Is GDPR Compliance Tougher Than HIPAA Compliance?

Data Breach Today

Analysts: GDPR Case in Portugal Offers Lessons for U.S. Healthcare Entities An EU General Data Protection Regulation enforcement action against a hospital in Portugal demonstrates complying with GDPR may be even tougher than complying with HIPAA.

Compliance in a Hybrid Environment

Data Breach Today

Don Closser of Firemon Shares Insights on New Issues in New Era How can organizations deal with compliance issues in a hybrid environment? Don Closser of Firemon discusses compliance in the age of cloud computing

Australia's New Infosec Regulation: A Compliance Challenge

Data Breach Today

Here's why compliance with the regulation, CPS 234, is challenging

Preservation Plan: Monitoring Compliance


Legal counsel has a duty to monitor custodians’ compliance with the hold instructions. The post Preservation Plan: Monitoring Compliance appeared first on Zapproved. Best Practices compliance ediscovery legal hold preservation

Third-Party Risk Management: NY DFS Regulation Compliance

Data Breach Today

Ted Augustinos of Locke Lord LLP Addresses the Challenges Defining the scope of third-party risk is challenging, says Ted Augustinos of Locke Lord LLP, who discusses compliance with the New York Department of Financial Services' cybersecurity regulation

Ensuring quality control and compliance

OpenText Information Management

The company is pioneering a new class of medicines to address … The post Ensuring quality control and compliance appeared first on OpenText Blogs. Compliance Enterprise Content Management Information Management Brava D2 Documentum ECM enterprise content management OpenText

Compliance Training? What Compliance Training?

Dark Reading

Employees can run. but they can't hide. Or can they

GDPR Compliance: Common Misconceptions

Data Breach Today

Attorney Elizabeth Harding clears up confusion about certain provisions of the EU's General Data Protection Regulation, including the issue of when organizations need to obtain a European consumer's consent to process their data

WORM Compliance at Work


Where WORM compliance is critical, companies naturally prefer WORM media so that data can live and remain available for many years without risk to its integrity. WORM compliance is the industry’s best investment in the health and accessibility of its most precious information resources. Vendors create WORM-compliant storage technologies (Write-Once, Read-Many) so that organizations can write (save) data to the media indefinitely.

COPPA Compliance

Schneier on Security

Examining COPPA Compliance at Scale ": Abstract: We present a scalable dynamic analysis framework that allows for the automatic evaluation of the privacy behaviors of Android apps. Interesting research: " 'Won't Somebody Think of the Children?'

Facebook's Zuckerberg Pledges Worldwide GDPR Compliance

Data Breach Today

Second Congressional Hearing Probes Privacy Issues At a U.S. House hearing Wednesday, Facebook CEO Mark Zuckerberg said the company would eventually comply worldwide with the European Union's tough privacy law, the General Data Protection Regulation

GDPR Compliance: The Role of Vendor Risk Management

Data Breach Today

Attorney Steven Teppler on Holding Vendors Accountable Why is ramping up vendor risk management such a critical component of compliance with the EU's General Data Protection Regulation?

7 steps to highly effective GDPR compliance

IT Governance

If you’re overwhelmed about GDPR compliance or find most implementation advice too technical and complex, don’t worry. IT Governance has created a simple guide to help you understand how to achieve regulatory compliance and avoid disciplinary action.


A Cautionary Tale for GDPR Article 5 Compliance


Takeaways for GDPR Compliance. IG, Regulations & Compliance Privacy & Security data processor Denmark European UnionRecent enforcement actions by data protection authorities in the European Union demonstrate that they’re more than willing to enforce GDPR Article 5.

Simplify and accelerate your compliance projects

IT Governance

Anyone who is working on a compliance project, whether for the EU GDPR (General Data Protection Regulation) or ISO 27001 certification, will understand how time-consuming, complex and lengthy the process can be. Compliance Manager.

GDPR compliance checklist for healthcare

IT Governance

With the GDPR enforcement date less than a week away, HCPs should have identified a compliance plan in line with this guidance, which highlights how they will enact the Regulation and by when. Compliance will be mandatory for any organisation that processes EU residents’ personal data.

Introducing Compliance Hotline Investigations with Hanzo

Hanzo Learning Center

Compliance teams and the investigations specialists within them are facing a tremendous logistical and technical challenge. Compliance Investigations online investigation Hanzo Dynamic Capture 2019 machine learning artificial intelligence AI Regulatory Compliance social media investigation

GDPR Compliance – Encryption

Perficient Data & Analytics

Cloud Customer Experience Data & Analytics Operations compliance Data Data Breach data encryption Data Privacy General Data Protection Regulation

GDPR Compliance for US Healthcare: What You Need to Know

Data Breach Today

Strict HIPAA compliance is a great preparation for compliance with the European Union's General Data Protection Regulation, which will be enforced starting May 25, according to attorneys Robert Stankey and Adam Greene, who provide compliance insights in an in-depth interview

The Role of Social Media and AI in Compliance Investigations

Hanzo Learning Center

Can social media posts and data be used as evidence in a compliance investigation? The answer to both questions is yes, and in a new five-part podcast series with Tom Fox, the Compliance Evangelist, we talk about these topics at length from regulatory, technical, and operational perspectives.

