Alphabet soup: that’s what it is. A real alphabet soup. The GDPR, CCPA, HIPAA, COPPA, GLBA, and LGPD. All of these letters represent laws. Laws here, there, and everywhere. Laws in Europe. Laws in the U.S. Laws in Brazil. Laws …
We’re more than a year into the era of the EU GDPR (General Data Protection Regulation), but organizations across North America are still struggling to understand how, and if, the Regulation applies to them. It’s understandable that many companies outside …
Next year, organizations across the U.S. will have a new law to contend with when collecting personal data – the CCPA (California Consumer Privacy Act). Under the new rules, which take effect from January 1, 2020, organizations must tell California …
The relationship between a business and the traditional IT service provider has sometimes been fraught with conflict born from a lack of mutual understanding and, as a consequence, poor delivery of IT services. This leads to blame and mistrust from …
One of the ways to improve communication and alignment between an organization and its IT service delivery unit is to develop an effective service catalogue. A service catalogue in its basic form is a document that gives the customers a …
What is culture? The Oxford English Dictionary says it is: The ideas, customs, and social behaviour of a particular people or society In any organization or group of individuals there are learned and shared patterns of behaviour or shared values which give us the culture of …
Have you ever wondered whether your organization should become certified to ISO 27001? ISO 27001 provides the specification for an effective ISMS (information security management system) – a framework that offers a structured, comprehensive approach to managing information security risks. …
Information security management remains a serious issue for the legal sector, with law firms reporting an increase in targeted attacks in 2018. Large volumes of client funds and confidential information are irresistible to cyber criminals, so it is unsurprising that …
In mid-March, NBC reported that IBM collected nearly one million photos from photo hosting site Flickr to use as data sets to help develop facial recognition algorithms. Although IBM claims the data set is designed to help academic researchers make …
Completing a risk assessment is often the most challenging and difficult aspect of an ISO 27001 project. Regardless of the tools you use, the risk assessment must take into account many elements, such as assets, threats, vulnerabilities, and controls, and …
