The Indian data protection legal regime is proposed to undergo a major overhaul with the enforcement of the Digital Personal Data Protection Act.
This article discusses in-house counsel internal strategies for compliance, including training of key stakeholders and conducting gap assessments.
Learn ten tips for in-house lawyers on how they can help their organization prepare for responding to potential data breaches and incidents.
This quick reference guide provides information related to data breach notification laws. It includes a list of data breach reporting deadlines for state and federal agencies.
This is a sample letter for notifying individuals that their personal information may have been subject to unauthorized access or disclosure as the result of a data breach.
This is sample tool helping organizations assess whether a security incident involving personal information would require notification under the HIPAA breach notification rule (under the US Health Insurance Portability and Accountability Act).
The threat of ransomware attacks and their potential damage on organizations continues. This checklist includes steps organizations can take to minimize the likelihood and the effects of a successful attack.
This sample can be used to obtain consent to use an employee's name, image, or testimonial for a specific purpose.
Gain a baseline understanding of cybersecurity strategies. Learn tips on strengthening your organization's cybersecurity practices, training employees, preparing for data breaches, evaluating insurance policies, responding to cyber incidents, and addressing cybersecurity in contracts.
In development or update of a records program it may appear that once a company has its policies and processes, roadmap, tools, and technology in place, some may believe they are done. However, here is still a critical task remaining: employee behavior change management.
Organization’s records retention schedules need to be synchronized with assurance current and emerging privacy laws . Records retention laws and regulations may require companies to retain records for a certain number of years, driven by literally thousands of record retention regulations. These requirements may override consumer deletion requests of their personal information.