RADAR Blog

RADAR, Inc. Adds Ben Kaufman as CFO

Building on its leadership team, the CFO role will accelerate financial strategy

Read more

Biotech, software and Internet of Things big winners at Oregon Entrepreneurs Network awards

This abridged news article was originally published by the Portland Business Journal. Click here to read the full story from Malia Spencer.

Read more

RADAR, Inc. Receives 2017 OEN Tom Holce Entrepreneurship Award, Development Stage Category

The Oregon Entrepreneurs Network (OEN) recognizes RADAR, Inc. in celebration of Oregon-based companies and their impact on the regional economy.

Read more

RADAR wins 2017 HPE-IAPP Innovation Award for Privacy Technology at P.S.R

This news article was originally published by the IAPP.

Read more

RADAR, Inc. Awarded Prestigious HPE-IAPP Privacy Innovation Award

The International Association of Privacy Professionals (IAPP) recognizes RADAR, Inc. for its innovative platform for simplifying compliance with data breach laws.

Read more

Lions and Tigers and SOC 2—Oh My! Tips for Navigating the SOC 2 Process

At RADAR, we understand how critical it is to keep sensitive information secure. Our clients use RADAR to manage privacy incidents involving Personally Identifiable Information (PII) and Protected Health Information (PHI), and we support this work by following best practices and industry standards for application, network, and infrastructure security.

Read more

RADAR, Inc. Announces Second Patent Issued in Managing Contractual Notification Obligations; Fourth Patent Overall

RADAR’s unique technology platform provides a single platform to efficiently manage regulatory and contractual incident response obligations.

Read more

RADAR, Inc. Awarded Portland Business Journal Small Business Innovation Award 2017

The Portland Business Journal award recognizes RADAR, Inc. for innovation, design, industry impact, and revenue growth.

PORTLAND, Ore., — October 12, 2017 – RADAR, Inc., a SaaS solution provider of privacy and security incident response management, announced today that it has been selected as one of the recipients of the Portland Business Journal's 2017 Small Business Innovation Awards. This award is intended to recognize companies with fewer than 100 employees that are providing cutting-edge products or services with the potential to be a market changer, having a compelling product or service offering and demonstrated excellence in:

Read more

Questions to Ask when Considering SaaS vs On-Premise Solutions for Privacy Incident Response

In my career, I’ve led development teams creating both software as a service (SaaS) and installable on-premise solutions, so I am familiar with debates about the realities and myths of SaaS vs. on-premise. Whenever this debate resurfaces, I address the concerns raised as I would any operational initiative: by asking questions and challenging assumptions.

Read more

From Incident to Discovery to Breach Notification: Average Time Frames

This article by Mahmood Sher-Jan is the fourth in a series of articles published with the IAPP Privacy Advisor, on the topic of establishing program metrics and benchmarking your privacy incident management program. Find earlier installments of this series here.

Measuring the efficacy of your privacy program is one way to ensure you have a baseline for improvement, as well as a means to test and prove that your continuous efforts to improve security and privacy at your organization are having their intended impacts. Establishing benchmarking metrics is also important to lend continuity to a process that can sometimes resemble a fire drill. In the midst of an unauthorized disclosure of protected, private data, your team will be moving fast and engaged in a flurry of activity in order to properly document and risk assess an incident to determine regulatory and contractual notification obligations, if any, in order to meet notification deadlines and prove compliance.

Read more

Can't-Miss Sessions at IAPP Privacy. Security. Risk. 2017

Privacy and security teams are often painted as adversaries in compliance. While it's true that privacy, security, and risk professionals often come from different backgrounds and interests, they are united in their shared pursuit of compliance and events like the IAPP Privacy. Security. Risk. 2017 illustrate the way these fields are converging. 

Read more

Alliance of Global Privacy Solutions Providers: Bringing Technology and Innovative Solutions to GDPR Compliance

Privacy professionals across the globe all have the same date circled in their day planners in May of 2018. The EU General Data Protection Regulation (GDPR) enforcement deadline is fast approaching, and the risk of noncompliance are very real: failure to meet the 72 hour notification timeline could result in fines up to €20M or up to 4% of the total worldwide annual turnover of the preceding financial year, whichever is higher. Many questions about complying with the GDPR yet remain, including how to best approach the regulation, interpret the law, then plan, implement and manage a strong compliance program.

Read more

Lesson from the Equifax Breach: Readiness is Priceless

If anyone ever doubted the importance of data security incident response, the Equifax breach should put those doubts to rest. On top of the widespread concern about a breach affecting 143 million consumer records, there are all the hard questions about why it took Equifax more than six weeks to make the breach public. Since the announcement, the Senate Finance Committee, the Justice Department, the Federal Trade Commission, the Securities and Exchange Commission, and multiple state attorneys general have launched investigations into the breach; over 50 class action suits have been filed; three executives, including CEO Richard Smith, have been retired; the stock value has dropped over 30%; and many experts predict the breach will result in new regulatory reporting standards for the financial industry.

Read more

Workflows and Checklists Can’t Match Automation in Privacy Incident Response

Performing a multi-factor risk assessment to determine whether an incident involving PII and/or PHI requires notification to regulatory bodies isn’t just a good practice for privacy programs–it’s a requirement for documenting and demonstrating compliance with data breach laws. Due to the misconception that any incident involving sensitive, regulated data is automatically a notifiable breach, it is critical that every incident undergo a compliant multi-factor risk assessment to establish your burden of proof – particularly when deciding not to notify because you were able to properly mitigate the risk as permitted by law.

Read more

Upcoming Webinar: GDPR and Incident Response

The clock is ticking - the deadline to comply with the General Data Protection Regulation (GDPR) is now less than a year away, and having an incident response plan in place and ready to implement should be a primary item on your preparation checklist. With notification timelines of 72 hours, and fines that could reach 4% of global annual revenue, the risk of noncompliance is significant.

Read more