Data Privacy & Cybersecurity

Organizations need to understand and manage the cybersecurity risk third-parties can present. Traditionally, security teams have used annual security assessments to assess third-party risk. However, this poses several challenges to security teams. Learn the benefits of monitoring cybersecurity risk continuously, and the risks of not doing so.

When it comes to data privacy law, change is the only constant. The global pandemic unleashed a new set of risks related to data privacy that companies will have to confront in 2021. Despite the COVID chaos, data privacy regulations around the world are becoming more strict, more prolific, and more stringently enforced.

In November, California voters passed the California Privacy Rights Act (CPRA). How does this new Act change CCPA, and what does it mean for businesses that use personal information? Here are 7 changes CPRA is making to data privacy, and what it means for your business.

It’s not optional - organizations must prioritize cybersecurity risk. To do that, you need a framework. NIST CSF is a risk-based framework and common language for understanding, managing, and indicating cybersecurity risk. Here’s why and how you should use it.

As data protection and customer privacy become higher corporate priorities, compliance and risk professionals would be wise to leverage privacy frameworks. Here are 5 reasons you need a framework for you data privacy and protection.

Business relies on census data to make business decisions, yet there are concerns about the integrity of the 2020 Census. How can business trust this once trusty resource? Start by identifying it as a business risk.

On Friday, California officially approved final regulations under the California Consumer Privacy Act (CCPA). Here are 7 tips for keeping your company’s website CCPA compliant – and out of regulators’ crosshairs.

HIPAA compliance is even more challenging with the Dark Web’s bounty on electronic protected health information. Such data is worth a pretty penny. That’s why healthcare organizations look for solutions that can provide tighter control over ePHI,whether it’s hackers exposing vulnerabilities or the weakest link is a business associate or the intentional/unintentional employee.

Amid all the COVID-related business challenges, it’s easy to forget the important issue the back burner: compliance. Here are 3 easy ways to keep regulatory compliance top of mind during the pandemic.

CIS offers cybersecurity best practices, including a set of controls that encompass 20 foundational and advanced cybersecurity actions. Here we’ll look at CIS’s first five controls and examine what each control addresses.

Is your organization prepared for a privacy incident? Here are five tips to help make sure your R&C program is ready in the event of a data breach.

CCPA regulatory enforcement is set to begin on July 1st, despite COVID-19 and defying early speculation. What should your compliance program do to prepare? And what changes are yet to come?