News & Analysis as of

Compliance Data Protection

Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory... more +
Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations.  In response to many corporate scandals evidencing rampant unethical business practices, many nations, including the United States, began passing strict regulatory frameworks aimed at curbing these abuses. Notable pieces of legislation in this area include the U.S. Foreign Corrupt Practices Act (FCPA), Sarbanes-Oxley (SOX), and the U.K. Bribery Act, to name a few. The foregoing statutes and the severe penalties often associated with them form the basis of many modern institutional compliance programs. less -

Over-Analyzed and Under-Protected: Cybersecurity Compliance is Actually Pretty Simple

by JD Supra Perspectives on

While certainly not easy, data security and privacy compliance is actually pretty simple....more

Everything Compliance-Episode 10, the first 100 Days of the Trump Administration-Part I

by Thomas Fox on

This episode is the first of a two-part series of podcasts dedicated to the chaotic (at best) first 100 days of the Trump administration as it related to compliance. This episode includes Jonathan Armstrong and Jay Rosen. The...more

EDRM Releases New Security Questionnaire: eDiscovery Trends

by CloudNine on

As promised when they announced the project last August, EDRM announced last week the release of a new Security Audit Questionnaire, which is designed to be a practical tool for evaluating the security capabilities of...more

Doing Business in the UAE

by Latham & Watkins LLP on

Country Background - Formed on 2 December 1971, the UAE is a federal state of seven emirates comprising Abu Dhabi, Ajman, Dubai, Fujairah, Ras Al Khaimah, Sharjah and Umm Al Quwain. The UAE federal constitution...more

EU Legal Developments That May Impact Your Business in 2017

Sheppard Mullin’s EU team has created a list of major legal shifts that await General Counsel and Compliance Officers in the areas of competition, EU regulatory and trade in 2017. These challenges may have an impact on your...more

Top 10 Ethics & Compliance Predictions and Recommendations for 2017

by NAVEX Global on

Once again it’s time for our annual review of trends and events that will impact your Ethics and Compliance (E&C) program in the year ahead. This year presents a unique challenge. We are preparing our predictions...more

Bare-Knuckle Innovation Offers Unexpected Benefits: In-House Perspective

by JD Supra Perspectives on

Find those areas of your business where the status quo or established practice isn’t good enough and get started innovating. ...more

Update from the French Data Protection Authority on the compliance package for connected vehicles

by Reed Smith on

The market of the so-called “connected vehicles” has been considerably growing since 2015. According to a recent study by AlixPartners, 78 million of connected vehicles will be commercialized in 2018, generating a EUR40...more

Cybersecurity Update: National Futures Association Adopts Cybersecurity Guidance for Member Firm Information Systems Security...

by K&L Gates LLP on

The Commodity Futures Trading Commission (CFTC) recently approved the National Futures Association’s Interpretive Notice to NFA Compliance Rules 2-9, 2-36 and 2-49, entitled Information Systems Security Programs (the...more

Recent Government Cyber Alert and Draft Guide for Financial Institutions: Lessons for All Organizations

by Baker Donelson on

All organizations, including financial institutions, continue to face significant security threats across their wide ranging IT systems. Such organizations are particularly vulnerable if they cannot track networked devices...more

Top EU Court’s Ruling Subjects Companies Doing Business Across Europe To “New Sanctions” in Potentially Unfamiliar Jurisdictions

The Court of Justice of the European Union (CJEU) has been very busy in recent weeks re-shaping EU privacy laws. In addition to the much-anticipated decision in “Schrems” (Case C-362/14), which essentially rules the US-EU...more

Key Takeaways from the Consumer Protection Forum

by Holland & Knight LLP on

Holland & Knight and the Word of Mouth Marketing Association (WOMMA) hosted a half-day forum that featured government officials discussing hot-button issues in consumer protection regulation and enforcement. Speakers at the...more

Could a Vendor’s Lax Info Security Ruin Your Holiday Sales? Seven Preventative Steps for Retailers

by Perkins Coie on

Many of the largest retailer data security breaches have been caused or enabled by the acts or omissions of retailers’ vendors, such as the widely publicized incident at Target Corporation. Several such breaches occurred...more

[Webinar] Managing Risk in the Era of Cyber Insecurity - Oct. 27th, 1:00 CST

by Robins Kaplan LLP on

Join privacy and data security attorney Richard Martinez for this informative session that will break down the details of the 50 leading enforcement actions taken by the FTC to regulate data privacy and cyber security. By...more

Alphabet Soup and Data Security

In the span of two days, mobile device users learned of two data breaches that could compromise their personal data. In one, Experian (a credit reporting agency) reported that it was hacked, potentially putting 15 million...more

OCR portal designed for medical mobile app developers

The Office for Civil Rights (OCR) of the Department of Health and Human Services has launched a web based portal so medical mobile app developers can ask their “burning” questions about HIPAA compliance....more

Meaningful Use Audits: Proactive Tips for Success

by Burr & Forman on

For health care professionals who began accepting Meaningful Use incentive money at the outset of availability under the Medicare option in 2011, the year 2015 is an important year. If the provider has met all core...more

California Updates its Data Breach Notice Statute (Again)—What You Need to Know

by Orrick - Trust Anchor on

On October 6, California Governor Jerry Brown signed legislation updating California’s data breach notice statute for the third time in three years.  The news was quickly overshadowed by the CJEU’s decision invalidating the...more

Privacy, Security, Risk: What You Missed At IAPP Conference

by Orrick - Trust Anchor on

Earlier this month, privacy and security professionals from around the globe gathered for “Privacy. Security. Risk. 2015”—the second joint conference between the International Association of Privacy Professionals and the...more

Unmasking Information Governance: What is it and how do I move it forward in my organization?

The heightened state of information security in recent years has instigated genuine collaboration, in many organizations, amongst its professionals in IT, records, security, risk, compliance, and other stakeholders in...more

HIPAA Fine Underscores OCR’s Focus on Physician Group Compliance

by BakerHostetler on

The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) recently announced a $750,000 fine and resolution agreement, including a Corrective Action Plan (CAP), for Cancer Care Group, P.C. (CCG), a...more

OIG Reports Insufficient Oversight Of HIPAA Compliance

by King & Spalding on

The HHS Office for Civil Rights (OCR) must improve its oversight and enforcement of patient information privacy and security rules by “covered entities” and their business associates under the Health Information Portability...more

Is Your HIPAA Compliance Program Ready for the FTC?

Everyone in healthcare knows that the next round of HIPAA audits is coming. Covered entities and business associates have long been advised to review and update their HIPAA security risk analyses, have business associate...more

States Continue To Grapple With Data Breach Notification Issues

by Carlton Fields on

Connecticut’s data breach notification law currently requires notification “without unreasonable delay.” Effective October 1, 2015, Connecticut will (a) require notice of any breach of security not only “without unreasonable...more

CA AG Requires Chief Privacy Officer and Privacy Compliance Program

by BakerHostetler on

California’s Attorney General, Kamala Harris, has required Houzz, a home décor information and e-commerce website and mobile app publisher, to hire a chief privacy officer (CPO), conduct a company-wide privacy assessment, and...more

187 Results
|
View per page
Page: of 8
Cybersecurity

"My best business intelligence,
in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.