On December 24, 2024, New York Governor Kathy Hochul enacted an amendment to New York General Business Law § 899-aa, refining the state's data breach notification requirements. This enactment demands that businesses must notify New York residents of data breaches within thirty days of the breach's
Telegram, a messaging platform renowned for its privacy features, has recently undergone significant changes in its compliance policies regarding user data requests. These changes have become particularly pronounced towards the end of 2024, following the arrest of its CEO, Pavel Durov. This
The Payment Card Industry Data Security Standard (PCI DSS) is a critical framework for businesses that handle payment card data. With the upcoming update to version 4.0.1, effective March 2025, organizations must adapt to enhanced security measures designed to combat the evolving threat landscape
On December 19, 2024, Colonial Surety Company (CSC) reported a significant data breach affecting confidential consumer information to the Attorney General of Massachusetts. This incident, traced back to a cybersecurity breach on May 2, 2024, allowed unauthorized access to sensitive data, including
In January 2023, Brightline Inc., a mental health service provider for children and teens, experienced a significant data breach that exposed sensitive consumer information. This breach affected approximately one million individuals, revealing personal identifiers, insurance details, and Social
The East African Community (EAC) is making significant strides toward harmonizing data governance frameworks across its eight Partner States. This initiative is part of the larger Eastern Africa Regional Digital Integration Project (EARDIP), which aims to enhance connectivity, data market
