Is GDPR Compliance Tougher Than HIPAA Compliance?

Data Breach Today

Analysts: GDPR Case in Portugal Offers Lessons for U.S. Healthcare Entities An EU General Data Protection Regulation enforcement action against a hospital in Portugal demonstrates complying with GDPR may be even tougher than complying with HIPAA.

Australia's New Infosec Regulation: A Compliance Challenge

Data Breach Today

Here's why compliance with the regulation, CPS 234, is challenging

GDPR Compliance: Common Misconceptions

Data Breach Today

Attorney Elizabeth Harding clears up confusion about certain provisions of the EU's General Data Protection Regulation, including the issue of when organizations need to obtain a European consumer's consent to process their data

Introducing Compliance Hotline Investigations with Hanzo

Hanzo Learning Center

Compliance teams and the investigations specialists within them are facing a tremendous logistical and technical challenge. Compliance Investigations online investigation Hanzo Dynamic Capture 2019 machine learning artificial intelligence AI Regulatory Compliance social media investigation

GDPR Compliance: The Role of Vendor Risk Management

Data Breach Today

Attorney Steven Teppler on Holding Vendors Accountable Why is ramping up vendor risk management such a critical component of compliance with the EU's General Data Protection Regulation?

WORM Compliance at Work


Where WORM compliance is critical, companies naturally prefer WORM media so that data can live and remain available for many years without risk to its integrity. WORM compliance is the industry’s best investment in the health and accessibility of its most precious information resources. Vendors create WORM-compliant storage technologies (Write-Once, Read-Many) so that organizations can write (save) data to the media indefinitely.

COPPA Compliance

Schneier on Security

Examining COPPA Compliance at Scale ": Abstract: We present a scalable dynamic analysis framework that allows for the automatic evaluation of the privacy behaviors of Android apps. Interesting research: " 'Won't Somebody Think of the Children?'

Facebook's Zuckerberg Pledges Worldwide GDPR Compliance

Data Breach Today

Second Congressional Hearing Probes Privacy Issues At a U.S. House hearing Wednesday, Facebook CEO Mark Zuckerberg said the company would eventually comply worldwide with the European Union's tough privacy law, the General Data Protection Regulation

BYOE offers Data Security and Compliance in the Cloud

Thales eSecurity

The post BYOE offers Data Security and Compliance in the Cloud appeared first on Data Security Blog | Thales eSecurity. We are seeing more organizations use a ‘lift and shift’ policy, where data is moved to the cloud to satisfy project requirements.

Introducing Hanzo Alerts for Compliance and Legal Teams

Hanzo Learning Center

Despite the best efforts of a compliance team to review and approve every piece of content before it’s published online, and ensure that marketers are trained on specific policies and regulations, mistakes happen.

Simplify and accelerate your compliance projects

IT Governance

Anyone who is working on a compliance project, whether for the EU GDPR (General Data Protection Regulation) or ISO 27001 certification, will understand how time-consuming, complex and lengthy the process can be. Compliance Manager.

Digital transformation escalates compliance challenges

Thales eSecurity

Compliance Takes Center Stage. The adoption of pseudonimization and anonymization solutions, based on encryption and tokenization technologies to protect an enterprise’s most sensitive data, is a key component of any compliance program to reduce an enterprise’s risk.

The Three Key Indicators of IG Maturity for Healthcare Compliance


Information governance (IG) is essential to secure data management and ensuring healthcare compliance. Focus on these five fundamental components to better ensure healthcare compliance and security: physical safeguards and access controls. ensure healthcare compliance and security by having the proper controls in place. Without a mature IG program, you can’t have effective compliance in healthcare.

GDPR Compliance – Encryption

Perficient Data & Analytics

Cloud Customer Experience Data & Analytics Operations compliance Data Data Breach data encryption Data Privacy General Data Protection Regulation

GDPR compliance checklist for healthcare

IT Governance

With the GDPR enforcement date less than a week away, HCPs should have identified a compliance plan in line with this guidance, which highlights how they will enact the Regulation and by when. Compliance will be mandatory for any organisation that processes EU residents’ personal data.

The Compliance Implications of Operation Varsity Blues: A Conversation with AP Capaldo

Hanzo Learning Center

On the afternoon of Monday, April 8th, 2019, I spoke with AP Capaldo , a global compliance attorney and director of E&C at a Fortune 100 technology company, about the compliance implications of Operation Varsity Blues.

GDPR Compliance for US Healthcare: What You Need to Know

Data Breach Today

Strict HIPAA compliance is a great preparation for compliance with the European Union's General Data Protection Regulation, which will be enforced starting May 25, according to attorneys Robert Stankey and Adam Greene, who provide compliance insights in an in-depth interview

Where to start with GDPR compliance

IT Governance

The first few steps of your EU General Data Protection Regulation (GDPR) compliance project can be the most confusing. GDPR compliance is not a choice, nor is it just a matter of ticking a few boxes. The Regulation demands that you are able to demonstrate compliance.

How organizations can best demonstrate GDPR compliance

Information Management Resources

GDPR Compliance systems ComplianceThe GDPR doesn’t provide guidance on how to meet its requirements. This was to make it future-proof, as best practices are likely to change over time. But without explicit guidance, many organizations have been stumped.

An Interview with Louis Sapirman, the Compliance Innovator

Hanzo Learning Center

Throughout each year, Hanzo’s "Profiles of Excellence" series interviews industry leaders in compliance, eDiscovery, investigations, and risk management to learn about their experiences in the field and give them a platform to share advice with our community.

