Governance, Risk and Compliance

The Irish Data Protection Commission, Meta’s main privacy watchdog in the European Union, levied the fine following disclosure of an investigation in the spring of 2021 that revealed over 530 million Facebook users’ information had been leaked on a public forum.

Jefferson Wells study finds that 71% of chief audit executives are now including environmental, social and governance (ESG) in their audit plans.

Proposed rulemaking from HHS aims to address care coordination and privacy challenges of substance use disorder patients under 42 CFR part 2, by aligning the rule with HIPAA.

Cybersecurity information sharing could reach a breakthrough under the recently passed Cyber Incident Reporting for Critical Infrastructure Act of 2022 but cybersecurity experts noted that its success is hinged on the implementation rules of the Cybersecurity and Information Security Agency, CyberScoop reports.

The Federal Trade Commission has been urged by Senate Democrats, including Sens. Elizabeth Warren, D-Mass., and Richard Blumenthal, D-Conn., to launch an investigation on possible Twitter data security concerns since Elon Musk's acquisition of the microblogging site last month, according to CyberScoop.

The U.S. Department of Defense has been found by the Government Accountability Office to be at risk of having inadequate visibility of cyber threats due to incomplete information on most of its cyber incident reports, reports The Record, a news site by cybersecurity firm Recorded Future.

Until Sen. Mark Warner’s proposal for a cybersecurity incentivization program, healthcare leaders expressed frustration over government proposals for new frameworks rather than building off past foundational efforts.