Cybersecurity has become critically important to plan sponsors, plan administrators and plan participants. With retirement plans holding an estimated $9.3 trillion in assets as well as sensitive information for approximately 140 million plan participants, retirement accounts are especially attractive targets for cyber-enabled fraud. For instance, sophisticated phishing email schemes have proliferated during the COVID-19 pandemic,
COVID-19
Final joint FCA, PRA and BoE rules and guidance on building operational resilience published
Last week the Financial Conduct Authority, Prudential Regulation Authority (“PRA“) and Bank of England published a joint policy statement on operational resilience in relation to the impact tolerance of important business services in the financial sector (the “Statement”). The new rules aim to help firms prevent, adapt, respond to, recover and learn…
€35 Million Fine Issued Under GDPR for Employee Monitoring and IT Security Failings in Germany
During the COVID-19 pandemic, data privacy – and, in particular, employee data privacy – has been at the forefront of employers’ minds. In the last six months, employers across the globe have been required to give careful thought to a whole host of potential issues, from contact tracing apps to temperature and other health checks…
Considering these? App-solutely not! – China Issues Measures for the Identification of Illicit Collection and Use of Personal Information by Apps
On 30 December 2019, the Cyberspace Administration of China, Ministry of Industry and Information Technology, Ministry of Public Security and State Administration for Market Regulation jointly released the Measures for the Identification of Illicit Collection and Use of Personal Information by Apps (“Measures ”). The Measures set out negative examples relating to the collection and…
ICO Outlines Six Data Protection Steps Which Organisations Should Take on the Road to Coronavirus Recovery
In light of lockdown restrictions continuing to be lifted and organisations planning to reopen, the UK Information Commissioner’s Office (“ICO”) has outlined six steps businesses in the UK will need to consider when using personal data, and especially health personal data, as a part of their COVID-19 recovery plans.
The six steps do…
COVID-19 Tracing App Released in Germany
On 16 June 2020, the “Corona-Warn-App” (“the App”) was released by the Federal German government. The tracing App, which uses Bluetooth technology, records which smartphones have come close to each other. If a user has tested positive and has shared this in the App, it will subsequently notify other users that they have been near…
Data Ownership and Contact Tracing
Who owns the data about individuals collected by the UK Government, NHS, academics and private companies in context of the COVID-19 pandemic such as data from contact tracing apps?
Legal framework
In the UK, there is no comprehensive framework to determine ownership of data, which is not generally understood to be property1.…
Covid-19-Related Implications For Liability Insurers In Hong Kong
The first case of COVID-19 was reported in Hong Kong nearly five months ago, on 22 January 2020. No new local cases have been recorded for over two weeks and social distancing measures are being eased to allow the city to return to some semblance of normality. However, it will be a case of “so…
NHS Launches Contact Tracing App to Combat COVID-19
As we have previously reported, NHSX, the innovation arm of the NHS, has been working on a Bluetooth-based contact tracing app to help slow the spread of the coronavirus. The app called NHS COVID-19 has been launched this week for a trial at the Isle of Wight and is currently only available to NHS…
“Data Protection Rules (Such as the GDPR) Do Not Hinder Measures Taken in the Fight Against the COVID-19 Pandemic”: Is This the Only Sentence You Need to Note in the European Data Protection Board Guidelines on the Processing of Health Data for the Purpose of Scientific Research?
Scientific research has probably never played a more central, time-sensitive role in our society than during the COVID-19 pandemic. Researchers are being pressed to produce results as quickly as possible. And processing health-related data is a key element of this research—which raises significant questions on how to reconcile privacy and public safety. News articles, LinkedIn…