Tag: GDPR

Categories
Life with GDPR

Meta Fined In Ireland

Jonathan Armstrong and Tom Fox return for another episode of the award-winning Life with GDPR. In this episode, we discuss the recently released find by the Ireland Data Protection Commission against Meta for two legacy companies, €210m for its Facebook operation and €180m for Instagram for GDPR breaches.  The DPC also ordered Meta to change its data protection practices within three months.  Those changes may have a more lasting effect on Meta than the fines.  The two fines come in fifth and sixth places, respectively, in the largest GDPR fines of all time.

Some of the highlights  include:

  1. What were the facts?
  2. Why this matter has far wider implications than simply Big Tech.
  3. Max Schrems says this is a huge blow for Meta.
  4. The convoluted appeal process is going forward.
  5. Lessons learned.

Resources

For more information on the issues raised in this podcast, check out the Cordery Compliance News Section. For more information on Cordery Compliance, go to their website here. Also, check out the GDPR Navigator, one of the top resources for GDPR Compliance, by clicking here.

Categories
Everything Compliance

Episode 109, The New Year’s Edition

Welcome to the only roundtable podcast in compliance as we celebrate our second century of shows. Everything Compliance has been honored by W3 as the top talk show in podcasting. In this episode, we have the quintet of Jay Rosen, Jonathan Armstrong, Jonathan Marks, Tom Fox, and Matt Kelly, all discussing issues they are looking at as we begin 2023. We conclude with our fan-fav Shout Outs and Rants section.

  1. Matt Kelly looks at some of the ESG issues he will be following in 2023, including SEC rules around ESG, potential audit requirements, who will hold this function internally, and the new role of the ESG Controller. He rants about Zulily and its SOX compliance failures which allowed an employee to embezzle over $300,000.

2. Jonathan Marks looks at corporate governance issues in 2023, including board structure and guidance, recent Board failures, and Board oversight and monitoring. He shouts out to the NFL to cancelling the game between the Bengals and Bills.

3. Tom Fox shouts out to the 50th anniversary of School House Rock and lists his top five.

4. Jonathan Armstrong gives us a preview of 5 key issues he is following for 2023: ESG, GDPR fines, ransomware, supply chain risk issues, and crypto scams. He rants about the mistreatment of Prince Harry’s dog and asks if the dog was traumatized when Prince William knocked his brother (Prince Harry) down and broke the dog’s food bowl.

5. Jay Rosen reviews acronyms that drive him crazy. He shouts out to EMS personnel in Cincinnati for training and being prepared when Damar Hamlin went into cardiac arrest during the Bills game and saved his life.

The members of Everything Compliance are:

•       Jay Rosen– Jay is Vice President, Business Development Corporate Monitoring at Affiliated Monitors. Rosen can be reached at JRosen@affiliatedmonitors.com

•       Karen Woody – One of the top academic experts on the SEC. Woody can be reached at kwoody@wlu.edu

•       Matt Kelly – Founder and CEO of Radical Compliance. Kelly can be reached at mkelly@radicalcompliance.com

•       Jonathan Armstrong –is our UK colleague, who is an experienced data privacy/data protection lawyer with Cordery in London. Armstrong can be reached at jonathan.armstrong@corderycompliance.com

•       Jonathan Marks is Partner, Firm Practice Leader – Global Forensic, Compliance & Integrity Services at Baker Tilly. Marks can be reached at jonathan.marks@bakertilly.com

The host and producer, ranter (and sometime panelist) of Everything Compliance is Tom Fox, the Voice of Compliance. He can be reached at tfox@tfoxlaw.com. Everything Compliance is a part of the Compliance Podcast Network.

Categories
Life with GDPR

Sullivan Conviction from GDPR Perspective

Jonathan Armstrong and Tom Fox return for another episode of the award-winning Life with GDPR. In this episode, we discuss the recent conviction of Joe Sullivan, former CISO at Uber, for his role in hiding a data breach that hit the company. Sullivan was convicted in the US in October 2022 in connection with an investigation into a ransomware attack on Uber in 2016. However, we look at the conviction from the GDPR and UK perspective and ask whether it portends potential liability for CISOs and CCOs in the EU and UK. For instance, does this mean there are likely to be more prosecutions against executives? And could we see similar prosecutions in Europe? For a more detailed discussion and links to the case, check out the Cordery Compliance News Alert on the case, which you can find in the link below.

