What you need to know about the PCI DSS and PII


Personally Identifiable Information (PII) can mean a number of things but is an important piece of any security or privacy-focused regulation, such as PCI DSS. The Payment Card Industry Data Security Standard (PCI DSS) comprises a set of policies and procedures that aim to protect credit, debit, and cash card… Read more »

How to secure e-PHI true to the Security Rule under HIPAA


When working for a care provider, it’s important you understand all of HIPAA’s requirements, but many of your responsibilities, as a security professional, reside in the Security Rule. Whether you work in the healthcare industry or have been reading up on the industry, you’ve probably heard the acronym HIPAA occasionally… Read more »

7 Ways to Tell your System is Compromised

system compromised

How do you tell if your computer or accounts have been hacked? When we’re using our home computers, we don’t have an IT department to reach out to in order to troubleshoot our systems, servers and wi-fi for us. Below are seven, ways to tell for yourself if your system… Read more »

Spooky Stats for Cyber Security Awareness Month

cyber security awareness month

Spooky Stats for National Cyber Security Awareness Month The last day of Cyber Security Awareness Month is upon us, so let’s round up the month with some cybersecurity numbers from 2018 so far. October was dedicated to creating awareness of the importance of cybersecurity. Here are some statistics from the… Read more »

GDPR by Department: GDPR for HR Professionals

GDPR for HR Professionals

GDPR is important for every department in an organization to understand. In this blog, we’ll look at the unique responsibilities of GDPR for HR Professionals. As you (should) well know by now, the General Data Protection Regulation (GDPR) went into effect today! Many companies have been scrambling to prepare: updating… Read more »

GDPR Day Has Commenced

GDPR day

GDPR Day has commenced May 25th is finally upon us, which means GDPR day has commenced. Many companies are likening GDPR to the dreaded Y2K we faced at the end of the last millennium.  Sure, it is true that they do share a sense of major consequences if requirements aren’t… Read more »

Do you need fresh consent from everyone to comply with GDPR?

Well the answer is not that simple because the GDPR has set the bar pretty high when it comes to consent. First off, if you already have an existing relationship with customers who have purchased goods or services from you, it may not be necessary to obtain fresh consent. Also… Read more »

What is considered personal data and what rights do individuals have?

The ultimate goal of the GDPR is to ensure that the private data of EU citizens remains just that — private. In this GDRP minute, we discuss what is considered data under the GDPR and what rights do individuals have when it comes to their data. The GDPR definition of… Read more »

Debunking the Top 7 GDPR Myths for Compliance Success

While the General Data Protection Regulation (GDPR) goes into effect May 25th, many companies are still struggling to make sense of the regulation and prepare for ongoing compliance. In this post, I hope to clear up some frequent questions by debunking popular GDPR myths. Below are my top seven GDPR… Read more »

The Need-to-Know Terms of the General Data Protection Regulation

GDPR Terminology

We’ve compiled our recent series of terms pertaining to the General Data Protection Regulation (GDPR). GDPR goes into effect May 25th, and many organizations are still struggling to meet the compliance standards outlined in it. We’ll soon be posting blogs about GDPR for different industries, and roles as well as… Read more »