Is GDPR Compliance Tougher Than HIPAA Compliance?

Data Breach Today

Analysts: GDPR Case in Portugal Offers Lessons for U.S. Healthcare Entities An EU General Data Protection Regulation enforcement action against a hospital in Portugal demonstrates complying with GDPR may be even tougher than complying with HIPAA. Regulatory experts analyze the implications of the case

GDPR Compliance Used as Phishing Lure

Data Breach Today

The campaign enticed victims with subject lines indicating their email security system was not in compliance with the law, according to Area 1 Security Campaign Designed to Steal Credentials A recently uncovered phishing campaign used the European Union's General Data Protection Regulation as a lure to steal login credentials.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

GDPR Two Years On: Compliance Lessons Learned

Data Breach Today

Attorneys Discuss Gaps That Still Need To Be Addressed Now that it's been two years since enforcement of the European Union's General Data Protection Regulation began, three attorneys - Kelsey Finch, Jonathan Armstrong and David Dumont - reflect on the lessons learned so far and the compliance gaps that still need to be addressed.

Addressing Privacy Compliance Challenges

Data Breach Today

Fatima Khan of Okta on Going Beyond GDPR Compliance Compliance with the European Union's General Data Protection Regulation is no guarantee of compliance with other privacy regulations, says Fatima Khan of Okta, who discusses the challenges

Mergers & Acquisitions: How to Handle Your Data feat. Oracle & Onna

Speaker: Lisa Ripley: Director of eDiscovery & Information Governance, Legal Operations at Oracle & Scott McVeigh: Senior Solutions Consultant, Onna

Onna currently integrates with over 30 of todays most popular applications and helps companies with Compliance, Information Governance, eDiscovery, and more. Mergers & Acquisitions: How to Handle your Data Featuring Oracle. WEBINAR REGISTRATION.

Jeanette Manfra on 'Compliance Without Compromise'

Data Breach Today

Google Cloud Director, Formerly of CISA, Discusses Securing Government's Cloud Transformation Jeanette Manfra served under three presidents as one of the top U.S. government cybersecurity leaders.

Australia's New Infosec Regulation: A Compliance Challenge

Data Breach Today

Here's why compliance with the regulation, CPS 234, is challenging Crunch Time as Deadline Approaches for CPS 234 Health insurers and financial institutions across Australia are in the final stretch of preparing for a cybersecurity regulation that looks to put companies on a strong footing amidst an increasingly hostile hacking environment.

GDPR Compliance: Common Misconceptions

Data Breach Today

Attorney Elizabeth Harding clears up confusion about certain provisions of the EU's General Data Protection Regulation, including the issue of when organizations need to obtain a European consumer's consent to process their data

CCPA Compliance: Identity Verification Challenges

Data Breach Today

One key step for preparing to comply with the California Consumer Privacy Act, which goes into effect in January, is determining how best to verify the identity of users, say two leaders of the Sovrin Foundation, who discuss the key issues

The CCPA Is Live for Enforcement—Is Your Website in Compliance?

Hanzo Learning Center

Is your website in compliance? Compliance Regulations Regulatory Compliance Privacy data privacy CCPAThe California Consumer Privacy Act (CCPA)—the most comprehensive personal data privacy legislation anywhere in the United States so far—is officially being enforced.

How the Right eDiscovery Plan Can Benefit Legal, IT & Compliance

Speaker: Speakers Include: Aaron Zander, Head of IT & Workplaces and Eddie Salce, Customer Success Manager at Onna

Data collection is not a departmental island — in fact, it’s crucial that key departments, including IT, legal, and compliance, work together to get the job done right. Unfortunately, this is easier said than done, and teams can often find themselves disjointed and unorganized when it comes to eDiscovery. As the need to easily find the right data across multiple SaaS applications continues to grow, bringing on the right eDiscovery tool can get to the heart of the issue. Join Onna and HackerOne as we discuss how eDiscovery tools can not only enable faster collections but also empower organizations to redefine their cross-collaboration processes.

PSD2: The Compliance and Enforcement Update

Data Breach Today

But where are financial institutions now re: compliance and enforcement? James Rendell of CA Technologies, a Broadcom company, offers insight on PSD2 and EMV 3DS compliance for 2020 The EU's second Payments Services Directive is alive and well.

