home_banner `

Content Icon

IANS Security, Privacy and Compliance Law Update: Q1 2019

April 12, 2019 | Faculty Reports | Regulations & Legislation | By Rebecca Herold, IANS Faculty

Tracking and complying with the myriad of privacy and compliance laws and regulations in the U.S. and abroad is becoming increasingly difficult. In this quarterly research report, IANS Faculty Rebecca Herold provides an update of new security-focused regulations/legislation and details their likely impacts on IANS clients.
IANS

 SUBSCRIPTION REQUIRED


Already a client?

Log In to Continue

Not a client?

Request More Information

Related Research

GDPR: One Year Later

It’s been a year since requirements kicked in for the EU’s Global Data Protection Regulation (GDPR) and many companies remain behind the curve. Already, large entities face massive fines for compliance violations. In this webinar, IANS Faculty George Gerchow reviews some of the fines handed out so far, where the points of failure were for those involved, and how to avoid the same mistakes.

GDPR: Overview of Top Compliance Challenges

Security professionals indicate that the most significant challenges their organizations faced in getting ready for GDPR were meeting the strict data security requirements, internal training, and the evolving enforcement regulations that come with GDPR.

23 NYCRR 500 Readiness Checklist

The New York State Department of Financial Services (NYDFS) Cybersecurity Regulation (23 NYCRR 500) defines the minimal security expectations for organizations that participate in the New York financial environment. This document provides a checklist of the regulation’s requirements as well as a brief discussion about which classes of organizations are granted exceptions in the law. 

GDPR: Netherlands Has Reported the Most Breaches

Some 59,000 data breaches have been reported since the General Data Protection Regulation took effect on May 25, 2018 through January 28, 2019. The Netherlands has reported the most breaches, largely due to the fact that it was the only EU country with a pre-GDPR data breach notification requirement. Germany was second with 12,600 and the UK was third with 10,600 breaches reported.