New York stock exchange penalised for violating their disaster recovery and business continuity requirements ...
Experts are reporting that thousands of Australian businesses aren't ready to comply with the data breach mandatory notification law that kicked in from February 22. Research by cyber security specialists CyberArk concluded that as many as 44 per cent of enterprises aren't up to speed, and other security professionals are queuing up to echo the sentiment.
The new law is simple enough in principle. It's compliance in practice that will cause headaches.
If your organisation is covered by the Privacy Act, and you have other people's personal information in your care, and it ends up somewhere or with someone it shouldn't, there's a clock ticking.
AFR | February 1
Mandatory reporting of data breaches will require any company, with an annual turnover of more than $3 million and is subject to the Privacy Act, to notify a person if their information has been compromised.
Big Law Business | 17 September
With data breaches becoming an unfortunate everyday occurrence, cybersecurity is no longer just an IT issue. Legal departments, which have a need to protect sensitive information, such as employees’ and clients’ personally identifiable information and nonpublic corporate information, are increasingly becoming involved in data security issues as the universe of risk exposure expands.