IT Compliance Advisor:

ITKE grandparent


June 17, 2016  12:34 PM

Medical records theft from NFL team’s trainer could violate HIPAA

Fran Sales Fran Sales Profile: Fran Sales
Data breach, Dodd-Frank, EMR, grc, HIPAA, risk, SEC

Late last month, the NFL Players Association informed its member teams that a Washington Redskins trainer's laptop containing players' medical records was stolen and that it would collaborate with the U.S. Department of Health and Human Services to determine possible patient privacy violations....

May 26, 2016  1:19 PM

How security standards help companies prioritize data protection

Fran Sales Fran Sales Profile: Fran Sales
Authentication, Consumer data, Data security standards, GRC strategy, nist, Privacy and security, regulatory compliance, SANS, Threat intelligence

In part one of this blog post, John Pescatore, director at the nonprofit cybersecurity training provider SANS Institute, delved into...


May 26, 2016  1:10 PM

Businesses must look beyond regulations for security and privacy guidance

Fran Sales Fran Sales Profile: Fran Sales
Consumer data, Data security standards, GRC strategy, personal data, Privacy and security, regulatory compliance, SANS

Last month, Sens. Richard Burr and Dianne Feinstein from the Senate Select Committee on Intelligence unveiled a draft of the Compliance with Court Orders Act of 2016 that would require all technology companies -- from mobile device manufacturers to application makers -- to comply with court orders...


May 5, 2016  9:12 AM

PCI DSS 3.2 multifactor requirement among the version’s biggest changes

Fran Sales Fran Sales Profile: Fran Sales
Blockchain, Compliance, Data security standards, GDPR, grc, IBM, multifactor authentication, PCI compliance, PCI DSS, regulatory compliance, SEC

Details surrounding the updated Payment Card Industry Data Security Standard show that version 3.2 includes new multifactor authentication and encryption requirements. Also in recent GRC news: SEC enforcement actions -- or the lack of them -- are raising concerns about the agency's ability to...


April 28, 2016  12:15 PM

At Google, company culture key is to assuring consumer privacy

Fran Sales Fran Sales Profile: Fran Sales
Compliance, Consumer data, Corporate culture, Data privacy, Data regulations, Google, online privacy, Privacy and security, regulatory compliance

The lack of comprehensive federal privacy legislation leaves not only consumers vulnerable, but also companies frustrated. Many consumers lack information about the many ways their personal data is used, what parties use it, and the ways it could be potentially misused; meanwhile, companies seeking...


April 15, 2016  10:15 AM

FCC’s consumer privacy proposal: Harmful to innovation?

Fran Sales Fran Sales Profile: Fran Sales
Compliance, Consumer data, Data privacy, FCC, FTC, Net Neutrality, SEC

The FCC's newly proposed privacy protection rules requires broadband and wireless providers to obtain consumer consent before collecting and sharing their data, but some are concerned this approach is detrimental to innovation. Also in recent GRC news: The U.S. Department of Justice announced a...


April 12, 2016  12:01 PM

Twine Health CEO: Frequent, real-time interaction boosts patient trust

Fran Sales Fran Sales Profile: Fran Sales
Compliance, Consumer confidence, Consumer data, consumer health IT, Data privacy, HIPAA, HIPAA Compliance, patient data privacy

Despite the prevalence of consumer data collection and analysis today, there remains a glaring lack of clear policies and legislation around the protection of that data, according to


March 31, 2016  7:09 PM

SecureWorld Boston highlights value of partnerships

Brian Holak Brian Holak Profile: Brian Holak
Compliance, Data breach, Data Management, IT security, IT teams

Some 1,500 cybersecurity professionals gathered at this week's SecureWorld Boston conference that featured discussions with leading industry experts about today's best...


March 24, 2016  10:41 AM

Cybersecurity questions get the boardroom’s attention

Fran Sales Fran Sales Profile: Fran Sales
board, CISO, Compliance, Cyberattacks, cybersecurity, Data breach, Data breach disclosure, Information security, Microsoft, RSA Conference

"Security has transcended from an IT issue to a boardroom issue." This was how Microsoft corporate vice president and CISO Bret Arsenault opened his panel discussion at last month's


March 8, 2016  4:18 PM

RSA 2016: Adobe, Google and Microsoft prepare for EU GDPR

Fran Sales Fran Sales Profile: Fran Sales
Adobe, Chief Compliance Officer, Chief Privacy Officer, Data privacy, Data protection, European Data Protection legislation, Google, Microsoft, regulatory compliance, RSA, RSA Conference, Safe Harbor

When General Data Protection Regulation -- a new EU-wide data protection framework that will replace Safe Harbor -- was introduced by European Union on December 2015, global...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: