Your daily source for the most important privacy and data protection news from around the world.

OPC details lessons learned from CRA, ESDC breaches

The Office of the Privacy Commissioner of Canada published key takeaways from its investigation of the 2020 data breach of the Canada Revenue Agency sign-in portal and the Employment and Social Development Canada's "GCKey" authentication service. Recommendations include addressing privacy risks thro...
CISA releases cyberattack reporting regulations
The U.S. Cybersecurity and Infrastructure Security Agency released cyberattack reporting rules for companies that operate critical infrastructure, The Wall Street Journal reports. The regulations require companies to "report significant cyberattacks within 72 hours and report ransom payments within ...