Regulatory Compliance on the Web: What Your Website Needs

Hanzo Learning Center

Compliance website collection web archive Regulatory Compliance web archivingYour website is an important part of your business. Chances are, you’re investing both time and money to ensure that it attracts customers and satisfies their needs so that they decide to do business with you.

Considerations for Seamless CCPA Compliance

Dark Reading

Three steps to better serve consumers, ensure maximum security, and achieve compliance with the California Consumer Privacy Act

Narrow the Scope of Compliance

Dark Reading

Many organizations are doing more than they need regarding compliance

Best Practices for Modern Records Management and Retention

Speaker: Sean Baird, Director of Product Marketing at Nuxeo

Documents are at the heart of many business processes. Organizations in highly regulated industries are realizing that traditional records management practices are insufficient and ineffective in today’s digital world. Join Sean Baird as he highlights best practices for effective records management and retention. He will explore how digital transformation can counteract the costs, inefficiencies, and end-user considerations that make it difficult to maintain compliance. He will highlight real-world successes and analyze the key strategies and technologies that help organizations find balance.

FAQ: Are We In Compliance?

The Texas Record

If you work for a local government and have interacted with us, there’s a good chance you’ve heard us talk about whether or not you’re “in compliance.” But regardless of the level of fun that can be had in filling out forms, we simply aim to help you understand what it means to be in compliance and how to get there. The responsibility of accepting compliance documents falls to our = Records Management Assistance unit. FAQ Compliance Forms Local Governments

COPPA Compliance

Schneier on Security

Examining COPPA Compliance at Scale ": Abstract: We present a scalable dynamic analysis framework that allows for the automatic evaluation of the privacy behaviors of Android apps. We use our system to analyze mobile apps' compliance with the Children's Online Privacy Protection Act (COPPA), one of the few stringent privacy laws in the U.S. Interesting research: " 'Won't Somebody Think of the Children?'

GDPR Compliance: Should CISO Serve as DPO?

Data Breach Today

Sorting Out the Role of the Data Protection Officer As organizations settle into the third year of enforcement of the EU's General Data Protection Regulation, some are struggling to define and understand the role of a data protection officer as required under the regulation - including whether the CISO should take on the extra role of DPO

Initial CCPA Compliance Costs Could Hit $55 Billion: Study

Data Breach Today

Report Estimates Anticipated Expenses for California Consumer Privacy Act Compliance The California Consumer Privacy Act could cost companies in the state a total of $55 billion for initial compliance expenses, according to a new study prepared for the state attorney general's office.

Banking on Uncertainty - The Future of Financial Crime and Compliance

Data Breach Today

Even before the pandemic set us on the road to a global recession, many banks were struggling to balance the polarising pressures of a changing world and keeping to business as usual

Is your Organization Suffering From Third-Party "Compliance Drift"?

Data Breach Today

Countermeasures to Keep your Compliance On Track and as Originally Designed Third-party vendors accessing your most critical systems and networks can also bring in security incidents along with all those wonderful things they promised in the sales presentation

Compliance Training? What Compliance Training?

Dark Reading

Employees can run. but they can't hide. Or can they

HIPAA Compliance Checklist from Comparitech

IG Guru

This article is a great 101 overview with some extra goodies on how to conduct a HIPAA compliance checklist. The post HIPAA Compliance Checklist from Comparitech appeared first on IG GURU. Business Compliance Education HIPAA IG News Risk News Comparitech

Episode 191: Shifting Compliance Left with Galen Emery of Chef

The Security Ledger

Galen Emery of Chef comes into the Security Ledger studios to talk about how security and compliance are "shifting left" with DEVSECOPS. The post Episode 191: Shifting Compliance Left with Galen Emery of Chef appeared first on The Security Ledger.

Is your organisation ready for the DSP Toolkit compliance deadline?

IT Governance

Each year, certain healthcare organisations must complete a self-assessment via the DSP (Data Security and Protection) Toolkit to demonstrate their data security and information governance compliance. Confirming your compliance. How to achieve DSP Toolkit compliance.

