator says in its introduction of the regulation in the State Register. Given that the financial services industry is such an attractive target for cyber thieves, DFS, while recognizing many firms have made significant strides on cybersecurity for their own sakes, decided to up the baseline requirements for cybersecurity programs. Some say they’re no big deal, while others say they’re incredibly prescriptive, a nightmare for dealing with third-party vendors, and also a foreshadowing of bills to come nationally, reports Angelique Carson. Read More
(Oct 25, 2016) From Oct. 17 through 19, the IAPP held its inaugural on-the-ground live training on the Chinese mainland. Global technology company Huawei hosted the event at its headquarters in Shenzhen, a city just over the border from Hong Kong. Huawei Chief Privacy Officer John Howie, CIPP/US, CIPT said the decision to pursue live training was borne of a conversation with company leadership at a quarterly meeting of its Global Cybersecurity and Privacy Committee. They felt “every employee who has a role in privacy, and the protection of customer data, needed to be able to prove that they were competent in[privacy] and we recognized IAPP certifications as the best way to accomplish this,” Howie said. Read More
(Oct 25, 2016) What do Terry Pratchett novels, privacy education, and curling all have in common? Constantine Karbaliotis, FiP, CIPM, CIPP/C, CIPP/E, CIPT, CIPP/US. He's the vice president of Nymity's Privacy Office Solutions and a stalwart IAPP volunteer, and he's come to this month's Volunteer Spotlight ready to share insight from both experiences. The Privacy Advisor: What do you do, and how does it touch on privacy and security?Karbaliotis: I am responsible for a group within Nymity that supports our cli... Read More
(Oct 24, 2016) In the ongoing interagency turf war over privacy and data security between the Federal Trade Commission and the Federal Communications Commission, the FTC faced a major setback in August with its loss to AT&T. But as the FTC appeals the ruling, whether the decision is a victory for the heavily regulated telecommunications industry remains to be seen. Two years ago this month, the FTC sued AT&T, alleging that the mobile phone provider acted deceptively when it sold “unlimited” data plans bec... Read More
(Oct 24, 2016) After Judge Cathy Seibel, of the United States District Court for the Southern District of New York, approved a $1.68 million settlement in March 2016, Seton Hall University School of Law in Newark, New Jersey, had an opportunity to do what very few law schools in the country have had the funds to do: open an Institute for Privacy Protection, announced in August. Seton Hall’s Gaia Bernstein was appointed to head the institute, a culmination of her professional fascination with privacy and techn... Read More
(Oct 24, 2016) In their book "Big Data," Victor Mayer-Schönberger and Kenneth Cukier describe the subject as "all about seeing and understanding the relation within and among pieces of information that, until very recently, we struggled to fully grasp.” Discovering these new relationships is the work of analytics — the automated processing of data. This central feature of big data faces differing perceptions that produce ambivalence in the General Data Protection Regulation that will affect how big data is use... Read More
(Oct 24, 2016) Courtney Gabrielson thinks the funniest things are the most observant. She also thinks there’s power in changing your perspective and that privacy, at its core, is an interdisciplinary subject — best digested when considered something more than a “law thing.” And that's why The Privacy Empress blog exists. See her illustrative take on recent privacy news in the fourth edition of this fun-loving series. Read More
(Oct 24, 2016) Vencore's SecureSmart After a multi-year contract extension with Sacramento Municipal Utility District, Vencore Labs will release an "enhanced version" of its SecureSmart cybersecurity hardware, the company said in a statement. The tool provides an instruction detection system, privacy controls and a "real-time" dashboard for the utility's smart meter system, the report states. More information may be found on the company's website. Betterspot VPN Betterspot is Kickstarting its VPN r... Read More
(Oct 24, 2016) Preventing data breaches is a tough job. The 2016 Verizon Database Incident Report aptly compares the information security team to a poorly armed soldier told to defend a hill at all costs without knowing who the enemy is or where they will attack. We do have a lot to protect with limited resources, but we are learning more about how cyber criminals go about their business, and that provides us solid clues about where and how to defend. The first article in this three-part series explored the RO... Read More
(Oct 24, 2016) Aaron Simpson Privacy and Cybersecurity Partner Aaron Simpson will join Hunton & Williams’ London office from its New York Firm, the company announced in a press release. “There is growing European interest in the U.S. Privacy Shield and in cybersecurity issues, areas in which Aaron has particular experience,” said Bridget Treacy, managing partner of the firm’s London office. “I am delighted to have Aaron on board; having him in London adds additional strength and capacity to our team here,... Read More
Courtney Gabrielson, CIPM
Are you a GIF fan? Do you spend time on Tumblr laughing out loud when you should be PIA-ing? This might be right up your alley. Courtney Gabrielson imbues the privacy landscape with just a bit of cheekiness. Check out this monthly blog for a little comic relief on all the latest privacy news.
Jedidiah Bracy, CIPP, provides a hot take on the attack and its future implications in a blog post for Privacy Perspectives.
See More of Privacyempress/Tumblr