Top Senate Democrats unveil new online privacy bill, promising tough penalties for data abuse

Google | November 27, 2019

Senate Democrats on Tuesday, Nov. 26, proposed tough new punishments for Facebook, Google and other Silicon Valley tech giants that mishandle their users' personal data, unveiling a sweeping new online privacy bill that aims to provide people their "Miranda rights" for the digital age. The effort, led by Sen. Maria Cantwell, a Washington state Democrat who previously worked in the tech industry, marks a significant attempt by Congress to write the country's first-ever national consumer-privacy law after years of false starts - and massive data scandals that illustrated the costs of the U.S. government's inaction. Cantwell's bill, dubbed the Consumer Online Privacy Rights Act, would allow people to see the personal information that is amassed about them and block it from being sold. The measure also promises steep fines and opens the door for web users to bring lawsuits, if social media sites, retailers and others engage in harmful practices and break the rules.

Spotlight

Spotlight

Related News

GOVERNMENT FINANCE

OneTrust Introduces AI Governance Solution to Inventory, Assess, and Monitor AI Risk

PR Newswire | May 18, 2023

OneTrust, the market-defining leader for trust intelligence, introduces OneTrust Artificial Intelligence (AI) Governance, a comprehensive solution designed to help organizations inventory, assess, and monitor the wide range of risks associated with AI. As organizations use AI and machine learning (ML) to process large amounts of data and drive innovation, AI Governance provides visibility and control over data used and risks generated by AI models. According to Gartner, "Success and scaling of AI projects require leaders to address strategies and methods related to fairness, transparency, explainability, reliability, privacy, and security."1 As the use of AI and machine learning becomes more widespread, it is essential for organizations to address the privacy, ethical, and societal risks associated with these technologies. With AI Governance, organizations can embed data ethics, privacy, and security practices by default into the use of AI across their business. "Responsible AI is not an option, but a necessity in today's business landscape," said Blake Brannon, Chief Product and Strategy Officer at OneTrust. "AI Governance provides a comprehensive solution for managing the unique risks associated with AI, including privacy, ethical, compliance, and operational risks. Using our product, organizations can automate record keeping and risk management, ensuring transparency, fairness, and accountability in their AI systems. By implementing responsible AI practices, companies can build trust with customers, regulators, and society at large, and position their business for success in the AI-driven future." With AI Governance, compliance teams and data scientists can better understand data use and classification, evaluate the risks, and demonstrate compliance with emerging global requirements to ensure AI is used ethically and responsibly: Inventory: Organizations can centrally view and manage AI projects, models, and data sets both internally developed and sourced from third parties. AI Governance establishes relationships across data sets and AI models to trace the path of data from its origin. Assess risk: Users can assess AI projects against global laws and frameworks, including the NIST AI Risk Management Framework (RMF), OECD AI Principles, and more. AI Governance, along with OneTrust Data Discovery & Governance, connects to structured and unstructured sources of data to automatically discover and classify sensitive and personal data that may drive algorithmic bias or privacy risk. Regulatory intelligence helps automate compliance workflows and risk management, and automatically generate required control mitigations and compliance documentation such as conformity assessments. Monitor: AI Governance integrates with existing model registries and MLOps tooling to detect AI model use and changes, and sync with a centralized inventory. Teams can continually evaluate models and training data for drift, bias, fairness, accuracy, and quality with in-app alerts. Only OneTrust provides the powerful combination of privacy and risk management solutions, built-in regulatory guidance, data discovery and classification, and AI risk management framework templates to manage the unique and broad-reaching risks posed by AI systems. The solution leverages OneTrust's deep experience in data privacy and governance, and robust tools for managing risk and record keeping for audit, compliance, and proactive trust management. OneTrust AI Governance will be available to select, qualifying customers through the AI Governance Early Access Program (EAP). This program offers an opportunity to get an early look at the solution and provide feedback to shape its development. About OneTrust OneTrust is the trust intelligence cloud platform organizations use to transform trust from an abstract concept into a measurable competitive advantage. Organizations globally use OneTrust to enable the responsible use of data while protecting the privacy rights of individuals, implement and report on their cyber security program, make their social impact goals a reality, and create a speak up culture of trust. Over 14,000 customers use OneTrust's technology, including half of the Global 2,000. OneTrust currently ranks #24 on the Forbes Cloud 100 list of top private cloud companies in the world and employs over 2,000 people in regions across North America, South America, Asia, Europe, and Australia.

