Is GDPR Compliance Tougher Than HIPAA Compliance?

Data Breach Today

Analysts: GDPR Case in Portugal Offers Lessons for U.S. Healthcare Entities An EU General Data Protection Regulation enforcement action against a hospital in Portugal demonstrates complying with GDPR may be even tougher than complying with HIPAA.

Addressing Privacy Compliance Challenges

Data Breach Today

Fatima Khan of Okta on Going Beyond GDPR Compliance Compliance with the European Union's General Data Protection Regulation is no guarantee of compliance with other privacy regulations, says Fatima Khan of Okta, who discusses the challenges

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Compliance in a Hybrid Environment

Data Breach Today

Don Closser of Firemon Shares Insights on New Issues in New Era How can organizations deal with compliance issues in a hybrid environment? Don Closser of Firemon discusses compliance in the age of cloud computing

Considerations for Seamless CCPA Compliance

Dark Reading

Three steps to better serve consumers, ensure maximum security, and achieve compliance with the California Consumer Privacy Act

Narrow the Scope of Compliance

Dark Reading

Many organizations are doing more than they need regarding compliance

FAQ: Are We In Compliance?

The Texas Record

If you work for a local government and have interacted with us, there’s a good chance you’ve heard us talk about whether or not you’re “in compliance.” The responsibility of accepting compliance documents falls to our = Records Management Assistance unit. The paperwork polka c.1890.

GDPR Compliance: Should CISO Serve as DPO?

Data Breach Today

Sorting Out the Role of the Data Protection Officer As organizations settle into the third year of enforcement of the EU's General Data Protection Regulation, some are struggling to define and understand the role of a data protection officer as required under the regulation - including whether the CISO should take on the extra role of DPO.

HIPAA Compliance Checklist from Comparitech

IG Guru

This article is a great 101 overview with some extra goodies on how to conduct a HIPAA compliance checklist. The post HIPAA Compliance Checklist from Comparitech appeared first on IG GURU. Business Compliance Education HIPAA IG News Risk News Comparitech

Is your Organization Suffering From Third-Party "Compliance Drift"?

Data Breach Today

Countermeasures to Keep your Compliance On Track and as Originally Designed Third-party vendors accessing your most critical systems and networks can also bring in security incidents along with all those wonderful things they promised in the sales presentation

Initial CCPA Compliance Costs Could Hit $55 Billion: Study

Data Breach Today

Report Estimates Anticipated Expenses for California Consumer Privacy Act Compliance The California Consumer Privacy Act could cost companies in the state a total of $55 billion for initial compliance expenses, according to a new study prepared for the state attorney general's office.

Compliance Training? What Compliance Training?

Dark Reading

Employees can run. but they can't hide. Or can they

CCPA Compliance: Identity Verification Challenges

Data Breach Today

One key step for preparing to comply with the California Consumer Privacy Act, which goes into effect in January, is determining how best to verify the identity of users, say two leaders of the Sovrin Foundation, who discuss the key issues

PSD2: The Compliance and Enforcement Update

Data Breach Today

But where are financial institutions now re: compliance and enforcement? James Rendell of CA Technologies, a Broadcom company, offers insight on PSD2 and EMV 3DS compliance for 2020 The EU's second Payments Services Directive is alive and well.

Costco EDI compliance made easy

OpenText Information Management

To be stocked in Costco, all suppliers – … The post Costco EDI compliance made easy appeared first on OpenText Blogs. Technologies Business Network EDI small business EDI Costco EDI Costco EDI specifications CostcoEDI requirements Costco EDI compliance B2B connectivity

COPPA Compliance

Schneier on Security

Examining COPPA Compliance at Scale ": Abstract: We present a scalable dynamic analysis framework that allows for the automatic evaluation of the privacy behaviors of Android apps. Interesting research: " 'Won't Somebody Think of the Children?'

GDPR Compliance: Common Misconceptions

Data Breach Today

Attorney Elizabeth Harding clears up confusion about certain provisions of the EU's General Data Protection Regulation, including the issue of when organizations need to obtain a European consumer's consent to process their data

WORM Compliance at Work

InfoGoTo

Where WORM compliance is critical, companies naturally prefer WORM media so that data can live and remain available for many years without risk to its integrity. WORM compliance is the industry’s best investment in the health and accessibility of its most precious information resources. Vendors create WORM-compliant storage technologies (Write-Once, Read-Many) so that organizations can write (save) data to the media indefinitely.

Third-Party Risk Management: NY DFS Regulation Compliance

Data Breach Today

Ted Augustinos of Locke Lord LLP Addresses the Challenges Defining the scope of third-party risk is challenging, says Ted Augustinos of Locke Lord LLP, who discusses compliance with the New York Department of Financial Services' cybersecurity regulation

Preservation Plan: Monitoring Compliance

Zapproved

Legal counsel has a duty to monitor custodians’ compliance with the hold instructions. The post Preservation Plan: Monitoring Compliance appeared first on Zapproved. Best Practices compliance ediscovery legal hold preservation

Facebook's Zuckerberg Pledges Worldwide GDPR Compliance

Data Breach Today

Second Congressional Hearing Probes Privacy Issues At a U.S. House hearing Wednesday, Facebook CEO Mark Zuckerberg said the company would eventually comply worldwide with the European Union's tough privacy law, the General Data Protection Regulation

Compliance: Mississippi State Agencies Have a Long Way to Go

Data Breach Today

Audit Finds Agencies Not Following State's Cybersecurity Law The personal data of Mississippi citizens is susceptible to breaches because many state agencies, universities and other organizations are failing to comply with all the mandates of the state's cybersecurity law, according to a report issued by the Office of the State Auditor.

