RADAR Blog

Mahmood Sher-Jan, CHCP, CEO and Founder

CEO, RADAR

Find me on:

Benchmarking Data on the First Anniversary of the GDPR

This article is part of an ongoing series on privacy program metrics and benchmarking for incident response management, brought to you by RADAR. Read the original article on the IAPP Privacy Advisor.

Read more

On Our Radar: May 3, 2019

One of the biggest annual events in privacy, the IAPP Global Privacy Summit, is currently taking place in Washington D.C. If you’re in attendance, come find me at the RADAR booth (#107!) for conversations on all things privacy, incident response, and data breach regulations.

Read more

Benchmarking for GDPR: How often are organizations reporting data breaches to authorities and subjects?

This article is part of an ongoing series on privacy program metrics and benchmarking for incident response management, brought to you by RADAR. Read the original article on the IAPP Privacy Advisor.

Read more

Anatomy of a Privacy Incident: Webinar Q&A

The recent webinar Anatomy of A Privacy Incident: Data Breach Response and Investigation Best Practices dove into the best practices for designing an incident response program that encourages an organization-wide culture of compliance. Panelists Andrew Reeder from Rush University Medical Center and Asra Ali from Healthscape Advisors lead a lively discussion into the ins and outs of compliance programs, covering topics ranging from common presumptions and best practices for managing the phases of incident response within an organization. 

Anatomy of a Privacy Incident:  Data Breach Response and Investigation Best Practices  Request the webinar recording > Read more

How often do notification exceptions apply? We look to the data

This article is part of an ongoing series on privacy program metrics and benchmarking for incident response management brought to you by RADAR. Find earlier installments of this series here.

Read more

Are organizations meeting their notification obligations when timelines are specified?

This article is part of an ongoing series on privacy program metrics and benchmarking for incident response management, brought to you by RADAR, a provider of purpose-built decision-support software designed to guide users through a consistent, defensible process for incident management and risk assessment. Find earlier installments of this series here. 

Once an incident has been discovered, the clock starts ticking. Privacy officers and their teams must immediately investigate the incident, perform a multi-factor risk assessment according to all applicable jurisdictions to determine if the incident rises to the level of a data breach, and notify affected individuals, regulators, and authorities — often within a very short time frame. It can be a daunting task, compounded by the need to keep up with an ever-changing patchwork of data breach regulations, both enacted and proposed, each with their own unique requirements. 

Read more

The Why, What, and How of Benchmarking Your Privacy Program

We live in a world of measurements, from batting averages to number of steps walked to miles per gallon. Measuring our performance against certain standards or that of others—in other words, benchmarking—gives us a line in the sand from which we determine how and where to improve. This is especially important in the world of privacy, where it can be hard to gauge the effectiveness of programs and initiatives. And without the numbers to back you up, getting sufficient organizational priority and budget for your privacy program is difficult.  

Read more

Benchmarking Voluntary Breach Notifications: Frequency and Drivers

This article is part of an ongoing series on privacy program metrics and benchmarking for incident response management, brought to you by RADAR, Inc., a provider of purpose-built decision-support software designed to guide users through a consistent, defensible process for incident management and risk assessment. Find earlier installments of this series here.

Read more

Full disclosure: Benchmarking data reveals the human error in privacy incidents

This article is part of an ongoing series on privacy program metrics and benchmarking for incident response management, brought to you by Radar Inc., a provider of purpose-built decision-support software designed to guide users through a consistent, defensible process for incident management and risk assessment. Find earlier installments of this series here.

Read more

More Individual Records Exposed in First Six Months of 2018 than in All of 2017: The State of Healthcare Data Breach Response

This article by RADAR CEO Mahmood Sher-Jan originally appeared on the Compliance and Ethics blog. Click here to view it in its original format.

Read more

What's Driving the Growth of Data Breach Response?

In July Gartner published its new Hype Cycle for Privacy, which provides a snapshot of various technology capabilities and categories, their relative market trajectory over time, and forecasts for future adoption. A new category that emerged in the 2018 report is Data Breach Response, whose debut underscores the emergence of a broader awareness of this critical capability for enterprises that collect and process personal data.

Read more

The Compliance Trifecta: Privacy, Security, and Legal

Unless you’re storing grain on a farm, I think we can all agree that silos are bad, and that collaborative efforts are good. So why do silos continue to plague the business world?

Read more

Benchmarking Data Indicates Human Error Prevailing Cause of Breaches, Incidents

This article is part of an ongoing IAPP Privacy Advisor series on privacy program metrics and benchmarking for incident response management. Find earlier installments of this series here. 

Read more

What did the EU GDPR effective date mean for US companies?

On May 25, the EU GDPR went into effect. Prior to this day, there was much speculation as companies prepared for the rigors of this new privacy regulation - would companies be prepared? Would regulators? How would the public react? 

Read more

Benchmarking incident response: The state (or states) of privacy incidents

This article is part of an ongoing IAPP Privacy Advisor series on privacy program metrics and benchmarking for incident response management. Find earlier installments of this series here. 

Read more