Some of the highlights include:

1.     What were the facts?

2.     Was Sullivan guilty of negligence or intentional conduct?

3.     Why were prior Uber convictions so significant?

4.     What happens next?

5.     Could this lead to more prosecutions of executives?

6.     What does this mean under GDPR and in the UK?

Resources

For more information on the issues raised in this podcast, check out the Cordery Compliance News Section. For more information on Cordery Compliance, go to their website here. Also, check out the GDPR Navigator, one of the top resources for GDPR Compliance, by clicking here.

Categories
Life with GDPR

US Response to GDPR Data Flow Protections

Jonathan Armstrong and Tom Fox return for another episode of the award-winning Life with GDPR. In this episode, we discuss the US/EU/UK agreement for data transfer from the EU/UK to the United States under the Data Protection Framework. Some of the highlights  include:

1.     What is the Data Protection Framework?

2.     How will the Data Protection Review Court work?

3.     What dare the safeguards around the US national security review be?

4.     What happens next?

5.     What are the views of Max Schrems?

6.     Will there be an EU/UK split?

Resources

For more information on the issues raised in this podcast, check out the Cordery Compliance News Section. For more information on Cordery Compliance, go to their website here. Also, check out the GDPR Navigator, one of the top resources for GDPR Compliance, by clicking here.

Categories
Daily Compliance News

October 11, 2022 the Rethink Edition

In today’s edition of Daily Compliance News:

  • Corruption and money laundering are destroying the planet. (FCPA Blog)
  • UK to ‘rethink’ replacing GDPR. (TechCrunch)
  • Meta appeals €405 million fine. (Cordery Compliance)
  • More whistleblowers at EY (FT)
Categories
Daily Compliance News

October 10, 2022 the Data Privacy Edition

In today’s edition of Daily Compliance News:

  • Weinstein LA trial takes on new urgency. (NYT)
  • Twitter/Musk case study. (Reuters)
  • US tries to fulfill data privacy agreement with EU. (WSJ)
  • Met creates an anti-corruption unit. (BBC)
Categories
Life with GDPR

Changes to UK Data Protection Regime

Jonathan Armstrong and Tom Fox return for another episode of Life with GDPR. In this episode, we discuss the changes in the UK Data Privacy regime currently proposed in the wake of Brexit. Some of the highlights  include:

  1. Why these changes are so significant.
  2. Are things really more complicated now?
  3. What does it mean for compliance?
  4. What happens next?
  5. Will the new PM request any changes?
  6. Practical steps you can take now.

Resources

For more information on the issues raised in this podcast, check out the Cordery Compliance News Section. For more information on Cordery Compliance, go to their website here. Also, check out the GDPR Navigator, one of the top resources for GDPR Compliance, by clicking here.

Categories
Life with GDPR

Changes to UK Data Protection Regime

Jonathan Armstrong and Tom Fox return for another episode of Life with GDPR. In this episode, we discuss the changes in the UK Data Privacy regime currently proposed in the wake of Brexit. Some of the highlights  include:

  1. Why these changes are so significant.
  2. Are things really more complicated now?
  3. What does it mean for compliance?
  4. What happens next?
  5. Will the new PM request any changes?
  6. Practical steps you can take now.

Resources

For more information on the issues raised in this podcast, check out the Cordery Compliance, News Section. For more information on Cordery Compliance, go their website here. Also check out the GDPR Navigator, one of the top resources for GDPR Compliance by clicking here.

Categories
Life with GDPR

Changes to Cyber-Breach Insurance

Jonathan Armstrong and Tom Fox return for another episode of Life with GDPR. In this episode, we discuss the announcement by Lloyd’s of London on its coverages for cyber-breaches by state actors. Some of the highlights  include:

1.     Why this change is so significant.

2.     What does it mean for compliance?

3.     What happens next?

4.     Practical steps you can take now.

Resources

For more information on the issues raised in this podcast, check out the Cordery Compliance, News Section. For more information on Cordery Compliance, go their website here. Also check out the GDPR Navigator, one of the top resources for GDPR Compliance by clicking here.

Categories
Life with GDPR

Changes to Cyber-Breach Insurance

Jonathan Armstrong and Tom Fox return for another episode of Life with GDPR. In this episode, we discuss the announcement by Lloyd’s of London on its coverages for cyber-breaches by state actors. Some of the highlights  include:

1.     Why this change is so significant.

2.     What does it mean for compliance?

3.     What happens next?

4.     Practical steps you can take now.

Resources

For more information on the issues raised in this podcast, check out the Cordery Compliance News Section. For more information on Cordery Compliance, go to their website here. Also, check out the GDPR Navigator, one of the top resources for GDPR Compliance, by clicking here.