Ensuring quality control and compliance

OpenText Information Management

The company is pioneering a new class of medicines to address … The post Ensuring quality control and compliance appeared first on OpenText Blogs. Compliance Enterprise Content Management Information Management Brava D2 Documentum ECM enterprise content management OpenText

GDPR Compliance: The Role of Vendor Risk Management

Data Breach Today

Attorney Steven Teppler on Holding Vendors Accountable Why is ramping up vendor risk management such a critical component of compliance with the EU's General Data Protection Regulation?

Bringing Outsiders Into Your Compliance Team: Four Considerations

Data Breach Today

Hiring third party investigators to bolster your AML and Compliance team? Here's four things to consider before you pick up the phone. Money Laundering investigators are in high demand: banks and other financial institutions have spent almost two decades hiring more and more of them

Verizon: Companies Failing to Maintain PCI DSS Compliance

Data Breach Today

Many companies around the world that accept card payments are failing to continually maintain compliance with the PCI Data Security Standard, according to the new Verizon 2019 Payment Security Report. Verizon's Rodolphe Simonetti, who contributed to the report, explains the findings

The Need for Compliance in a Post-COVID-19 World

Dark Reading

With the current upheaval, business leaders may lose focus and push off implementing security measures, managing risk, and keeping up with compliance requirements. That's a big mistake

Balancing Ediscovery with Privacy Compliance

Zapproved

A webinar featuring pragmatic steps that legal counsel can take to manage global privacy, discussed industry best practices for managing requests, and dove into real world strategies to strike the right balance between ediscovery and compliance teams.

GDPR Compliance Site Leaks Git Data, Passwords

Threatpost

Researchers discovered a.git folder exposing passwords and more for a website that gives advice to organizations about complying with the General Data Protection Regulation (GDPR) rules. Privacy Web Security.git directory data exposure data leak Data Privacy GDPR gdpr.eu

Using Information Governance with a Privacy Compliance Plan as the Fulcrum for Data Privacy and Continuous Compliance

Information Governance Perspectives

In May of 2020 I was honored to speak at the MERv conference with John Frost of Box on the topic of Using Information Governance with a Privacy Compliance Plan as the Fulcrum for Data Privacy and Continuous Compliance. CCPA Privacy Compliance Framework COVID-19 MER Conference 2020

GDPR Compliance — The Fines Have Begun!

InfoGoTo

GDPR compliance has been a major talking point among information governance professionals for quite some time. While this was the first such fine for GDPR compliance failures in France, it is not unusual. Compliance with the regulation is not a difficult task.

GDPR Compliance for US Healthcare: What You Need to Know

Data Breach Today

Strict HIPAA compliance is a great preparation for compliance with the European Union's General Data Protection Regulation, which will be enforced starting May 25, according to attorneys Robert Stankey and Adam Greene, who provide compliance insights in an in-depth interview

Simplify and accelerate your compliance projects

IT Governance

Anyone who is working on a compliance project, whether for the EU GDPR (General Data Protection Regulation) or ISO 27001 certification, will understand how time-consuming, complex and lengthy the process can be. Compliance Manager.

Ediscovery And Compliance Considerations In A Work-From-Home World

Hanzo Learning Center

Compliance ediscovery Technology collaboration Corona Virus COVID-19 work from home remote work digitalPractical actions to ensure business continuity while reducing risk and preparing businesses to thrive in the future.

GDPR compliance checklist for healthcare

IT Governance

With the GDPR enforcement date less than a week away, HCPs should have identified a compliance plan in line with this guidance, which highlights how they will enact the Regulation and by when. Compliance will be mandatory for any organisation that processes EU residents’ personal data.

GDPR Compliance – Encryption

Perficient Data & Analytics

Cloud Customer Experience Data & Analytics Operations compliance Data Data Breach data encryption Data Privacy General Data Protection Regulation

Vendor compliance management is more than just a compliance manual

OpenText Information Management

In the retail sector, vendor compliance programs exist to reduce the time and effort it takes get the product to customers. To help reduce “time to customer”, retailers publish vendor compliance manuals with standards and expectations for doing business with them. Note – if you do a web search for “vendor compliance manual” you can … The post Vendor compliance management is more than just a compliance manual appeared first on OpenText Blogs.

Securing Containers for GDPR Compliance

Thales eSecurity

No matter where your organization is located, if it processes or controls the personal data of EU residents, it must be in compliance with GDPR, or it will be liable to significant fines and the requirement to inform affected parties of data breaches.

Procrastinators' Guide to GDPR Compliance

Data Breach Today

Organizations Are Not as Ready as They Might Believe If you're paying attention, you've probably already seen a handful of GDPR-related headlines just today, let alone in the last week or month. But there are two good reasons for the deluge of GDPR discussion right now: It's incredibly important and the time to act is now

Compliance Meets Social APIs

Hanzo Learning Center

The Surprising Irony at the Intersection of Compliance and Social APIs. Compliance article

Download: The Comprehensive Compliance Guide

Threatpost

The Comprehensive Compliance Guide can help security leaders save time and resources from creating their own compliance evaluation methods. Privacy Vulnerabilities Web Security