When investigating a story, journalists seek answers to the five Ws and one H: who, what, when, why, where, and how. Similarly, regulators are now requiring organizations to more explicitly share the details of a breach by specifying notification content.
Read moreRadarFirst Blog
Regulatory Trends to Watch in 2020: Increasing Specificity in Notification Timelines
As regulations continue to condense the timeframe between discovery or awareness of a breach and required notification, either to a regulator or to affected individuals, it’s increasingly critical that processes and systems are in place to streamline incident response.
Read moreChanging Data Breach Laws: Michigan
In 2018, former Michigan Governor Rick Snyder signed into law House Bill 6406 (Public Act 649 of 2018). This law exempts entities regulated by the insurance code from Michigan’s Identity Theft Protection Act. As of January 20, 2020, this law is in effect.
Read moreRegulatory Trends to Watch in 2020: The Expanding Scope of Personal Information
In the first nine months of 2019, an average of 7.1% of data privacy or security incidents were breaches that required notification. These incidents had passed through a compliant, multi-factor risk assessment to determine the potential harm for affected individuals. Without this assessment, many companies could report a greater percentage of breaches that require notification. […]
Read moreFacing the Turbulent Twenties: Lessons from The Last Decade of Data Privacy
A new decade has arrived, ready or not. In the data privacy world, the past decade brought profound changes in the regulatory landscape and threats we could never have imagined ten years ago, but also growing awareness and new tools for dealing with the challenges we face. If the past teaches us anything, it is […]
Read moreInfographic: Trends in Changing U.S. Data Breach Notification Laws
Visualize the complex landscape of U.S. data breach notification laws in this infographic.
Read moreHow Top Execs Will Prioritize Privacy in 2020
Data is your company’s biggest asset. Many critical business decisions are based on insights from the data you hold. Biometrics, AI, the Internet of Things (IoT), and other technologies create even more opportunities to further use data to benefit your business. But the more data you have, the greater the privacy and security risks. In […]
Read moreHappy(?!) New Year – Data Breach Notification Regulations Going into Effect January 1, 2020
It's almost 2020, and you're probably too busy with end-of-year tasks and holiday preparations to even think about New Year's resolutions. And that's OK. You can put off decisions about hitting the gym more often, scheduling time with friends, or trying a new hobby. But here's a decision you can't put off: there are six [...]
Read more
Can’t-Miss Privacy Conferences for 2020
A new decade is almost here! 2020 promises to be a roller-coaster year for privacy laws. The California Consumer Privacy Act (CCPA) comes into effect on January 1st, the GPDR turns two, and U.S. states will continue to tighten their breach notification regulations, such as happened with New York’s SHIELD Act.
Read moreAction Item: Benchmark-based Planning for 2020
This series written for The IAPP Privacy Advisor by the team at RadarFirst is about establishing program metrics and benchmarking your privacy incident management program.
Read more