PCI Compliance Checklist
The Payment Card Industry Data Security Standard (PCI DSS) is a set of security requirements that were adopted as a general standard by financial institutions for the protection of payment systems from data breaches,…
All You Need to Know About Virginia’s CDPA
On 2 March 2021, Virginia became the second US state to enact comprehensive privacy legislation. The Virginia Consumer Data Protection Act (CDPA) draws heavily from existing laws such as the California Consumer Privacy…
All You Need to Know about TISAXÂ
The rise of smart and connected cars in the last decade has led to a sharp increase in cyberattacks involving automobiles. According to Upstream Security’s 2020 Automotive Cybersecurity Report, the number of annual automotive…
5 Tips for a Successful CMMC Compliance Checklist
The US Department of Defense (DoD) released the first version of the Cybersecurity Maturity Model Certification (CMMC)Â on 31 January 2020. The new framework aims to protect Federal Contract Information (FCI) and Controlled…
GDPR Data Encryption Requirements
The European Union’s General Data Protection Regulation (GDPR) requires organizations that fall under its scope to secure sensitive data against data breaches defined as the accidental or unlawful destruction, loss,…
How DLP Helps Pharmaceutical Companies Protect their DataÂ
Pharmaceutical companies are both producers and collectors of vast quantities of sensitive data stemming from not only selling pharmaceutical products but also developing them. From initial research to the patent filing,…
All you need to know about the California Privacy Rights Act (CPRA)
As companies still struggled to come to terms with the compliance requirements of the California Consumer Privacy Act (CCPA), they were hit by a surprising piece of news: voters approved the California Privacy Rights Act…
DPA Compliance in the UK during COVID-19
Data protection in the United Kingdom currently falls under the incidence of the Data Protection Act 2018 (DPA). The DPA was adopted into the UK’s national legislation while the country was still part of the European Union.…
NIST 800-171 Compliance Checklist
NIST Special Publication 800-171, Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations, focuses on information shared by federal agencies with non-federal entities.…
5 tips for RBI Compliance
On 2 June 2016, the Reserve Bank of India (RBI) published the Cyber Security Framework in Banks. Addressing an increasingly complex threat landscape, the framework aimed to bring banks’ cybersecurity strategies up to international…
5 Tips for a Successful PCI DSS Compliance Strategy
The Payment Card Industry Data Security Standard (PCI DSS) is an international proprietary information security standard developed by the PCI Security Standards Council for organizations that handle cardholder information…
Data Protection Legislation Around the World in 2021
2020 brought several major developments in the world of data protection legislation. Most notably, the California Consumer Privacy Act (CCPA) came into force in January in the United States and the Court of Justice of the…
China’s Personal Information Protection Law: What We Know So Far
On 21 October 2020, China’s Standing Committee of the National People’s Congress published the first draft of the Personal Information Protection Law (PIPL) for public comment. The PIPL is China’s first attempt to integrate…
A Look at Data Breach Statistics in 2020
2020 has proved to be a challenging year from all points of view. With the health crisis brought on by the COVID-19 pandemic disrupting the worldwide economy and crippling both large and small businesses, cybersecurity …
How DLP Helps Media Companies
The advent of global online streaming services such as Netflix and Amazon Prime have boosted media productions across the world. Original content is being created for the platforms not only in the US, but in places as wide…
Singapore’s Amended Personal Data Protection Act Passed in Parliament
On 2 November 2020, the Singapore Parliament passed amendments to the country’s Personal Data Protection Act (PDPA). It was the first time the law was reviewed and changed since it was enacted in 2012. At the time, it was one…
Australian Government Kicks off Privacy Act Review
On 12 December 2019, the Australian Government announced that it would conduct a review of the Privacy Act 1988 as part of its response to the Australian Competition and Consumer Commission’s (ACCC) Digital Platforms…
DPO vs. CPO: Compliance Roles at Glance
While compliance and data protection have been around for some time, especially in fields such as finance and health, they have always been bundled together into legal and information security roles. The rise of increasingly…
Brazil’s LGPD is now in effect
In a surprising turn of events, Brazil’s Lei Geral de Proteção de Dados (LGPD), Latin America’s first major data protection law, went into effect this month after hopes that the COVID-19 pandemic would push the introduction…
PCI DSS Compliance Solutions: How DLP Helps
The Payment Card Industry Data Security Standard (PCI DSS) is a set of security requirements that helps organizations protect their payment systems from breaches, fraud, and theft of cardholder data. Developed by the…
All You Need to Know about CMMC Compliance
Cybersecurity Maturity Model Certification (CMMC)Â is a new framework for protecting Federal Contract Information (FCI) and Controlled Unclassified Information (CUI) for all contractors or subcontractors of the United…
Credit Unions: How DLP Helps Secure Their Data
As a financial institution, credit unions regularly collect, process, and store the personal and financial information of their customers. This type of sensitive data is protected under laws such as the Sarbanes-Oxley…
All You Need to Know About Turkey’s Personal Data Protection Law (KVKK)
Turkey’s Personal Data Protection Law No. 6698 or KiÅŸisel Verileri Koruma Kanunu (KVKK) came into force on 7 April 2016, just weeks before the EU passed its groundbreaking General Data Protection Regulation (GDPR). The…
Remote Work Data Security Tips for the Tech Sector
As companies around the world scramble to roll out remote work strategies in the wake of the COVID-19 pandemic, some organizations are better prepared for it than others. The tech sector, in particular, has long embraced…
