Armed with tools and their in-depth understanding of the organization’s privacy risks and requirements, the privacy team can conduct tabletop exercises to assess the most likely worst-case scenarios, providing valuable insights to executive decision-makers.
Read moreRadarFirst Blog
Privacy Regulatory Trends: Personal Information and Biometric Data Privacy Laws
As more states seek to regulate and protect biometric data, companies that collect, use and store biometric data should consider creating and implementing policies and procedures that incorporate the appropriate security, notice, and consent requirements, even if they are not currently required to do so by law. However, until all 50 states amend their definitions of personal information to include biometric data, privacy leaders must navigate a patchwork of laws and regulations when performing incident risk assessments.
Read moreRadarFirst 2021 Virtual User Summit
We’re pleased to announce the 4th annual Radar User Summit! At RadarFirst, our mission is to create the most innovative and valuable platform for you, our customers, to manage your response to privacy and security incidents involving regulated data. Join us for six expert-lead sessions over two half-day virtual events to learn, collaborate, and elevate your privacy program.
Read moreIncidents, Breaches, and the Human Factor
This year’s Verizon Data Breach Investigations Report found that 85% of breaches involve “the human element.” And this high commonality between incident and data breach causes has a number of implications for privacy teams.
Read moreRegulatory Trends: Texas Data Breach “Wall of Shame”
For privacy and compliance leaders, notifiable privacy data breaches aren’t ideal, but they are necessary. In September 2021, Texas house bill House Bill 3746 will allow the state attorney general to publicly list organizations who have issued data security breach notifications. At an important moment for privacy regulation, does this regulatory environment encourage organizations to notify when obliged, or does it discourage compliance with legislation?
Read moreCreating a Unified Framework for Global Incident Response
As privacy regulations expand, creating a unified framework for global incident response process may be the key to compliance worldwide.
Read moreIncident Response Planning for Healthcare
Laura Rieben, Deputy Privacy Officer at Independence Blue Cross, joined The Privacy Collective on June, 24, 2021 to discuss the unique challenges health insurers face while managing personal information, navigating complex data breach notification obligations, and wrangling third-party contractual obligations.
Read morePrivacy Regulatory Trends: Your Guide to The NAIC Insurance Data Security Model Law
Urgency for states to adopt the NAIC Insurance Data Security Model Law reveals a legislative pipeline full of nuanced and complicated insurance laws coming into play this year. With unique effective dates and notification obligations, here’s what you need to know to meet compliance with new state adoption of NAIC model laws.
Read moreIs Your Incident Response Process- or Outcome-Oriented?
Traditionally, business processes have driven efficiency across organizations. However, amid increasing data breach notification regulations, compliance teams may be being pulled into a slippery slope of internal reporting. Can outcome-based process evaluation help compliance leaders drive change?
Read moreCOVID Privacy and Your Workforce
The return to the workplace is happening fast and COVID privacy is a hot topic. Here are tips for how privacy teams can work with other departments to make a plan for managing data and to protecting employee privacy.
Read more