Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The General Data Protection Regulation (GDPR) is a landmark piece of legislation in the European Union (EU) that sets out rules for how how businesses process and protect personal data of EU citizens. It applies to any business that collects personal data from EU citizens, regardless of whether the business is located in the EU or not. This makes it a truly global regulation and it has been driving significant change in the way businesses manage and protect personal data.

Last Summer, President Biden issued Executive Order 14028 to help boost and improve government cybersecurity operations in response to increased threats worldwide. Memorandum OMB-21-31 from the Office of Management and Budget soon followed, which explained the critical role data log collection and analysis play across all branches of the Federal Government.

NITDA launched the ground-breaking Nigeria Data Protection Regulation (NDPR) in early 2019, cementing a culture of data privacy and protection for all Nigerians. By mirroring Europe's GDPR Framework, NITDA demonstrated its commitment to safeguarding citizens' online security. Private organizations, such as mobile development companies that control or process data, must comply with this regulation to stay operational. Fortunately, we're here to help you avoid any costly missteps.

The European Union (EU) General Data Protection Regulation (GDPR) turns five this year. While the law spawned many imitators, most notably the California Consumer Privacy Act (CCPA), the GDPR remains the world’s most comprehensive, far-reaching data privacy law to date. It gave European citizens a wide swath of new data privacy rights, while placing significant new data governance responsibilities on organizations.

In today's hyper-connected world, most of us now take care of our daily tasks with the help of digital tools, which includes online banking. Whether we're reviewing our account balances, transferring money, applying for payment cards, or simply paying our bills, banking has become more digital, and requires financial firms to adapt to this new world of transacting business. This adaptation has seen EU-based financial firms adopting and relying more heavily on cloud services.

Security Information and Event Management (SIEM) systems are essential for protecting IBM AS400 systems in the financial industry. These systems are designed to collect, analyze and correlate log data from various sources, including servers, network devices, and applications, to identify security threats and compliance violations.

The California Privacy Rights Act (CPRA) is a privacy law that was passed in California in 2020. It strengthens the security standards of the California Consumer Privacy Act (CCPA), making California's consumer privacy laws more aligned with the General Data Protection Regulation (GDPR). The CCPA gives California residents the right to know what personal data is being collected by companies and whether it will be sold or disclosed to other parties.

The financial services industry has been a threat actor target since before digital transformation was even a term. Further, the financial services organizations find themselves continuously under scrutiny. As members of a highly regulated industry, these companies need to comply with various laws to ensure that they effectively protect sensitive data.

‍ Without a doubt, data privacy will be a much bigger focus for small- and medium-sized businesses in 2023, as the U.S. states of California, Colorado, Connecticut, Utah, and Virginia all enact stricter privacy legislation. Similarly, the Canadian province of Quebec is also in the process of updating its data privacy laws.