Risk

9/25/2017
03:06 PM
50%
50%

Privacy Shield Framework Gains Popularity in EU, US: Report

The IAPP-EY Privacy Governance Survey shows marked interest in the Privacy Shield framework to transfer personal data.

More organizations plan to secure personal data in transit from the European Union to the United States in 2018, as reported in the upcoming Privacy Governance Survey from EY and the International Association of Privacy Professionals (IAPP).

The survey annually monitors privacy practices among global organizations and this year covered 548 organizations. Nearly half (47%) of businesses transferring personal data from the EU to US will use Privacy Shield in 2018, an increase from 34% last year.

Small-to-medium-sized businesses are especially interested in Privacy Shield; 67% of those with less than 5,000 employees will use it as a data transfer mechanism in 2018. Excluding healthcare and financial services firms, which are not regulated by the FTC, which oversees Privacy Shield, 49% of US companies and 53% of EU companies will participate.

Privacy Shield is not the most common method of transferring data from the EU to the US. Standard contractual clauses will be used among 88% of respondents, researchers found. These findings come at a time of uncertainty for many businesses, which are increasingly interested in the derogations for data transfer outlined in GDPR, set to go into action in May 2018.

Full results of the survey will be revealed at the IAPP Privacy. Security. Risk. Conference Oct. 16-18.

Read more details here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Crowdsourced vs. Traditional Pen Testing
Alex Haynes, Chief Information Security Officer, CDL,  3/19/2019
BEC Scammer Pleads Guilty
Dark Reading Staff 3/20/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Insider Threat Prevention activated!
Current Issue
5 Emerging Cyber Threats to Watch for in 2019
Online attackers are constantly developing new, innovative ways to break into the enterprise. This Dark Reading Tech Digest gives an in-depth look at five emerging attack trends and exploits your security team should look out for, along with helpful recommendations on how you can prevent your organization from falling victim.
Flash Poll
The State of Cyber Security Incident Response
The State of Cyber Security Incident Response
Organizations are responding to new threats with new processes for detecting and mitigating them. Here's a look at how the discipline of incident response is evolving.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-7238
PUBLISHED: 2019-03-21
Sonatype Nexus Repository Manager before 3.15.0 has Incorrect Access Control.
CVE-2017-16253
PUBLISHED: 2019-03-21
An exploitable buffer overflow vulnerability exists in the PubNub message handler Insteon Hub 2245-222 - Firmware version 1012 for the cc channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriti...
CVE-2017-16254
PUBLISHED: 2019-03-21
An exploitable buffer overflow vulnerability exists in the PubNub message handler Insteon Hub 2245-222 - Firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can send an authenticated HTTP re...
CVE-2017-16255
PUBLISHED: 2019-03-21
An exploitable buffer overflow vulnerability exists in the PubNub message handler Insteon Hub 2245-222 - Firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can send an authenticated HTTP re...
CVE-2018-3968
PUBLISHED: 2019-03-21
An exploitable vulnerability exists in the verified boot protection of the Das U-Boot from version 2013.07-rc1 to 2014.07-rc2. The affected versions lack proper FIT signature enforcement, which allows an attacker to bypass U-Boot's verified boot and execute an unsigned kernel, embedded in a legacy i...