European privacy authorities have received almost 65,000 data breach notifications since the EU's new privacy law went into full effect. In addition, regulators in 11 European countries have imposed $63 million in General Data Protection Regulation fines.
This is according to a new European Data Protection Board report that provides the "first overview on the implementation of the GDPR and the roles and means of the national supervisory authorities," or SAs.
The Brussels-based EDPB is an independent European body, created as part of GPDR, which launched on the same day as the start of the regulation's enforcement: May 25, 2018. The EDPB's mandate is to ensure that data protection rules get applied consistently throughout the EU, as well as encourage the EU's data protection authorities to cooperate.
The report draws on data provided by many countries in the European Economic Area, which includes all 28 EU member states as well as Iceland, Liechtenstein and Norway, which also comply with GDPR.
Data in the report covers the first nine months of GDPR has gone into full effect. "The total number of [GDPR] cases reported by SAs from 31 EEA countries is 206,326," the report says.
Such cases include complaints. Under article 77 of GDPR - "Right to complain to a supervisory authority" - Europeans can file complaints with regulators about organizations' data protection practices, as they were also able to do before the enactment of the new regulation.
Such cases also include data breach notifications. Among its provisions, GDPR requires organizations that suffer a breach that may have exposed Europeans' personal information to notify relevant authorities.
"The majority of the cases are related to complaints, notably 94,622, while 64,684 were initiated on the basis of data breach notification by the controller," the EDPB report says. Of these cases, 52 per cent have been closed and one per cent are the subject of lawsuits before national courts.
Europol Releases Latest IOCTA Report
Each year, Europol’s European Cybercrime Centre (EC3) publishes the Internet Organised Crime Threat Assessment (IOCTA), its flagship strategic report on key findings and emerging threats and developments in cybercrime — threats that impact governments, businesses and citizens in the EU.read more
European Cybersecurity Month 2019 Is launched
October marks the kick-off of the European Cybersecurity Month (ECSM), coordinated by the European Union Agency for Cybersecurity (ENISA), the European Commission and supported by the Member States. This campaign will focus on expanding awareness about cybersecurity to citizens across Europe.read more
Remote Desktop Attacks Increasing
The Remote Desktop Protocol (RDP) is being used by cyberattackers to penetrate and extract data from a network before introducing their malicious software to perform internal reconnaissance, according to a new Vectra 2019 Spotlight Report on RDP.read more
LexisNexis Report On Cybercrime Has Shock Figures
LexisNexis Risk Solutions has released at the Digital Identity Summit its Cybercrime Report providing a comprehensive view into the shifting global fraud landscape from January 2019 through June 2019. During this period, the LexisNexis Digital Identity Network recorded 16.4 billion transactions, of which 277 million were human-initiated attacks, a 13 per cent increase over the second half of 2018.read more