Blog - breach notification laws

The Missing Piece in Your Privacy Stack

Third-party data breaches are rising—and your organization could be next. Learn how to reduce risk, improve vendor oversight, and meet compliance deadlines using insights from the 2025 Privacy Incident Management Benchmarking Report.

Data Breaches 2023: Consequences of Non-Compliance with Privacy Laws

Beyond regulatory fines or even class action settlements, consequences of non-compliance with privacy laws often follow a brand for years in its wake. Continue reading for major data breaches to keep on your radar and steps you can take today to protect your customers and safeguard their trust.

Privacy Regulatory Trends: CPRA and Beyond

The CPRA came into effect on January 1, 2023. While the privacy law’s expanded privacy rights are great for consumers, it complicates the work of privacy teams, especially as other states adopt their own versions of these expansions. Continue reading to learn more about the CPRA and how you can simplify compliance.

How to Manage and Mitigate Third-Party Risk

Modern organizations may have hundreds, if not thousands, of third-party relationships. Without the help of automation, it would be nearly impossible to manage and mitigate third-party risk with service providers, vendors, supply-side partners, and demand-side partners. Continue reading to learn how to effectively manage and mitigate third-party risk.

Too Much or Too Little? The Risks of Under- or Over-Reporting Data Breaches

Given the complexity of breach notification laws, companies are often found under- or over-reporting data breaches.

7 Years of Insufficient Data Breach Response

7 years after the initial OWASP privacy risks report, insufficient data breach response remains #3 on the 2021 roundup. This blog explores how conditions have changed to make data breach management more difficult for privacy leaders and privacy incident response practices need to adapt to what’s happening now.