Costco EDI compliance made easy

OpenText Information Management

To be stocked in Costco, all suppliers – … The post Costco EDI compliance made easy appeared first on OpenText Blogs. Technologies Business Network EDI small business EDI Costco EDI Costco EDI specifications CostcoEDI requirements Costco EDI compliance B2B connectivityWhile it’s easy for small business owners to think that digital transformation is primarily an issue for large enterprises, many retailers prefer, or even require, all their suppliers to be EDI savvy.

The Cybersecurity Maturity Model Certification: Are You in Compliance?

Dark Reading

Not only can this framework help companies remain solvent, but it will also protect critical information from getting into the wrong hands

Maintaining Compliance in the Face of Constant Uncertainty: Webinar Recap

Hanzo Learning Center

Corporate compliance is always a hard job—but now that we’re in a global pandemic where laws, regulations, and organizational strategies are shifting daily, it’s become even more challenging.

Facebook's Zuckerberg Pledges Worldwide GDPR Compliance

Data Breach Today

Second Congressional Hearing Probes Privacy Issues At a U.S. House hearing Wednesday, Facebook CEO Mark Zuckerberg said the company would eventually comply worldwide with the European Union's tough privacy law, the General Data Protection Regulation

Third-Party Risk Management: NY DFS Regulation Compliance

Data Breach Today

Ted Augustinos of Locke Lord LLP Addresses the Challenges Defining the scope of third-party risk is challenging, says Ted Augustinos of Locke Lord LLP, who discusses compliance with the New York Department of Financial Services' cybersecurity regulation

Verizon: Companies Failing to Maintain PCI DSS Compliance

Data Breach Today

Many companies around the world that accept card payments are failing to continually maintain compliance with the PCI Data Security Standard, according to the new Verizon 2019 Payment Security Report. Verizon's Rodolphe Simonetti, who contributed to the report, explains the findings

GDPR Compliance: The Role of Vendor Risk Management

Data Breach Today

Attorney Steven Teppler on Holding Vendors Accountable Why is ramping up vendor risk management such a critical component of compliance with the EU's General Data Protection Regulation? Attorney Steven Teppler provides insights

Records Management – the key to information compliance

OpenText Information Management

This procrastination can pose reputational and financial risk … The post Records Management – the key to information compliance appeared first on OpenText Blogs.

Ensuring quality control and compliance

OpenText Information Management

The company is pioneering a new class of medicines to address … The post Ensuring quality control and compliance appeared first on OpenText Blogs. Compliance Enterprise Content Management Information Management Brava D2 Documentum ECM enterprise content management OpenTextHow does an emerging pharmaceutical company manage rapid growth, protect its intellectual property (IP) and comply with strict regulatory requirements?

Compliance: Mississippi State Agencies Have a Long Way to Go

Data Breach Today

Audit Finds Agencies Not Following State's Cybersecurity Law The personal data of Mississippi citizens is susceptible to breaches because many state agencies, universities and other organizations are failing to comply with all the mandates of the state's cybersecurity law, according to a report issued by the Office of the State Auditor

WORM Compliance at Work

InfoGoTo

Where WORM compliance is critical, companies naturally prefer WORM media so that data can live and remain available for many years without risk to its integrity. WORM compliance is the industry’s best investment in the health and accessibility of its most precious information resources. Vendors create WORM-compliant storage technologies (Write-Once, Read-Many) so that organizations can write (save) data to the media indefinitely.

Bringing Outsiders Into Your Compliance Team: Four Considerations

Data Breach Today

Hiring third party investigators to bolster your AML and Compliance team? Here's four things to consider before you pick up the phone. Money Laundering investigators are in high demand: banks and other financial institutions have spent almost two decades hiring more and more of them

Auditing Your Website: Improve Both Marketing and Compliance With These Five Questions

Hanzo Learning Center

Compliance website collection web archive web preservation Regulatory Compliance web archivingYour business’s website has to live up to some pretty high standards.

Sales 52

GDPR Compliance for US Healthcare: What You Need to Know

Data Breach Today

Strict HIPAA compliance is a great preparation for compliance with the European Union's General Data Protection Regulation, which will be enforced starting May 25, according to attorneys Robert Stankey and Adam Greene, who provide compliance insights in an in-depth interview