Leveraging Cybersecurity Strategy to Enhance Data Protection Strategy – Part 2 of 3
Some privacy professionals consider controls frameworks to be ‘their secret sauce’, but I think of them as ‘our secret sauce’ as an industry. I feel we should all share knowledge and should learn more ourselves through that sharing. This article is not meant as a ‘how to’ but rather a ‘did you know’ and ‘look […]
Security Roundup July 2023
Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. National Cyber Risk Assessment outlines potential threats facing Ireland The newly launched National Cyber Risk Assessment 2022 report outlines the potential cyber threats facing Ireland, including cyber attacks on a similar scale to the HSE ransomware attack, as well as […]
Still Unsure of Soft Opt- In? BH Consulting Has You Covered
With the countless privacy and data protection terms now in circulation, it can be difficult to wrap your head around many of the concepts. One you may still be grappling with is the soft opt-in for marketing. It’s worth knowing because it’s a valuable tool that allows organisations to communicate with their customers without explicit […]
Leveraging Cybersecurity Strategy to Enhance Data Protection Strategy
I have spent the last ten years researching and working in privacy, leading privacy programs and leading privacy teams. I spent the previous twenty years doing similar in cybersecurity, across the financial sector. The two subjects make excellent bedfellows and provide a hybrid understanding of not just the ‘what must be done to be compliant’…but […]
Security Roundup June 2023
Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. Target the human, swipe the cash: Verizon DBIR 2023 highlights crime trends Manage the human risk and mind your money: those are two key takeaways from Verizon’s 2023 Data Breach Investigations Report. Almost three-quarters of breaches (74 per cent) involve […]
DPO Dues: How to Meet Your Privacy Compliance Requirements
The EU General Data Protection Regulation brought the role of Data Protection Officer (DPO) to the fore. (Due credit to Germany which originally introduced the concept as far back as 2001.) The European Data Protection Board (EDPB) recently announced plans to start enforcing the role more closely, so, as the fifth anniversary of the GDPR […]
Meta-stasis: Why Was Facebook Fined €1.2 Billion and What Does this Mean for Me?
Meta’s Facebook has been fined yet again. The Data Protection Commission (DPC) fined the company a staggering €1.2 billion for illegal transfers of data to the US. This decision comes as no surprise; Facebook has been under scrutiny for data protection issues for years. This is the largest fine issued to date under the EU […]
Security Roundup May 2023
Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. Say it again, I double dare you Anyone familiar with phishing and social engineering will know scammers often use psychological tricks to get victims to divulge personal data. Now, a new study from the University of East Anglia has uncovered […]
RSA Reflections: Lessons from the 2023 Cybersecurity Conference
One leaves RSA with an innate sense of awe at the sheer size and scale of this event. The orchestration and programme management for a conference serving over 40,000 people is breath-taking. While the conference is intensely educational, it’s also really good fun. There’s a pervasive atmosphere of excitement about ‘what’s next’ and many of […]
IAPP conference report: a deep dive into data protection
The UK’s expected divergence from the EU General Data Protection Regulation (GDR) was a key talking point from IAPP UK’s recent conference. Yvonne McKeown, senior data privacy consultant with BH Consulting, was there and she outlines her thoughts in this blog. The International Association of Privacy Professionals’ event, dubbed ‘IAPP UK Intensive 2023’, took place […]