RadarFirst Blog

The Pitfalls of Over-reporting Under the GDPR

After much fanfare, the EU’s General Data Protection Regulation (GDPR) went into effect in May of 2018. In May 2019, the European Data Protection Board (EDPB) issued its 1-year assessment of the GDPR. In the first year, over 89,000 data breaches had been logged by EEA Supervisory Authorities.

Read more

On Our Radar: November 15, 2019

Something we discuss pretty frequently around here at RadarFirst is the idea of sensitive data: what we call protected health information, personally identifiable information, or just personal data. We are constantly considering what qualifies as protected data under specific regulations, what risk the data may pose to individuals should it be disclosed in some way […]

Read more

On Our Radar: November 8, 2019

Around the office, we talk a lot about how cyber attacks affect companies across many industries. We also often end up discussing the privacy industry itself. In a nutshell: it’s growing. And not just for the known players in the space. The industry is also seeing the introduction and proliferation of start ups and fresh […]

Read more

5 Hot Topics from the PrivSec Conference in New York

Traditionally, privacy and security have been poles apart. We’ve seen an increased effort in the industry to align these two functions, especially as heavyweight regulations like GDPR and CCPA become effective. This week’s 2019 PrivSec Conference at Columbia University in New York seeks to further unite privacy and security with two days of inspiration and […]

Read more

On Our Radar: November 1, 2019

How is it already November? Halloween is behind us, and thank goodness for that! Privacy professionals have more than enough to scare and trick us in our professional lives already–did you read my colleague Dorothy’s recent post about the rise in heart attacks following a ransomware data breach? 

Read more

On Our Radar: October 24, 2019

Another week has gone by, and with it another news cycle filled with examples of recent data breaches, hacking attacks, and regulatory enforcements. Does it feel like our work as privacy professionals is enjoying a little too much of the limelight these days?

Read more

Built to Win: 5 Steps of a Proactive Incident Response Plan that Works

Privacy and security incidents involving sensitive personal data are as individual as fingerprints. An incident involving misplaced paper records is vastly different from a large-scale cyber-attack affecting millions of people. Yet the organization with the paper incident and the organization with the cyber-attack are both subject to a complex web of global data breach notification […]

Read more

Changing Data Breach Laws: The New York SHIELD Act

Earlier this year, New York Governor Andrew Cuomo signed into law the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act), amending New York State’s existing data breach notification law and creating new data security requirements for businesses collecting private information on New York Residents. 

Read more

On Our Radar: October 11, 2019

It probably isn’t often that the world of privacy professionals is likened to a soap opera. However, if you really think about it, is the privacy world really all that far off from this genre of daytime television? The melodrama. The suspense. The evil twins!

Read more