The European Union’s new General Data Protection Regulation (GDPR) came into effect in May of this year. While many in North America believe that since they are not located within the European Union the regulation does not apply to their operations, the territorial scope of the GDPR is well and truly global. Many of these companies are unaware that the GDPR is applicable to any organization conducting business within the EU, including those simply collecting data there.
Despite the ever-evolving sophistication of hackers, security-conscious cloud providers now offer a far safer environment at a lower cost than most individual companies can provide for themselves.
There seems to be a constant supply of news stories involving high-profile, high-impact criminal cyber activity. More often than not, the data breaches that we hear about occur at large businesses or global organizations. This leads many people to think that it’s only those big companies who are at risk of being attacked. They incorrectly assume that today’s cybercriminal is always looking for a giant financial payout or a huge cache of personal data. But the reality is that small and mid-size businesses (SMB) are actually at greater risk.
Like the GDPR before it, the CCPA is getting a lot of attention because of the rights California residents will have to access data held by companies, to have that data removed, and to prohibit the sale of personal data. The new law, which does not go into effect until 2020, also creates the potential for some eye-popping payments directly to consumers impacted by a breach.
72% of cannabis operators fail to comply with security and surveillance requirements.
June 13, 2018
With so many new businesses and operations in the emerging cannabis market in the U.S., the field is beginning to adopt many risk management best practices, even above and beyond the myriad compliance requirements that cannabis product growers, producers and vendors must abide by.
SDC’s MLR Mortise Locksets are designed for the access control of openings in commercial, industrial and institutional facilities where code compliance, dependable operation and resistance to physical abuse is required.
How happy are business travelers from around the world with their travel programs? Why do they book outside of policy and what might motivate them to be compliant?
The GDPR restricts how organizations can collect, use and retain personal data, and provides Europeans with certain rights to halt collection, and to obtain copies, correction and, at times, destruction of their data.
A new NAVEX study, the 2018 Ethics & Compliance Hotline and Incident Management Benchmark Report, shows an increase in the substantiation rate of reports related to HR, Diversity and Workplace Respect in 2017.