Tag: data governance

Google fined for GDPR

Google Hit with $57 Million Fine in First Big GDPR Case

French data protection regulator CNIL has imposed a €50 million ($57 million) fine on tech giant Google for failing to comply with the EU’s General Data Protection Regulation (GDPR). The EU privacy law, which took effect last May, is among the most strict set of data privacy regulations in the Read More

What Auditors Must Know About Zero Trust Networking

Among the many things that may keep internal auditors up at night are cybersecurity, compliance, and data security and protection, according to a recent survey by the Chartered Institute of Internal Auditors. These top three concerns significantly outrank other risk categories like human resources, regulatory change, and digitalization, although, of Read More

Equifax

U.S. GAO: Internal Control Failures Contributed to Equifax Data Breach

A new report from the U.S. General Accounting Office examines the causes of the massive 2017 data breach by Equifax that compromised the personal data of more than 148 million Americans. The report contributes the debacle to the company’s failure to use common cybersecurity best practices, poor internal controls, and Read More

Alarm clock image

What’s Keeping Audit Chiefs Up at Night?

A new survey of the top risks that most concern chief internal auditors finds that cybersecurity and data privacy are among the issues that still cause the most headaches for company officials. The research, conducted by the Chartered Institute of Internal Auditors and based on responses from more than 300 Read More

GDPR image

Companies Slow to Abide by New EU Data Privacy Rules

The European Union’s new data privacy rules have been in effect for more than two months now, yet many companies haven’t done much to ensure they are abiding by them, according to a recent survey. The poll, conducted by Deloitte during a webcast in late June, found that only about Read More

Deadline Looms for New York Financial Audit-Trail Law

The deadline is looming for banks and financial institutions that do business in New York to comply with new regulation that requires them to keep an audit trail of financial transactions for at least five years. Provisions of the Cybersecurity Regulation, which was passed in March 2017, will go into Read More

Equifax

Equifax Consent Order Includes Internal Audit, IT Audit Mandates

In a consent order signed with eight states, credit reporting agency Equifax agreed to adopt several measures to shore up weaknesses across a wide spectrum of its IT and data security operations. The order includes a provision to beef up its internal audit program. It requires better assessments of internal Read More

cybersecurity image

Boards to Seek More Reporting on Cybersecurity Effectiveness

A new survey finds that corporate boards are expected to ask IT, IT audit, and other functions responsible for securing the company’s data and systems for more information on the effectiveness of cybersecurity programs. The survey, by Deloitte, found that 62.7 percent of C-suite and other executives expect board directors’ Read More

That Was Fast: Groups Sue Facebook, Google for GDPR Non-Compliance

It didn’t take long for the lawsuits to start flying over allegations of non-compliance with the European Union’s new set of data governance rules. Austrian data privacy advocacy group None of Your Business (NOYB) filed suits against Facebook, Google, and Facebook subsidiaries WhatsApp and Instagram alleging that the tech firms Read More