August 21, 2018 | Content Aggregator - Single Slide | Regulations & Legislation
It’s been a year since requirements kicked in for the EU’s Global Data Protection Regulation (GDPR) and many companies remain behind the curve. Already, large entities face massive fines for compliance violations. In this webinar, IANS Faculty George Gerchow reviews some of the fines handed out so far, where the points of failure were for those involved, and how to avoid the same mistakes.
Security professionals indicate that the most significant challenges their organizations faced in getting ready for GDPR were meeting the strict data security requirements, internal training, and the evolving enforcement regulations that come with GDPR.
The New York State Department of Financial Services (NYDFS) Cybersecurity Regulation (23 NYCRR 500) defines the minimal security expectations for organizations that participate in the New York financial environment. This document provides a checklist of the regulation’s requirements as well as a brief discussion about which classes of organizations are granted exceptions in the law.
Some 59,000 data breaches have been reported since the General Data Protection Regulation took effect on May 25, 2018 through January 28, 2019. The Netherlands has reported the most breaches, largely due to the fact that it was the only EU country with a pre-GDPR data breach notification requirement. Germany was second with 12,600 and the UK was third with 10,600 breaches reported.