California’s Attorney General and legislature are currently proposing amendments to the California Consumer Privacy Act (CCPA). Their proposals, however, may do little to aid businesses in knowing how to comply with CCPA, and may instead dramatically increase liability risks for non-compliance.
As personal data protection continue to challenge companies it is becoming apparent that the commissions and other structures that police these issues have become impatient with organisations that are not complying with recommendations. For the first time those companies which have suffered a data breach and been found not in compliance are feeling the wrath of governing bodies.
With the growth in BYOD, mobile messaging and a mobile workforce, companies should make it a priority to provide secure communications for data security and compliance.
The ability of financial institutions to recover data breach losses from non-contacting parties depends on various legal statutes and industry regulations.
Making educated decisions about cyber security requires high-quality information. Analyst firms are happy to provide information. But is the information they provide genuinely useful? Are they adding value to the conversation? Ultimately, great leadership, thoughtful strategy and superior execution is key to success.
Will your website will be in some way impacted by expanded privacy legislation like the GDPR? Do you need to change how you do business online? Much of what’s required is simply good data hygiene.
Secure coding training is critical, but how that training is developed and presented can make a tremendous difference between “checking the box” training – and training that yields results.