Last week your CEO opened an email about chimpanzees in ties trashing an office. You’ve just learned the email contained malware, which has been exfiltrating valuable data to an IP address in Iran. After a brief panic attack, you start …
Let us assume you work for a company based in the U.S. Maybe you’ve heard of the European GDPR (General Data Protection Regulation). Perhaps you even heard about its requirements for cybersecurity and protecting personal information. Then you think to …
During one of IT Governance’s GDPR (General Data Protection Regulation) training courses last year, a delegate from a well-known financial services company asked: I’ve just come on the course to understand how the GDPR works. Why do I need to sit an …
From next year, organizations across the U.S. will have another law to deal with when processing personal data – the CCPA (California Consumer Privacy Act). The CCPA requires organizations to tell California residents when their personal data is being collected and …
Cybersecurity breaches are always bad, but without a management system they can turn into a catastrophe. Take the plight of Lake City, Florida. It’s a small city about an hour away from Jacksonville, but it has big problems. The city’s …
Alphabet soup: that’s what it is. A real alphabet soup. The GDPR, CCPA, HIPAA, COPPA, GLBA, and LGPD. All of these letters represent laws. Laws here, there, and everywhere. Laws in Europe. Laws in the U.S. Laws in Brazil. Laws …
We’re more than a year into the era of the EU GDPR (General Data Protection Regulation), but organizations across North America are still struggling to understand how, and if, the Regulation applies to them. It’s understandable that many companies outside …
Next year, organizations across the U.S. will have a new law to contend with when collecting personal data – the CCPA (California Consumer Privacy Act). Under the new rules, which take effect from January 1, 2020, organizations must tell California …
The relationship between a business and the traditional IT service provider has sometimes been fraught with conflict born from a lack of mutual understanding and, as a consequence, poor delivery of IT services. This leads to blame and mistrust from …
One of the ways to improve communication and alignment between an organization and its IT service delivery unit is to develop an effective service catalogue. A service catalogue in its basic form is a document that gives the customers a …
