Welcome to Our Blog

Retailers may be violating GDPR through their e-receipts

An investigation conducted by consumer body Which found large retailers may be in violation of the EU General Data Protection Regulation via their e-receipts, the Guardian reports. The group found retailers have sent marketing information in their e-receipts despite...

Is it time to merge CISO and CPO roles?

In an article for CMSWire, AvePoint Chief Risk, Privacy and Information Security Officer Dana Simberkoff, CIPP/US, writes that the global regulatory landscape has given way to the emerging trend of merging privacy and security roles. Simberkoff writes, “It’s...

Tor Project aims to mature in next three years

A new leadership team at the Tor Project aims to harness the growing awareness surrounding personal data as a catalyst for organizational growth, but the only catch is funding, CyberScoop reports. Isabela Bagueros, who joined as Tor’s new executive director in...

Pichai backs federal US privacy law at House hearing

Google CEO Sundar Pichai testified in front of the U.S. House Judiciary Committee on the tech company’s data practices, Yahoo reports. Pichai contested a statement from Judiciary Chairman Rep. Bob Goodlatte, R-Va., that Google is not transparent about the data it...

China allegedly behind Marriott data breach

U.S. officials believe the hackers behind the Marriott data breach may work for China’s Ministry of State Security, The New York Times reports. American intelligence agencies have not reached a final conclusion about who conducted the cyberattack; however,...

Hospital suffers payment breach impacting 48K individuals

While noting that payment-related breaches are not common in the health care sector, BankInfoSecurity reports that in September, a Texas hospital notified federal regulators of a credit card–processing system hack that may have impacted nearly 48,000 individuals....

New BCR guidelines from Argentine DPA

Argentina's Agency of Access to Public Information has approved a set of guidelines for binding corporate rules as a mechanism available to multinational companies to legitimize international data transfers within their group. Mariano Peruzzotti offers an overview of...