Search Results for: privacy
DPDPB 2023- Some issues
Following the presentation of the DPDPB 2023, several comments have been published in different publications. Penalty NDTV carried the following interview in which the upper limit on the penalty came for discussion. The interview clarifies a number of doubts that … Continue reading
DPDPB 2023: Concerns of Brittas addressed?
Mr John Brittas, one of the members of the IT Standing Committee which reviewed and commented on the draft DPDPB 2022 has submitted a dissent note which has been promptly been circulated by a section of the media to criticise … Continue reading
ISO-9: Annexe A Controls-1
We have so far discussed ISO 27001-2022 in several articles ISO-1 to 7 and summarised ISO 27701 in article ISO-8. Let us now continue our discussions to cover the 93 controls which are part of Annexe A of ISO 27001-: … Continue reading
ISO-8: ISO 27701
ISO 27701 was published on August 6, 2019 as an extension of ISO 27001:2013. It was a framework for management of Privacy of Personal data and included requirements for Privacy Risk Assessment, Privacy Impact Assessment, Data Protection Impact assessment and … Continue reading
MOVEit vulnerability exploited.. Where was DPIA?
A Russian ransomware gang CLOp has reportedly been exploiting a zero day vulnerability in a secure file transfer software called MOVEit and has reportedly affected hundreds of businesses in UK and USA. Moveit is a managed file transfer software product … Continue reading
ISO-6: Governance Structure
We are presenting a series of articles in this series to spread the awareness and understanding of ISO 27001, ISO 27701 and PDPCSI. ISO 27001 is a certifiable standard while ISO 27701 is a requirement which can be certified only … Continue reading