Data Protection Archive
This is a guest article written by David Balaban. The author’s views are entirely his own and may not reflect the views of IT Governance USA. Ransomware is one of the most unnerving phenomenon in the cyber threat landscape. It …
Invalidation of the Privacy Shield U.S. companies that do business in the EU are in for a nasty shock. For the past four years, the EU–U.S. Privacy Shield framework has allowed them to transfer data from the EU in line …
This is a guest article written by David Balaban. The author’s views are entirely his own and may not reflect the views of IT Governance USA. Security awareness traditionally revolves around the personal online hygiene mantra, with a bunch of …
This is a guest article written by David Balaban. The author’s views are entirely his own and may not reflect the views of IT Governance USA. The coronavirus outbreak continues to hold the world hostage, and health care facilities are …
What is the CMMC (Cybersecurity Maturity Model Certification)? The CMMC is a new cybersecurity standard for companies working with the U.S. DoD (Department of Defense) and its data. This framework will serve as a tiered certification scheme to help the …
As we approach the July 1 enforcement date for the CCPA (California Consumer Privacy Act), organizations must act now to ensure they’re compliant. One of the most important requirements is staff training, because it demonstrates that employees understand and are …
If your organization collects EU residents’ personal data and you aren’t compliant with the EU GDPR (General Data Protection Regulation), you’d better get started. The GDPR, which came into effect on 25 May 2018, introduced strict rules on the way organizations …
If you’re trying to advance your cybersecurity career, there’s good news. There are many different roles in cybersecurity, and organizations are in desperate need of skilled personnel, with an estimated 300,000 vacant jobs in the US alone. But what cybersecurity …
It is a widely held belief that every organization’s website needs a corresponding privacy policy. However, this is not the case. Whether you need an online privacy policy depends on what your organization does, where it does it, and your contractual obligations. According …
North Carolina-based Duke Energy has been fined a record $10 million by NERC (North American Electric Reliability Corporation) for 127 violations of rules designed to keep the U.S. power system safe from physical and cyber attacks. According to NERC’s penalty …