3 GDPR compliance tips for small businesses

IT Governance

Small businesses have faced this biggest challenge, partly because they lack the resources to overhaul their processes and invest in compliance solutions. Fast-track your compliance project.

Tips 81

Where to start with GDPR compliance

IT Governance

The first few steps of your EU General Data Protection Regulation (GDPR) compliance project can be the most confusing. GDPR compliance is not a choice, nor is it just a matter of ticking a few boxes. The Regulation demands that you are able to demonstrate compliance.

Vendor compliance management is more than just a compliance manual

OpenText Information Management

In the retail sector, vendor compliance programs exist to reduce the time and effort it takes get the product to customers. To help reduce “time to customer”, retailers publish vendor compliance manuals with standards and expectations for doing business with them. Note – if you do a web search for “vendor compliance manual” you can … The post Vendor compliance management is more than just a compliance manual appeared first on OpenText Blogs.

Compliance Meets Social APIs

Hanzo Learning Center

The Surprising Irony at the Intersection of Compliance and Social APIs. Compliance article

Digital transformation escalates compliance challenges

Thales eSecurity

Compliance Takes Center Stage. The adoption of pseudonimization and anonymization solutions, based on encryption and tokenization technologies to protect an enterprise’s most sensitive data, is a key component of any compliance program to reduce an enterprise’s risk.

Procrastinators' Guide to GDPR Compliance

Data Breach Today

Organizations Are Not as Ready as They Might Believe If you're paying attention, you've probably already seen a handful of GDPR-related headlines just today, let alone in the last week or month. But there are two good reasons for the deluge of GDPR discussion right now: It's incredibly important and the time to act is now

Web Archiving for FINRA Compliance

Hanzo Learning Center

But haphazardly taking screenshots or downloading social media content through application program interfaces (APIs) won’t meet your compliance goals. ComplianceDo your web archives have inTegrity?

MY TAKE: Coping with security risks, compliance issues spun up by ‘digital transformation’

The Last Watchdog

On one hand, threat actors have already begun exploiting fresh attack vectors, borne of this rising complexity, and, on the other, government authorities and industry standards bodies are insisting on compliance with increasingly cumbersome data-handling security rules. In this milieu, there’s a “large question about the integrity, compliance and security” of the applications that are being developed on the fly, as well as the cloud architecture they reside on, Byron says.

The Three Key Indicators of IG Maturity for Healthcare Compliance


Information governance (IG) is essential to secure data management and ensuring healthcare compliance. Focus on these five fundamental components to better ensure healthcare compliance and security: physical safeguards and access controls. ensure healthcare compliance and security by having the proper controls in place. Without a mature IG program, you can’t have effective compliance in healthcare.

Webinar Summary: How Everteam Supports CCPA Compliance


Which means that even if you comply with GDPR, you are not automatically in compliance with CCPA. A Path to Compliance. If you think and plan data privacy compliance overall, you’ll be prepared for what else is coming down the pike.

The Compliance Implications of Operation Varsity Blues: A Conversation with AP Capaldo

Hanzo Learning Center

On the afternoon of Monday, April 8th, 2019, I spoke with AP Capaldo , a global compliance attorney and director of E&C at a Fortune 100 technology company, about the compliance implications of Operation Varsity Blues.

Introducing Hanzo Alerts for Compliance and Legal Teams

Hanzo Learning Center

Despite the best efforts of a compliance team to review and approve every piece of content before it’s published online, and ensure that marketers are trained on specific policies and regulations, mistakes happen.

Legislative Changes for Local Government Records Management Compliance

The Texas Record

Along with the re-authorization of our agency, some changes were made concerning local government records management compliance. This article will explain the most important changes and outline action items some local governments may need to take to ensure compliance.

The Compliance Mandate is Real as GDPR Enforcement Accelerates


GDPR outlines stringent requirements for data and privacy protection for EU and EEA citizens, but many organizations have struggled to fully understand much less implement compliance programs to meet these requirements.

Compliance-driven Work Stress

Hanzo Learning Center

Everywhere you turn these days in the compliance world, someone is talking about work stress. Compliance articleWe are all over-worked! We're all too stressed! The sky is indeed falling!

BYOE offers Data Security and Compliance in the Cloud

Thales eSecurity

The post BYOE offers Data Security and Compliance in the Cloud appeared first on Data Security Blog | Thales eSecurity. We are seeing more organizations use a ‘lift and shift’ policy, where data is moved to the cloud to satisfy project requirements.

CISO Thom Langford's Top Tips for GDPR Compliance

Data Breach Today

Tips 130

Accelerating unstructured data compliance with a new approach: sampling

IBM Big Data Hub

The initial goal of sampling is to assess where the highest compliance risk areas are within your enterprise. Read blog to learn how IBM StoredIQ InstaScan accelerates this

Securing Containers for GDPR Compliance

Thales eSecurity

No matter where your organization is located, if it processes or controls the personal data of EU residents, it must be in compliance with GDPR, or it will be liable to significant fines and the requirement to inform affected parties of data breaches.

Understanding PCI compliance auditing

IT Governance

Businesses of all sizes must undergo Payment Card Industry Data Security Standard (PCI DSS) compliance audits to ensure that their customers’ data is protected during credit or debit card transactions and while stored.