Is GDPR Compliance Tougher Than HIPAA Compliance?

Data Breach Today

Analysts: GDPR Case in Portugal Offers Lessons for U.S. Healthcare Entities An EU General Data Protection Regulation enforcement action against a hospital in Portugal demonstrates complying with GDPR may be even tougher than complying with HIPAA.

Compliance in a Hybrid Environment

Data Breach Today

Don Closser of Firemon Shares Insights on New Issues in New Era How can organizations deal with compliance issues in a hybrid environment? Don Closser of Firemon discusses compliance in the age of cloud computing

Australia's New Infosec Regulation: A Compliance Challenge

Data Breach Today

Here's why compliance with the regulation, CPS 234, is challenging

GDPR Compliance: Common Misconceptions

Data Breach Today

Attorney Elizabeth Harding clears up confusion about certain provisions of the EU's General Data Protection Regulation, including the issue of when organizations need to obtain a European consumer's consent to process their data

WORM Compliance at Work


Where WORM compliance is critical, companies naturally prefer WORM media so that data can live and remain available for many years without risk to its integrity. WORM compliance is the industry’s best investment in the health and accessibility of its most precious information resources. Vendors create WORM-compliant storage technologies (Write-Once, Read-Many) so that organizations can write (save) data to the media indefinitely.

GDPR Compliance: The Role of Vendor Risk Management

Data Breach Today

Attorney Steven Teppler on Holding Vendors Accountable Why is ramping up vendor risk management such a critical component of compliance with the EU's General Data Protection Regulation?

COPPA Compliance

Schneier on Security

Examining COPPA Compliance at Scale ": Abstract: We present a scalable dynamic analysis framework that allows for the automatic evaluation of the privacy behaviors of Android apps. Interesting research: " 'Won't Somebody Think of the Children?'

The Compliance Mandate is Real as GDPR Enforcement Accelerates


GDPR outlines stringent requirements for data and privacy protection for EU and EEA citizens, but many organizations have struggled to fully understand much less implement compliance programs to meet these requirements.

Simplify and accelerate your compliance projects

IT Governance

Anyone who is working on a compliance project, whether for the EU GDPR (General Data Protection Regulation) or ISO 27001 certification, will understand how time-consuming, complex and lengthy the process can be. Compliance Manager.

GDPR Compliance – Encryption

Perficient Data & Analytics

Cloud Customer Experience Data & Analytics Operations compliance Data Data Breach data encryption Data Privacy General Data Protection Regulation

GDPR compliance checklist for healthcare

IT Governance

With the GDPR enforcement date less than a week away, HCPs should have identified a compliance plan in line with this guidance, which highlights how they will enact the Regulation and by when. Compliance will be mandatory for any organisation that processes EU residents’ personal data.

3 GDPR compliance tips for small businesses

IT Governance

Small businesses have faced this biggest challenge, partly because they lack the resources to overhaul their processes and invest in compliance solutions. Fast-track your compliance project.

Tips 76

GDPR Compliance for US Healthcare: What You Need to Know

Data Breach Today

Strict HIPAA compliance is a great preparation for compliance with the European Union's General Data Protection Regulation, which will be enforced starting May 25, according to attorneys Robert Stankey and Adam Greene, who provide compliance insights in an in-depth interview

Digital transformation escalates compliance challenges

Thales eSecurity

Compliance Takes Center Stage. The adoption of pseudonimization and anonymization solutions, based on encryption and tokenization technologies to protect an enterprise’s most sensitive data, is a key component of any compliance program to reduce an enterprise’s risk.

Webinar Summary: How Everteam Supports CCPA Compliance


Which means that even if you comply with GDPR, you are not automatically in compliance with CCPA. A Path to Compliance. If you think and plan data privacy compliance overall, you’ll be prepared for what else is coming down the pike.

GDPR year two: Assessing data management processes and compliance pitfalls

Information Management Resources

GDPR Data security Data privacy Compliance systemsThis is the perfect time to assess whether your organization is doing the best it can to secure customer data and take a holistic approach to asset lifecycle management.

Where to start with GDPR compliance

IT Governance

The first few steps of your EU General Data Protection Regulation (GDPR) compliance project can be the most confusing. GDPR compliance is not a choice, nor is it just a matter of ticking a few boxes. The Regulation demands that you are able to demonstrate compliance.

Vendor compliance management is more than just a compliance manual

OpenText Information Management

In the retail sector, vendor compliance programs exist to reduce the time and effort it takes get the product to customers. To help reduce “time to customer”, retailers publish vendor compliance manuals with standards and expectations for doing business with them. Note – if you do a web search for “vendor compliance manual” you can … The post Vendor compliance management is more than just a compliance manual appeared first on OpenText Blogs.

How organizations can best demonstrate GDPR compliance

Information Management Resources

GDPR Compliance systems ComplianceThe GDPR doesn’t provide guidance on how to meet its requirements. This was to make it future-proof, as best practices are likely to change over time. But without explicit guidance, many organizations have been stumped.

Procrastinators' Guide to GDPR Compliance

Data Breach Today

Organizations Are Not as Ready as They Might Believe If you're paying attention, you've probably already seen a handful of GDPR-related headlines just today, let alone in the last week or month. But there are two good reasons for the deluge of GDPR discussion right now: It's incredibly important and the time to act is now

The Three Key Indicators of IG Maturity for Healthcare Compliance


Information governance (IG) is essential to secure data management and ensuring healthcare compliance. Focus on these five fundamental components to better ensure healthcare compliance and security: physical safeguards and access controls. ensure healthcare compliance and security by having the proper controls in place. Without a mature IG program, you can’t have effective compliance in healthcare.

