Data Privacy, Compliance & Risk Monthly Round-Up
ISMS.online
Protect and grow your business with the leading ISO 27001 and compliance solution. ISO27001, ISO27701, GDPR, SOC2 + more
The Data Privacy, Compliance and Risk monthly newsletter from ISMS.online - December 2022
Here's your monthly round-up of all the critical news, headlines, blogs and resources covering information security risk, compliance and data privacy.
It's been another busy month with more data breaches hitting the headlines, more record fines issued for failing to conform with data privacy and infosec regulations, and bold global legislative moves by governments to improve cyber resiliency, data privacy and risk.?
As we approach the holiday season, it's important to remember that this is a time when cybercriminals often ramp up their activity. Therefore, there's never been a better time to review your cyber resiliency and celebrate your cyber successes.?
We wish you a very relaxing festive break and a happy new year!?
Latest Blogs
Security and risk management leaders are faced with an array of information security frameworks, control catalogues and processes, all intended to inform the design of their security programs. So, how do organisations select the best framework for their business needs? Gartner has the answers.
We look at six key trends that we believe will dominate the information and cyber security landscape in 2023 and what that means for businesses.?
As the financial landscape becomes more complex, it's perhaps never been so essential to ensure robust infosec & data privacy standards to secure customer trust and ongoing business success, ISMS.online CEO Luke Dash shares more in his news feature with Business Reporter.?
Latest News
'Flawed' Data Breach Penalty Laws Pass Parliament in Australia
Legislation that significantly increases fines against companies for privacy breaches has sailed through Parliament with support from the Opposition, despite enduring concerns around the operation and practicality of the penalty regime. > Read here?
Fortnite Video Game Maker Epic Games to Pay More Than Half a Billion Dollars over FTC Allegations of Privacy Violations and Unwanted Charges
Epic will pay a $275 million penalty for violating children's privacy law, change default privacy settings, and pay $245 million in refunds for tricking users into making unwanted charges. > Read here
Apple fixes 'Actively Exploited' Zero-Day Security Vulnerability Affecting Most iPhones
Apple has confirmed that an iPhone software update released two weeks ago fixed a zero-day security vulnerability that it now says was actively exploited. > Read here
ICO Fine Lead Generation Firms for Data Privacy Breaches
The ICO fined two lead generation companies £195,000 for their involvement in sending unsolicited marketing messages to people without their consent. > Read here
Uber Suffers New Data Breach After Attack on Vendor, Info Leaked Online
Uber has suffered a new data breach after a threat actor leaked employee email addresses, corporate reports, and IT asset information stolen from a third-party vendor in a cybersecurity incident. >Read here?
领英推荐
HIPAA Right of Access Failure Costs Florida Provider $20K in Settlement With Feds
For the second time this week, the Office for Civil Rights announced it reached a settlement with a healthcare entity to resolve a potential violation of the Health Insurance Portability and Accountability Act. > Read here?
ICO Issues Updated Guidance on International Data Transfer and Launches Transfer Risk Assessment Tool
This ICO transfer risk assessment guidance clarifies an alternative approach to the one the European Data Protection Board put forward and forms part of the UK GDPR. > Read here?
New Rules For Apps to Boost Consumer Security and Privacy
The?voluntary code of practice?for app developers and operators is a world-first and will protect the UK's app market. > Read here
Free Resources
Whitepaper: The Business Benefits of An Information Security Management System?
Getting serious about your information security is getting serious about your business growth. Access this free whitepaper which walks through creating a business case for an ISMS, including calculating real-time ROI, demonstrating how it will help win new business, retain existing customers, safeguard your business from cybersecurity risks, and more > Download Here
HIPAA Guidance
Are you looking for a complete solution to satisfy HIPAA requirements? Check out our 'Fast Path to HIPAA' page for more information >Read Here
Information Governance & Legislation Training?
The UK ICO has made the training modules they provide to ICO staff on information governance and legislation as part of their internal training available on their website. These are a great place to start for SMEs or enterprise organisations looking to improve their security.?> Read here
Video: Everything You Need to Know About the ISO 27001: 2022 Standard Update?
This short 30-second video breaks down the fundamental changes you need to be aware of with the new ISO 27001: 2022 standard update. >?Watch now
Strengthen Your Information and Privacy Security Posture Today?
If you're looking to start your journey to better information security and data privacy management, we can help.??
Our ISMS solution enables a simple, secure and sustainable approach to information management with ISO 27001, NIST, SOC2 and many other frameworks.?Unlock your competitive advantage today.?