US University sued for data breach from 2008

Yale University is being taken to court following the discovery of two data breaches that occurred a decade ago. Hackers infiltrated the Ivy League’s databases between April 2008 and January 2009, stealing names, social security numbers, email addresses, birth dates, and physical addresses. Two lawsuits have now been filed claiming damages for the incidents. Officials […]

MoD secrets uncovered in multiple data breaches

Sky News has reported how the Ministry of Defence suffered “dozens” of data breach incidents last year. The revelations came to light when Sky received a series of “heavily redacted” documents which held details of the military’s cyber security walls being infiltrated in 2017. The hacks can be traced back to activity by foreign governments […]

Facebook data breach down to spammers seeking cash

Facebook has announced that its recent data hack was down to spammers aiming to cash in on user data, not a foreign government attack, as was first suspected. The attempted theft, which was discovered and subsequently disclosed to regulatory authorities at the end of September, was initially thought to have affected 50m user accounts. The […]

Third and fourth parties and data security requirements under the GDPR

Why it is essential for organisations to go beyond contractual protections to ensure appropriate data processing risk management in relation to vendors and their subcontractors. Managing risk around the processing of an organisation’s personal data by third party vendors and their subcontractors is complex and resource-intensive, and, in the effort to minimise costs, is not […]

Theatre Focus: GDPR Refresh at Data Protection World Forum

In the run-up to Data Protection World Forum (DPWF), the inaugural data security conference presents the GDPR: Refresh Theatre. Free of charge to attend among the Exhibition Theatres, GDPR: Refresh is two-day toolkit where delegates can source the knowledge they need to orientate themselves and progress on their organisations’ journeys to GDPR compliance. Attendees can […]

Robert Baugh, CEO at Keepabl: Document, document, document

Robert Baugh is CEO at Keepabl, a lawyer-led, Privacy-as-a-Service provider which implements compliance programmes that can prove decisive in the era of GDPR. With over 20 years’ international experience as a TMT lawyer, Robert is highly skilled in interpreting the regulatory environment into commercial, actionable, risk-managed-based compliance programmes. Below, Robert reveals his top tips for […]

US regulator issues record data breach fine

US regulator issues record data breach fine The second-biggest health insurer in the US has been hit by a record-breaking $1.6m penalty for a data privacy breach dating back to 2015. Anthem, which is based in Indianapolis, suffered a cyber-attack three years ago which compromised the personal information of almost 80 million individuals. Details accessed […]

Q&A with Simon Loopuit, CEO of trust-hub

Simon Loopuit heads trust-hub, a software firm specialising in personal data management technology that protects customers and employees alike. Ahead of his speaker session at Data Protection World Forum, our Q&A with Simon explains data governance and reveals how companies can leverage privacy by design to overcome the challenges of modern business. After dealing with […]