The Personal Data Protection Board published the "Guide on the Issues to be Considered in the Processing of Genetic Data".

The Personal Data Protection Authority published the 2nd issue of the KVKK Bulletin with the title "Traces Remaining in the Shadow: The Right to be Forgotten".

The non-profit Identify Theft Resource Center (ITRC) has released its 2023 Business Impact Report. The report includes statistics on the rate of exposure to cyber attacks on small businesses operating in the US. The report was compiled by surveying 551 small business owners.

According to the report, 73 per cent of small business owners in the US reported being exposed to cyber attacks. Employee and customer information were found to be the most common targets of data breaches.

While 85 per cent of business owners participating in the report said they were prepared to respond to a cyber attack, the report noted that this rate was 70 per cent last year.

It also found that good cybersecurity practices, such as multi-factor authentication, mandatory strong passwords and limiting employee access rights, were only being adopted by around 30 per cent of respondents.

The Belgian data protection authority, the APD, has published a 'checklist' to check the compliance of organisations' use of cookies.

While the checklist covers the do's and don'ts of cookie use, it states that there is no need to obtain the consent of the data subject for the use of cookies that are only strictly necessary, while the consent of the data subject must be obtained for other cookies.

Sri Lankan President Ranil Wickremesinghe has appointed the board members of the country's Personal Data Protection Authority.

Following the approval of the Personal Data Protection Act 2022, the members of the board of directors of the authority have also been appointed. In the first phase, the members will be responsible for planning the establishment of the Personal Data Protection Authority, establishing the organisational framework and carrying out recruitment procedures.

The UK's Financial Conduct Authority (FCA) has fined consumer credit rating agency Equifax £11 million for one of the largest cyber security breaches in history.

The FCA announced that Equifax Inc, Equifax's parent company in the US, suffered a major cyber attack in 2017, which resulted in the personal data of 147.9 million US consumers being accessed. It was also revealed that the data of 13.8 million UK consumers was also accessed, as the data was stored on servers in the US.