What should a US federal data privacy law ideally include?

What do small, privacy-protective companies think about a federal data privacy law for the US? It turns out, they’re all for it. Here are some of their ideas for US data privacy legislation.

Read more

The top six takeaways for corporate data privacy compliance

Here are Labs’ top six takeaways from our data privacy and cybersecurity law series on corporate data privacy compliance. From emerging startups to burgeoning enterprises, these rules help not just with legal liability, but also user trust.

Read more

What is personal information? In legal terms, it depends

What exactly is the “personal information” that companies need to legally protect? Learn which data points organizations need to secure, from Social Security numbers to olfactory, smell-based data (!), to comply with the law.

Read more

The global data privacy roadmap: a question of risk

For any American company taking steps outside the US market, global data privacy compliance is a question of risk versus reward.

Read more

US Congress proposes comprehensive federal data privacy legislation—finally

The United States might be the only country of its size to lack a comprehensive data privacy law protecting its citizens’ online lives. That could change this year.

Read more

The not-so-definitive guide to cybersecurity and data privacy laws

In the first blog for Malwarebytes Labs’ cybersecurity and data privacy law series, we tackle US data privacy compliance from a startup’s perspective. GDPR, COPPA, HIPAA—it’s all here.

Read more

Max Schrems: lawyer, regulator, international man of privacy

Almost 10 years ago, privacy advocate Max Schrems and the European Union began separate efforts to change the way the world thinks about online privacy. Thanks to them, we now have GDPR.

Read more

GDPR causes a flood of new policies

The upcoming GDPR deadline means you’ve probably seen an influx of changed policy announcements in your inbox. Here’s why you might want to pay attention to the changes.

Read more

Building an incident response program: creating the framework

An incident response plan does not need to be overly complicated. However, having a solid and tested framework for the program is key in the ability of an organization to respond to and survive a security incident.

Read more

How to build an incident response program: GDPR guidelines

With the General Data Protection Regulation (GDPR) going into effect this May, many organizations need to have a robust incident response program to ensure the safety of their customers’ and employees’ data. Here’s part one of our guidelines.

Read more

Select your language