Compliance Data Protection

Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory... more +
Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations.  In response to many corporate scandals evidencing rampant unethical business practices, many nations, including the United States, began passing strict regulatory frameworks aimed at curbing these abuses. Notable pieces of legislation in this area include the U.S. Foreign Corrupt Practices Act (FCPA), Sarbanes-Oxley (SOX), and the U.K. Bribery Act, to name a few. The foregoing statutes and the severe penalties often associated with them form the basis of many modern institutional compliance programs. less -
News & Analysis as of

Is Your HIPAA Compliance Program Going Out the Window with XP?

April 8, 2014 marks the end of Microsoft’s support for the Windows XP operating system, which means the end of security updates from Microsoft and the beginning of new vulnerability to hackers and other intruders into systems...more

HHS's New Security Risk Tool for HIPAA Compliance

On March 28, 2014, the HHS Office of the National Coordinator for Health Information Technology (ONC), in conjunction with the HHS Office for Civil Rights (OCR), released a Security Risk Assessment tool (SRA tool) to assist...more

Can covered entities run Windows XP and remain HIPAA compliant?

Microsoft recently announced that, after April 8, 2014, it will not longer provide security updates or technical support for Windows XP. Microsoft’s statement that “businesses that are governed by regulatory obligations such...more

French Employers: Only Three Months Left to Set Up a Single Database | Base de données unique : plus que trois mois pour la mettre...

French law requires companies with 300 or more employees to set up a single database for economic and employment information by no later than 14 June 2014. The French Job Security Act of 14 June 2013, which codified...more

U.K. Law for the U.S. Employer, Part II: Discrimination, Data Privacy, and Termination Rights

Part one of this three-part series covered the basic principles of employment laws in the United Kingdom and the minimum benefits and rights to which employees are entitled. Part two covers a number of employers’ obligations...more

Whistleblowing and Data Privacy in France: A New Pragmatic Approach for Employment and Discrimination Claims

The French data protection authority has extended the scope of whistleblowing protections to employment and discrimination claims. ...more

Top Legal Issues Facing Suppliers in 2014

We know that you have been considering what business and commercial issues you will face in 2014 (and perhaps beyond) as an Automotive Supplier. But, have you been considering what legal issues you are likely to face? Do you...more

Privacy And Data Security For Life Sciences And Health Care Companies

Pepper Hamilton Health Care-Life Sciences Webinar - The explosion of mobile technology and Web applications linking patients with doctors, pharmacies and medical devices is undergoing scrutiny by the FDA, FTC, HHS and...more

FINRA Conducting Cyber-Security Sweep Exam

Reacting in part to recent data-breaches and cyber-attacks on larger retailers, the Financial Industry Regulatory Authority (“FINRA”) is conducting a targeted examination of some 20 broker-dealer member firms’ compliance and...more

What is “Expedient” Notification of a “Data Breach?”

One of the first questions companies ask us when we are hired to help them respond to a new security incident is how fast they have to notify if the investigation shows that a “breach” occurred. Except for a couple of states...more

Executive Branch acts on cybersecurity - what you need to know about this groundbreaking effort

Yesterday, the White House released the National Institute of Standards and Technology Framework for Improving Critical Infrastructure Cybersecurity, which is a key step in the implementation of Executive Order 13636 on...more

FTC’s 50th Data Security Settlement Sends a Message: Be Careful with Overseas Contractors

The Federal Trade Commission (FTC) sent a message about the importance of imposing appropriate security measures on—and monitoring—vendors with access to confidential consumer information. The FTC issued a 20-year consent...more

SEC Examiners to Take a Close Look at Firms’ Cyber Security

A high-level SEC official told an industry group yesterday that the National Examination Program (NEP) will be reviewing asset managers’ policies and procedures for preventing cyber attacks. In particular, the SEC is looking...more

U.S. Privacy and Data Protection: 2013 Year in Review and a Look Ahead to 2014

In Boston, we celebrated Data Privacy Day (January 28) by presenting “U.S. Privacy and Data Protection: 2013 Year In Review and a Prediction of What’s to Come in 2014” for participants in an IAPP KnowledgeNet. Our panel of...more

Cybersecurity and the duty of care: a top 10 checklist for board members

Visibility on information security, including cybersecurity as well as physical security aspects, is increasingly permeating corporate life. The relatively new SEC requirements for public disclosure of cybersecurity...more

2014 Trends: #5 Top Ten Privacy and Related Ethics & Compliance Issues

Trend number 5 is on the docket today as we move down our list of ethics and compliance trends to watch in 2014. Privacy issues have led the headlines for years but their intersection with ethics and compliance is coming to...more

Fashion, global e-commerce and harmonized legislation

We discussed fashion and online retail and the new related legal issues. When a fashion company decides to approach e-commerce, it is likely that it will deal with different jurisdictions, taking into account, for...more

Top Tips for Successful Recruitment

Recent surveys have shown that companies of all sizes are optimistic about their ability to expand and create jobs in 2014. With business confidence said to be at its highest since 1994, now is a good time for employers to...more

Happy New Year - Now Don't Let The Ball Drop

Ryan Seacrest paid homage again to Dick Clark. The latest musical crazes performed live from hot spots around the globe. Miley Cyrus thinks we’re still interested (for those who were at some point). They all helped us and our...more

The Cloud: Google Apps for Business and HIPAA Compliance

Does your company use Google Apps for Business? Are you a health care provider, health plan, or health care clearinghouse (“Covered Entity” or “Covered Entities”) subject to the Health Insurance Portability and Accountability...more

Privacy & Cybersecurity Update - December 2013

In This Issue: - European Commission Proposes Changes to the US-EU Safe Harbor: In our November Privacy & Cybersecurity Update,1 we reported that the European Commission was undertaking a review of the U.S.-EU...more

PCI DSS 3.0: Business as Usual?

In the past, critics of the Payment Card Industry (PCI) Data Security Standard (DSS) have alleged that the DSS requirements either (1) provide little more than a minimal baseline for security with a “check-the-box” compliance...more

BBB Warns Advertisers and Web Publishers to Take Responsibility for Behavioral Advertising Disclosures

The Better Business Bureau (“BBB”) and the Direct Marketing Association (“DMA”) are in charge of enforcing the ad industry’s Self Regulatory Principles for Online Behavioral Advertising (“OBA Principles”), which regulate the...more

Are You Ready For California’s “Do Not Track” Requirements?

Over the last several months, California has passed several new privacy and data protection laws that impact operators of websites, online services and mobile applications around the country, including a law establishing an...more

The Challenges of Compliance

Compliance, like many other aspects of the business world, is a balance of risks. Unfortunately, it often takes an organization being rebuked in some fashion before it realizes the importance of failure to be in compliance. ...more

94 Results
|
View per page
Page: of 4