Upcoming Webinar - Learn How to Be Cyber-Smart for This Year's Cybersecurity Awareness Month Register Now
Archive for the ‘Compliance’ Category

With all the talk this year being about the introduction of the GDPR, it’s understandable that other compliance mandates take a back seat. One such casualty of this focus is SOX compliance. SOX (or the Sarbanes-Oxley Act) has been around since 2002 and was put into place to protect shareholders and the general public from accounting errors and fraud, as well as improving the disclosure of corporate, enterprise disclosures. Also … Read more

In a word, yes! As the deadline for GDPR creeps ever closer, companies are becoming increasingly anxious about the potential consequences of non-compliance. Some of their main concerns include fines, reputational damage, job losses and, in some cases, they are concerned that they will go out of business. These concerns are not unfounded. After all, the GDPR is unquestionably the most stringent data privacy regulation the world has seen to … Read more

It will probably come as no surprise to hear that the public sector is frequently ravaged by ransomware attacks. According to bankinfosecurity, 27% of UK councils have confirmed that they have been the victim of at least one ransomware attack. One reason why the public sector is particularly vulnerable to such attacks is that they hold large amounts of sensitive personal data. General Data Protection Regulation (GDPR) will come into … Read more

2017 saw an inordinate number of cybersecurity breaches take place, and the aim in 2018 will be ensure that you are compliant with many of the new compliance regulations coming into effect. 2017’s biggest security breaches include the Equifax breach, state-sponsored attacks, Russian manipulation of social media, WannaCry, and innumerable phishing scams. Security was compromised at every level, and something needs to change in 2018. Many CIO’s and top security … Read more

GDPR requires all businesses (in and outside European Union) dealing with EU citizen’s data to protect their data and privacy for transactions that occur within EU member states. Non-compliance will result in hefty penalties. The directive will set a new norm for consumer rights but, initially, it will be challenging for companies to put the required systems and processes in place to conform. The compliance will require new expectations from … Read more

The implementation deadline for PCI DSS 3.2 is February 1st 2018. After this date, the recommendations of the compliance will no longer be simply “best practices”, they will be mandatory. The new requirements will apply to all merchants and service providers who store, process or transmit credit card payments from Visa, MasterCard, Discover and American Express. The new updates are stronger security measures against cyber-attacks. In this article, we will … Read more

The United States has a number of different laws surrounding the protection of personal data such as HIPAA, SOX, PCI-DSS, and FTC, to name a few. Despite this, there is still a need for a centralized regulatory framework to deal with the collection, use, and dissemination of personal data. This need will soon be met once the General Data Protection Regulation (GDPR) comes into effect. The GDPR has what is … Read more

The GDPR is a new EU regulation that is due to come into force on May 25, 2018. It has turned into a hot topic in the healthcare industry as service providers prepare to meet the compliance challenge. The United States’ Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a regulation that was developed to protect the privacy and security of sensitive medical information. There are several key … Read more

Staying compliant with regulations like GDPR is essential if you want to appease that pesky auditor, but it does not guarantee full protection against data breaches. Once you have worked out how to be compliant, you will then have to turn your attention to other important factors in data protection. The reason for this, is that regulations and compliances alone do not guarantee the required shift in attitude that is … Read more

2016 was a record year in terms of the number and cost of HIPAA settlements and with 2017 coming to a close soon, not much has changed in this regard. Due to the nature of the data that healthcare companies store, provider absolutely must be transparent about how they are securing and handling it. This is essentially what HIPAA is all about. Simple, isn’t it? So why are so many … Read more