European Commission Comments on GDPR’s One-Year Anniversary
On the one-year anniversary of the GDPR, Andrus Ansip, Vice-President for the Digital Single Market and Věra Jourová, Commissioner for Justice, Consumers and Gender Equality has released a joint statement on the momentous law: “The main aim of the rules has been to empower people and help them to gain more control over their personal data. This is already happening as people are starting to use their new rights and more than two-third of Europeans have heard of the regulation.” The entire statement can be found here.
FTC Extends Comment Deadline on Proposed Changes to Safeguards Rule
The FTC has extended the deadline to submit comments on proposed changes to the Safeguards Rule by 60 days until August 2nd. In March, the FTC announced it was seeking comment on proposed changes to the Gramm-Leach-Bliley Act’s Safeguards Rule as well as the Privacy Rule. These regulations require financial institutions to inform customers about its information-sharing practices. More information can be found here.
FBI Reports That Cybercrime Cost $2.7B in 2018
The FBI’s annual Internet Crime Report, states that IC3 received 351,936 complaints in 2018 which is about 900 every day. The statement released with the report said, “[t]he most frequently reported complaints were for non-payment/non-delivery scams, extortion, and personal data breaches. The most financially costly complaints involved business email compromise, romance or confidence fraud, and investment scams, which can include Ponzi and pyramid schemes.” More information can be found here.
NIST Updates Guidance on Vetting Mobile App Security
NIST released an update to guidance on mobile application vetting and cybersecurity. The guidance, originally released in January 2015, helped explain how organizations can review mobile applications for cybersecurity vulnerabilities. According to NIST, this revision to the guidance, “expands on the original document by exploring resources that can be used to inform an organization’s requirements for mobile app security.” More information can be found here.
ISSA, IAPP Host Event On Privacy and Security
The Information Systems Security Association is partnering with the International Association of Privacy Professionals to host the “No Rest for the Weary: The Continued Convergence of Privacy and Security” forum June 13 and 14 at the Hilton Boston/Woburn in Woburn, Massachusetts. The event is meant to facilitate discussions related to privacy and security programs, real-world scenarios. You can learn more about the event here.