Web Archiving for FINRA Compliance

Hanzo Learning Center

But haphazardly taking screenshots or downloading social media content through application program interfaces (APIs) won’t meet your compliance goals. ComplianceDo your web archives have inTegrity?

Securing Containers for GDPR Compliance

Thales eSecurity

No matter where your organization is located, if it processes or controls the personal data of EU residents, it must be in compliance with GDPR, or it will be liable to significant fines and the requirement to inform affected parties of data breaches.

Compliance Meets Social APIs

Hanzo Learning Center

The Surprising Irony at the Intersection of Compliance and Social APIs. Compliance article

Procrastinators' Guide to GDPR Compliance

Data Breach Today

Organizations Are Not as Ready as They Might Believe If you're paying attention, you've probably already seen a handful of GDPR-related headlines just today, let alone in the last week or month. But there are two good reasons for the deluge of GDPR discussion right now: It's incredibly important and the time to act is now

Why data privacy professionals need a new approach to compliance

Information Management Resources

Data privacy Data privacy rules Compliance Compliance systemsThere are common requirements that span several of the new privacy laws and data protection regulations. By embracing them, you will be better prepared to help your organization become compliant.

Compliance worries is number one driver of data management initiatives

Information Management Resources

states initiating privacy regulations, organizations are under tremendous pressure to establish and maintain compliance. Compliance Data management Compliance systemsWith the implementation of the General Data Protection Regulation and some U.S.

Vendor compliance management is more than just a compliance manual

OpenText Information Management

In the retail sector, vendor compliance programs exist to reduce the time and effort it takes get the product to customers. To help reduce “time to customer”, retailers publish vendor compliance manuals with standards and expectations for doing business with them. Note – if you do a web search for “vendor compliance manual” you can … The post Vendor compliance management is more than just a compliance manual appeared first on OpenText Blogs.

Why Adobe Experience Manager Creates Unique Web Archiving Challenges For Compliance

Hanzo Learning Center

Compliance web archive Hanzo Dynamic Capture 2019 Regulatory Compliance web archiving Adobe Personalization adobe experience manager AEMIs your organization using Adobe Experience Manager (AEM) to create user-level individualized website experiences?

6 steps to implement a successful data compliance strategy

Information Management Resources

Compliance Data governance Compliance systemsWhen it comes to data governance, professionals cannot merely assume what they did in 2018 will be sufficient moving forward. Here are six tips for managing and governing data in 2019.

Tips 89

How you can demonstrate GDPR compliance

IT Governance

This is because the Regulation requires organisations to demonstrate their compliance. Accountability: the key to compliance. The need to document compliance shouldn’t be new to you. Get help demonstrating your compliance.

Email archives often overlooked in GDPR compliance efforts

Information Management Resources

GDPR Compliance Compliance systems Data securityWhether it’s from customers, partners or colleagues, organizations collect hundreds, if not thousands, of emails that contain personal information every day.

A Guide to CCPA Compliance and How the California Consumer Privacy Act Compares to GDPR


California Consumer Privacy Act (CCPA) compliance shares many of the same requirements in the European Unions’ General Data Protection Regulation (GDPR). Data governance , thankfully, provides a framework for compliance with either or both – in addition to other regulatory mandates your organization may be subject to. CCPA Compliance Requirements vs. GDPR FAQ. No, CCPA compliance only applies to for-profit organizations. What about fines for CCPA non-compliance? .

Compliance-driven Work Stress

Hanzo Learning Center

Everywhere you turn these days in the compliance world, someone is talking about work stress. Compliance articleWe are all over-worked! We're all too stressed! The sky is indeed falling!

CISO Thom Langford's Top Tips for GDPR Compliance

Data Breach Today

Tips 130

How the ICO measures GDPR compliance

IT Governance

The ICO is almost certainly going to treat the failure to report the incident as a sign that there are further areas of non-compliance. This often begins with a compliance audit, which the ICO uses to set short-term compliance goals that the organisation is expected to meet.


Evaluating Web Archiving Technology Providers: 4 Questions Compliance Teams Need To Consider

Hanzo Learning Center

Compliance FINRA SEC web archive Hanzo Dynamic Archive Hanzo Dynamic Capture SEC 17a-4 Regulatory Compliance ISOHow confident are you in your web archive’s fidelity?

Compliance incentives


Accuracy Communications Compliance Compliance (General) Controls Corporation Duty Duty of Care Governance Internal controls Oversight To report“CFPB Decides Not to Fine Citi on Overcharges,” The Wall Street Journal , June 30, 2018 B12. Company failed to lower credit card interest rates for some customers when it should have. It will refund the overcharges and fix its practices, but won’t pay a fine. Citi self-reported, and proposed full restitution.

Understanding PCI compliance auditing

IT Governance

Businesses of all sizes must undergo Payment Card Industry Data Security Standard (PCI DSS) compliance audits to ensure that their customers’ data is protected during credit or debit card transactions and while stored.

5 Things To Know As You Prepare For A Compliance Audit

IG Guru

From Reciprocity Labs For many cloud service providers out there, compliance audit is very important, yet extremely painful like a root canal. The post 5 Things To Know As You Prepare For A Compliance Audit appeared first on IG GURU.

HIPAA Compliance Changes and How to Adjust


While HIPAA compliance was not completely ignored in this case, there was a failure to conduct an accurate and thorough risk analysis of potential vulnerabilities according to HIPAA. This is why it is vital for healthcare organizations to examine any potential HIPAA compliance changes, and ensure that all employees are trained and aware of these changes. However, organizations must enhance their compliance procedures. They can do this by addressing HIPAA compliance.