GDPR Defined The General Data Protection Regulation (GDPR) is a data privacy and security law that was passed by the European Union back in 2018. It quickly made its reputation as one of the toughest laws for its scope and also for its enforcement. We’ve had...
On June 30th, 2021, the U.S. Department of the Treasury released a set of national priorities in a document titled ‘Anti-Money Laundering and Countering the Financing of Terrorism National Priorities.’ These priorities are aligned with the 2018 and 2020 National Strategy for Combating Terrorist and...
Outsourcing is a business practice of hiring a third party to perform services or create goods that otherwise could be performed in-house by the company’s existing staff. This applies to a wide range of industries and use cases. Examples include marketing efforts, software development, part...
How can we make eco-friendly business decisions that also benefit risk management goals? This is a question a lot of companies are asking lately, for several reasons. Many companies feel a responsibility to minimize their contribution to global warming; others may have more selfish reasons...
Who is NIST? The US National Institute of Standards and Technology (NIST) is an organization with the goal of improving economic security and quality of life. They pursue this goal by promoting innovation and industrial competitiveness within the US through advancements in science and technology. Their...
Diversity and Inclusion As we settle into the middle of Pride Month and protests across the world call out systemic racism, it feels appropriate that we use this time to address the importance of diversity and inclusion in the workplace. We know innately that diversity and inclusion...
What Is the CAN-SPAM Act? The CAN-SPAM Act essentially dictates what can and cannot be done in regards to commercial messaging, including what can happen if you’re noncompliant. Formally referred to as The Controlling the Assault of Non-Solicited Pornography And Marketing Act, the act was passed...
Risks in Education Whether students are 6-years-old or 40, educational institutions are responsible for providing them with a safe, productive learning environment free of risks. Education risk management is becoming increasingly important as institutions move away from simply checking boxes for compliance; they are learning how...
What is the California Consumer Privacy Act? The California Consumer Privacy Act (CCPA) exists to provide California residents with more control over their data and information on how it is being used. For businesses, this means policies must adapt so that customer data is readily available...
Healthcare Compliance As a highly regulated, high-risk industry, healthcare organizations place the utmost concern on compliance. Healthcare compliance protects both patients and staff, and widely covers areas such as patient safety, data protection, and billing. As such, compliance programs are set in place to ensure organizational...