SOC2 for Small Businesses

SOC2 for Small Businesses

More and more we see small businesses being asked by their clients for some sort of assurance that the data shared with them is kept secure and private. Many times a SOC 2 certification is being requested.  If this happens to you (or your client), the question is...
National breach notification law would usurp patchwork of state laws

National breach notification law would usurp patchwork of state laws

A bill is pending to amend the Gramm-Leach-Bliley Act (GLBA) to include a national data breach notification law that would supersede the various state laws that now apply to the financial sector. This initiative has the support of the American Bankers Association...
Help! I have data that falls under GDPR, do I have to appoint a DPO?

Help! I have data that falls under GDPR, do I have to appoint a DPO?

The new European Union the General Data Protection Regulation (GDPR) has been widely publicized. There are many questions surrounding GDPR and frankly many misunderstandings. One that we hear quite often is when an organization falls under the GDPR,  you must appoint...
What is the “NIST Act to Benefit Small Business”?

What is the “NIST Act to Benefit Small Business”?

The “NIST Small Business Cybersecurity Act” S.770 was signed this month.  What is it, and how can it benefit you or your small business clients? The National Institute of Standards & Technology (NIST) initially developed a set of cybersecurity...