In their last article, Compliance discussed how data privacy has arguably led to putting information governance on the map for organizations. Now, they’re discussing how data privacy is raising the stakes on cybersecurity and data breaches for organizations.
Their latest article in the data privacy series (Data Privacy is Raising the Stakes for Cybersecurity and Data Breaches) discusses today’s data breach landscape, fines for data privacy violations (just for GDPR), how many states in the US have data breach notification laws (something I’ll be discussing with Debbie Reynolds on today’s ACEDS webinar here!) and data breach notification obligations for lawyers (ditto!).
According to Security Magazine, the top ten security breaches of 2021 also each exposed more than 100 million user records, with the largest one leaving “a massive database of more than 5 billion records…exposed on the web without a password or any other authentication required to access it”. The second largest breach occurred at LinkedIn, where the personal data of 700 million LinkedIn users, nearly 93% of the company’s members, was on sale online, including data such as full names, phone numbers, physical addresses, email addresses, geolocation records and more. Despite efforts by organizations to protect users’ personal data, breaches and security vulnerabilities not only continue to happen, but increase in frequency. Yet, we’re seeing more fines than ever for data privacy violations, raising the stakes for those data breaches.
So, how does 2021 stack up to 2020 in terms of total data breaches? How many GDPR fines have we seen to date and what’s the total fine amount? And what laws and rules do you need to know regarding data breach notification? Find out here how data privacy is raising the stakes on cybersecurity and data breaches! And please share any comments you might have or if you’d like to know more about a particular topic.
Are you “all in” on data privacy? If not, you should be! 😉
Disclosure: Compliance is an Educational Partner and sponsor of eDiscovery Today
Disclaimer: The views represented herein are exclusively the views of the authors and speakers themselves, and do not necessarily represent the views held by my employer, my partners or my clients. eDiscovery Today is made available solely for educational purposes to provide general information about general eDiscovery principles and not to provide specific legal advice applicable to any particular circumstance. eDiscovery Today should not be used as a substitute for competent legal advice from a lawyer you have retained and who has agreed to represent you.