Compliance

Compliance news, analysis, research, how-to, opinion, and video.

Congress moves quickly on cyberthreat information sharing

A House committee approves a second bill, despite concerns about consumer privacy

Safari users in the UK can sue Google over alleged privacy violations

The ruling from an appeals court could lead to claims from millions of British users


UN to appoint watchdog to focus on privacy in digital age

A 'special rapporteur' is to be appointed for a period of three years

Tech companies call on US to end bulk collection of metadata

The provision in the Patriot Act that allows for the bulk collection of metadata expires in June.

About 25 US states oppose sale of RadioShack's customer data

Some states like Texas, Oregon, and Pennsylvania have filed objections in bankruptcy court

PayPal cited for 'reckless disregard' of US sanctions

The company will pay $7.7 million for violations of terrorism, WMD, Iran and Cuba sanctions

Dutch service providers must delete retained telecom data

A new data retention law is being planned by the Dutch government

Case that could overturn EU-US data exchange deal to be heard by top EU court

If the court decides to revoke the data exchange deal it could hurt U.S. tech companies

China discloses cyberwarfare unit, no one surprised

Many cybersecurity vendors have been tracking attacks from China for years

fatigue

‘Compliance fatigue’ sets in

With compliance frameworks expanding, becoming more complicated and covering more things, some organizations say they are overwhelmed with trying to keep up. Experts are sympathetic, but say the alternative is to increase the risk of...

Opera buys VPN service to help protect user privacy

Acquiring SurfEasy will help protect the privacy of Opera's 350 million users, the company said

Mandrill warns attack may have exposed some data about email

The transactional email service said it doesn't believe data was stolen

Proposed data breach notification bill criticized as too weak

The draft legislation would only apply to data linked to identity theft or financial fraud, not other customer information

UK government filing raises fears about misuse of hacking powers

UK intelligence agency GCHQ maintained in a submission that it operates within the law

encryption

Can software-based POS encryption improve PCI compliance?

In the wake of the recent Verizon report that shows that 80 percent are out of PCI DSS compliance between audits, some vendors are urging the PCI Council to consider approving software-based point-to-point encryption, in addition to...

What, me worry? Despite Snowden leaks, Americans' use of the 'Net largely unchanged

In light of broad government snooping, many people aren't even aware of privacy tools like Tor or encryption

EU Parliamentarians visit U.S. to talk data protection, mass surveillance

Discussions will cover major privacy and data protection issues

Government requests for Facebook data continue to grow

The content that had to be blocked for violating local laws is also on the rise, Facebook said

Senate panel secretly approves cyberthreat sharing bill

One senator called the legislation a 'surveillance bill by another name'

Tech groups renew push for cloud, email privacy protections

They want Congress to give greater protections from police searches to documents stored in the cloud for more than 180 days

Load More