Why data privacy professionals need a new approach to compliance

Information Management Resources

Data privacy Data privacy rules Compliance Compliance systemsThere are common requirements that span several of the new privacy laws and data protection regulations. By embracing them, you will be better prepared to help your organization become compliant.

Compliance worries is number one driver of data management initiatives

Information Management Resources

states initiating privacy regulations, organizations are under tremendous pressure to establish and maintain compliance. Compliance Data management Compliance systemsWith the implementation of the General Data Protection Regulation and some U.S.

Poll Shows GDPR Compliance Lacking

Adam Levin

Only 34.5 % of the approximately 500 professionals responsible for compliance to the European Union (EU) General Data Protection Regulation (GDPR) report maintaining practices that are in keeping with the regulation, a recent Deloitte poll.

Email archives often overlooked in GDPR compliance efforts

Information Management Resources

GDPR Compliance Compliance systems Data securityWhether it’s from customers, partners or colleagues, organizations collect hundreds, if not thousands, of emails that contain personal information every day.

BYOE offers Data Security and Compliance in the Cloud

Thales eSecurity

The post BYOE offers Data Security and Compliance in the Cloud appeared first on Data Security Blog | Thales eSecurity. We are seeing more organizations use a ‘lift and shift’ policy, where data is moved to the cloud to satisfy project requirements.

6 steps to implement a successful data compliance strategy

Information Management Resources

Compliance Data governance Compliance systemsWhen it comes to data governance, professionals cannot merely assume what they did in 2018 will be sufficient moving forward. Here are six tips for managing and governing data in 2019.

Tips 89

CISO Thom Langford's Top Tips for GDPR Compliance

Data Breach Today

Tips 130

Understanding PCI compliance auditing

IT Governance

Businesses of all sizes must undergo Payment Card Industry Data Security Standard (PCI DSS) compliance audits to ensure that their customers’ data is protected during credit or debit card transactions and while stored.

How you can demonstrate GDPR compliance

IT Governance

This is because the Regulation requires organisations to demonstrate their compliance. Accountability: the key to compliance. The need to document compliance shouldn’t be new to you. Get help demonstrating your compliance.

Compliance incentives


Accuracy Communications Compliance Compliance (General) Controls Corporation Duty Duty of Care Governance Internal controls Oversight To report“CFPB Decides Not to Fine Citi on Overcharges,” The Wall Street Journal , June 30, 2018 B12. Company failed to lower credit card interest rates for some customers when it should have. It will refund the overcharges and fix its practices, but won’t pay a fine. Citi self-reported, and proposed full restitution.

Introducing Compliance Hotline Investigations with Hanzo

Hanzo Learning Center

Compliance teams and the investigations specialists within them are facing a tremendous logistical and technical challenge. Compliance Investigations online investigation Hanzo Dynamic Capture 2019 machine learning artificial intelligence AI Regulatory Compliance social media investigation

How the ICO measures GDPR compliance

IT Governance

The ICO is almost certainly going to treat the failure to report the incident as a sign that there are further areas of non-compliance. This often begins with a compliance audit, which the ICO uses to set short-term compliance goals that the organisation is expected to meet.


The Role of Social Media and AI in Compliance Investigations

Hanzo Learning Center

Can social media posts and data be used as evidence in a compliance investigation? The answer to both questions is yes, and in a new five-part podcast series with Tom Fox, the Compliance Evangelist, we talk about these topics at length from regulatory, technical, and operational perspectives.

Turn regulatory compliance into competitive advantage

OpenText Information Management

However, there was one particular article that caught my … The post Turn regulatory compliance into competitive advantage appeared first on OpenText Blogs. Compliance Information Management Supply Chain Data data privacy GDPR information security regulations Sustainability

HIPAA Compliance Changes and How to Adjust


While HIPAA compliance was not completely ignored in this case, there was a failure to conduct an accurate and thorough risk analysis of potential vulnerabilities according to HIPAA. This is why it is vital for healthcare organizations to examine any potential HIPAA compliance changes, and ensure that all employees are trained and aware of these changes. However, organizations must enhance their compliance procedures. They can do this by addressing HIPAA compliance.

Securing Containers for GDPR Compliance

Thales eSecurity

No matter where your organization is located, if it processes or controls the personal data of EU residents, it must be in compliance with GDPR, or it will be liable to significant fines and the requirement to inform affected parties of data breaches.

PCI DSS compliance made easier

IT Governance

Complying with the PCI DSS can seem onerous, and compliance requirements depend on the type and volume of transactions your organisation undertakes, which is why we’ve produced a new infographic to help you better understand the process.

Data discovery: the first step to GDPR compliance

OpenText Information Management

We’re now less than five months away from the required compliance date of the EU General Data Protection Regulation (GDPR). Organizations that have EU residents as customers, suppliers or partners are required to be in compliance by May 2018.

Essential guidance on achieving and prioritising GDPR compliance

IT Governance

As the 25 May 2018 deadline for EU General Data Protection Regulation (GDPR) compliance draws near, it is becoming clear that the vast majority of UK businesses will not be ready. Preparing for the GDPR – a compliance checklist. The ability to prove compliance is critical.