Tag Archives: information security

FTC Issues Data Breach Response Guide for Businesses

 FTC-Data-Breach-Response

Written By ESR News Blog Editor Thomas Ahearn

With massive data breaches like the one affecting 500 million Yahoo users in the news lately, the Federal Trade Commission (FTC) has issued a new Data Breach Response: A Guide for Business that outlines the steps that businesses should take when experiencing a data breach. Continue reading

Employment Screening Resources Successfully Completes 2016 SOC 2 Type 2 Data Security Audit

SOC2-Logo_Revised

Written By Employment Screening Resources (ESR)

Employment Screening Resources® (ESR), a leading global background screening firm, has announced that independent auditors conducting a SOC (Service Organization Control) 2® Type 2 examination of ESR’s operations for the six month testing period of January 2016 through June 2016 have issued a SOC 2® Type 2 report that states ESR management maintained effective controls over the privacy, security, and confidentiality of its employee screening system. Continue reading

Massive Yahoo Data Breach Could Affect 500 Million Users

 MaskedManLaptop

Written By ESR News Blog Editor Thomas Ahearn

Technology company Yahoo has confirmed user account information that may have included names, email addresses, phone numbers, dates of birth, passwords, and security questions was stolen from 500 million Yahoo user accounts by “a state-sponsored actor” in a massive data breach in late 2014. Continue reading

FTC Requests Public Comment on Disposal Rule for Consumer Report Information and Records

FTC-logo

Written By ESR News Blog Editor Thomas Ahearn

The Federal Trade Commission (FTC) is seeking public comment on the Disposal Rule formally known as the ‘Disposal of Consumer Report Information and Records Rule’ which implements part of the Fair and Accurate Credit Transactions Act of 2003 (FACTA) by requiring consumer report information for business purposes to be properly disposed of through reasonable measures to protect that data from unauthorized access, according to an FTC press release. Continue reading

EU-U.S. Privacy Shield May Face Challenges from Data Protection Authorities

 privacy_shield

Written By ESR News Blog Editor Thomas Ahearn

The EU-U.S. Privacy Shield Framework launched on August 1, 2016, to replace the invalidated Safe Harbor agreement for data transfers between the European Union (EU) and the United States (U.S.) may face challenges from Data Protection Authorities (DPAs) in 2017, according to an article on the International Association of Privacy Professionals (IAPP) website. Continue reading

Employment Screening Resources Receives EU-U.S. Privacy Shield Certification from Department of Commerce

privacy_shield  

Written By ESR News Blog Editor Thomas Ahearn

Employment Screening Resources® (ESR) – a global provider of background checks and a strategic choice for businesses needing accurate and actionable information when hiring – has received notification from the U.S. Department of Commerce’s International Trade Administration (ITA) that ESR’s self-certification of adherence to the EU-U.S. Privacy Shield Framework is approved and effective as of August 12, 2016. Continue reading

Report Finds Two Out of Three Companies Experienced Insider Theft or Corruption of Data in Prior Year

 CorporateSecrets

Written By ESR News Blog Editor Thomas Ahearn

A report entitled “The State of Cybersecurity and Digital Trust 2016” has revealed that more than two out of three companies surveyed – 69 percent – experienced an attempted or successful insider theft or corruption of data during the prior 12 months, and that concerns from security professionals over insider theft of corporate information over the coming 12 to 18 months rose by nearly two-thirds. Continue reading

New EU-U.S. Privacy Shield Framework for Data Protection Launches August 1

 privacy_shield

Written By ESR News Blog Editor Thomas Ahearn

The EU-U.S. Privacy Shield Framework designed by the U.S. Department of Commerce and European Commission to provide companies on both sides of the Atlantic that transfer personal data from the European Union (EU) to the United States (U.S.) with a mechanism to comply with EU data protection requirements in support of transatlantic commerce will officially launch on August 1, 2016. The official EU-U.S. Privacy Shield Framework website is now available online at www.privacyshield.gov. Continue reading

EU-U.S. Privacy Shield Formally Adopted by European Commission

 Privacy_Shield_Datenschutz-595x440

Written By ESR News Blog Editor Thomas Ahearn

The European Commission has formally adopted the new EU-U.S. Privacy Shield framework to create stronger protection for transatlantic data flows between the European Union (EU) and the United States (U.S.), protect the fundamental rights of people in the EU with personal data being transferred to the U.S., and bring legal clarity for businesses relying on transatlantic data transfers, according to a press release from the European Commission. Continue reading

Data Breach Caused by Alleged Phishing Scam Leads to Class Action Lawsuit against Supermarket

 MaskedManLaptop

Written By ESR News Blog Editor Thomas Ahearn

A proposed nationwide class action lawsuit claims that Phoenix, Arizona-based supermarket chain Sprouts Farmers Market Inc. allegedly fell victim to a data breach caused an email “phishing” scam that led the company’s payroll department to voluntarily release the W-2 Wage and Tax Forms of up to 21,000 employees in March 2016, according to a report on the Top Class Actions website. Continue reading