On February 12, 2018, the Commodity Futures Trading Commission (CFTC) issued an order requiring AMP Global Clearing, a registered Futures Commission Merchant (FCM), to pay a civil penalty of $100,000 due to its failure to diligently supervise its IT provider in implementing AMP’s Information Systems Security Program. The order came after a third party was able to gain access to AMP customer records without authorization through a vulnerability in AMP’s network. The vulnerability had not been detected in three consecutive quarterly network risk assessments, despite the fact that security breaches resulting from similar vulnerabilities—including a number that occurred on network devices manufactured by the same manufacturer as AMP’s—had…
United Arab Emirates to introduce new data protection law, a step towards a UAE data protection regime that would provide adequate level protection for the purposes of data transfers from the EU and other regulated jurisdictions.
Pres. Biden to nominate to FTC Alvaro Bedoya, Georgetown Law professor and founding director of GU’s Center on Privacy & Technology where his work has focused on surveillance technologies including facial recognition.
.@DPCIreland to fine #WhatsApp Ireland Ltd €225 million for failure to meet the #transparency requirements of #GDPR Articles 12-14. This fine increases the €30-50 million proposed in the DPC’s December draft decision. https://edpb.europa.eu/system/files/2021-09/dpc_final_decision_redacted_for_issue_to_edpb_01-09-21_en.pdf