The Costa Rican President Rodrigo Chaves has declared a national emergency following cyber attacks from Conti ransomware group on multiple government bodies, the same day he was sworn in as President while he previously covered the position as Minister of Finance. The Conti ransomware attack has blocked customs and taxes systems since April this year....
John Davidson wrote an editorial on the Financial Review, where he argued that cyberinsurance is getting more complex and insurances are asking more invasive and intrusive questions as result of ‘dumb’ claims by companies. The author suggested to rather make cyberinsurance claims as last resort. Read the article here.
The Canadian media outlet CP24 informs that it has received a news from IKEA according to which it would have notified the Office of the Privacy Commissioner of Canada of a data breach involving the personal information of nearly 100k customers. Find more on CP24 here.
The US National Institute of Standards and Technology (NIST) has published the updated cybersecurity supply chain risk management (C-SCRM) guidance to support organizations develop an effective program for identifying, assessing, and responding to cybersecurity risks throughout the supply chain. Find the guidance here.
The Dutch Data Protection Authority (DPA – Autoriteit Persoonsgegevens) has published the the Smart Net Management Code of Conduct related to the processing of personal data by network operators. This code of conduct describes in concrete terms how network operators providing services in The Netherlands must comply with the EU GDPR on activities such as...
Since March 2022, the National Privacy Commission (NPC) of the Philippines is conducting on-site compliance check visits to personal information controllers (PICs) and personal information processors (PIPs), to verify compliance documents submitted and determine whether there are substantial findings of non-compliance with the Data Privacy Act of 2012 and NPC’s issuances. On-site visits are being...
The California Assembly Judiciary Committee voted to advance a Bill to protect children from online addiction. This Bill, the Social Media Platform Duty to Children Act, would impose on an operator of a social media platform a duty not to addict, as defined, child users and would, among other things, prohibit a social media platform...
The European Data Protection Board (EDPB) and the European Data Protection Supervisor (EDPS) have adopted a Joint Opinion on the Proposal of the European Parliament and of the Council on harmonised rules on fair access to and use of data (EU Data Act). Their aim is to draw attention to a number of overarching concerns...
American Headquarters:
PrivacyRules Ltd.
151 West 4th Street
Suite 200
Cincinnati, OH 45202, USA
European Office:
Via dei Della Robbia 112
50132, Firenze
Italy (IT)