Read More

EMERGING TECHNOLOGY, CYBERSECURITY

Armis Achieves U.S. Department of Defense Impact Level 4 Authorization

Prnewswire | April 03, 2023

Armis, the leading asset visibility and security company, today announced that it has achieved U.S. DoD Defense Information Systems Agency (DISA) authorization to operate (ATO) at Impact Level 4 (IL4). This authorization signifies that Armis has met the DoD's strict requirements for the government's sensitive Controlled Unclassified Information (CUI). DoD customers can now take advantage of Armis's secure, agentless, Unified Asset Management for IT, OT and IoT devices. The IL4 ATO is part of continued public sector momentum for Armis, following the achievement of a FedRAMP Moderate Authority to Operate (ATO) in January of this year. These dual votes of confidence mean that any civilian and DoD agency can now take advantage of the most comprehensive AVM platform available. "There is no more important group of organizations that needs complete situational awareness of their network environment than those who defend our nation," said Brian Gumbel, President of Armis. "Our platform discovers, aggregates and correlates all asset information into a single source of truth and identifies vulnerabilities to mitigate risks. Armis will now be able to help DoD meet the challenges of a perimeter-less world and an ever-evolving cyber threat landscape." Many public sector organizations experience a "visibility gap" where IT and security leaders can't see all the vulnerable assets within their environment. You can't protect what you can't see, and the DoD can no longer depend on conventional perimeter-based or identity-based defenses alone to protect critical systems and government data. Accelerating migration to the cloud, the convergence of IT/OT/IoT and increases in near-peer adversary capabilities have changed how the DoD must approach cybersecurity. Armis automatically generates a complete inventory of devices in your enterprise environment - on or off the network. The breadth, depth, and accuracy of the Armis asset inventory and device discovery exceeds that of other products available today. Agencies say they see 50% to 70% more connected devices using Armis technology, giving them the situational awareness they need to protect their networks. Many security frameworks, such as the NIST SP 1800-35A on implementing a Zero Trust Framework, start with inventory. Being aware that assets exist is a prerequisite for cybersecurity but isn't enough. DoD IT leaders need to know whether devices are risky. After discovering and classifying each asset, Armis calculates its risk score. This risk score helps security teams take proactive steps to reduce their attack surface and meet compliance and regulatory frameworks that require agencies to identify and prioritize vulnerabilities. The score is based on multiple risk factors including software vulnerabilities, known attack patterns, connection security, and the observed behavior of each device. "This new IL4 authorization is testament to Armis's commitment to supporting the U.S. Federal government. We are honored to be a trusted partner in helping agencies adjust to an increasingly dangerous cyber environment," continued Gumbel. Armis helps to see and secure some of the largest U.S states and government departments in the world protecting federal, state and local entities from cyber criminals, rogue nations and other bad actors. It also secures critical infrastructure at some of the largest airports, ports and healthcare delivery organizations around the world.Companies trust Armis' real-time and continuous protection to see with full context all managed, unmanaged assets across IT, cloud, IoT devices, medical devices (IoMT), operational technology (OT), industrial control systems (ICS) and 5G. About Armis Armis, the leading asset visibility and security company, provides the industry's first unified asset intelligence platform designed to address the new extended attack surface that connected assets create. Fortune 100 companies trust our real-time and continuous protection to see with full context all managed, unmanaged assets across IT, cloud, IoT devices, medical devices (IoMT), operational technology (OT), industrial control systems (ICS), and 5G. Armis provides passive cyber asset management, risk management, and automated enforcement. Armis is a privately held company and headquartered in California.

Read More

EMERGING TECHNOLOGY

Inmarsat Government's GX LITE wins Government Mobile Innovation Award by MSUA

Inmarsat Government | March 16, 2023

On March 15, 2023, Inmarsat Government, one of the most advanced global mobile satellite communication service providers, announced that its GX LITE land user terminal has won the 2023 Satellite Mobile Innovation Award from the Mobile Satellite User Association (MSUA). The terminal won the Government Mobile Innovation category, marking the seventh time in the past eight years that Inmarsat has been awarded this annual award. The new GX LITE terminal offers reliable and safe broadband connectivity for tactical military and non-military users globally. The terminal is provided through Inmarsat's Global Xpress (GX) Ka-band network. Built for land users with 'grab and go' applications, the terminal's global access, portability, and secure operations come at an affordable price. GX LITE was developed with Get SAT, Inmarsat Government's value-added manufacturing partner. Get SAT innovates lightweight satellite communication for airborne, ground and maritime applications. The terminal is simple to install and operate, requiring no user configuration to establish a network connection anywhere. In addition, it has a front-panel interface and a Wi-Fi capability that the user can enable or disable. GX LITE utilizes efficient, flat-panel antenna technologies and supports Committed Information Rate (CIR) and unique Maximum Information Rate (MIR) users globally. It is lightweight (21.4 lbs.), thin (16.6" W, 11.5" L and 3.3" D) and effortlessly transportable with a carrying case that fits in the overhead compartment of a commercial aircraft. In addition, the terminal has low power consumption and can operate for up to three hours on batteries alone. About Inmarsat Government Inmarsat Government is one of the leading mission-critical telecommunications service provider, offers reliable, secure and affordable connectivity to the U.S. intelligence, defense, public safety, homeland security, and civilian agencies. The company was established in 1979 and is implementing solutions considering government users' needs. It offers flexible capabilities to complement government satellite resources anywhere, anytime. Utilizing an industry-leading scalable multiband network infrastructure, Inmarsat Government provides managed network services and end-to-end communication solutions to help users on land, at sea and in the air, even in the world's most remote regions.

Read More