The Commission Nationale de l'Informatique et des Libertés (CNIL), France's data protection watchdog, has published a report summarizing data breaches over the last five years.

A Report Focusing on Crucial Elements of Data Breaches

Through a collection of graphs and diagrams, the CNIL addresses several key aspects of data breaches, including:

  • The number of reported breaches
  • Distribution by sector and type of activity
  • Origins of data breaches (external, internal, other)
  • Data breaches by geographical area
  • Time taken to detect a breach

This report offers valuable insights for businesses, providing a broad overview of potential vulnerabilities and areas for enhancement.

Full Report

Seamus Larroque

CDPO / CPIM / ISO 27005 Certified


Discover our latest articles

View All Blog Posts
April 23, 2024
No items found.

iliomad is deligthed to have supported the ICM - Institut du Cancer de Montpellier in their CNIL's authorization process

We are delighted to share that the ICM - Institut du Cancer de Montpellier was authorized by the French Data Protection Authority (CNIL) to conduct APAD-ECO study. The CNIL granted authorization to conduct a medico-economic study on the effects of physical activity in women treated for breast cancer on April, 19th. This groundbreaking study involves combining data from two clinical trials with that of the Caisse nationale de l’Assurance Maladie, covering the period from 2009 to 2022. The study aims to assess the long-term impacts of physical activity in patients who have undergone treatment for breast cancer. We are proud to have contributed to this project by providing the ICM - Institut du Cancer de Montpellier with a compliant Data Protection Impact Assessment (DPIA), a crucial step in obtaining CNIL approval.

March 15, 2024
Clinical Trials
Clinical Trial Sponsor

Navigating Compliance: The Essential Role of Data Protection Representatives in EU and UK Clinical Trials

From a data protection viewpoint, clinical trials encompass a range of tasks that can be daunting for clinical sponsors. The sheer volume of compliance activities required for clinical operations is staggering, including ICF reviews, vendor assessments, protocol reviews and CTIS statements, Data Protection Impact Assessments, Records of Processing, and more. Amidst this whirlwind of obligations, one requirement often emerges as an unexpected challenge for clinical sponsors without a presence in the EU or UK: appointing a data protection representative.‍