compliance obligations

Back in August, HITRUST began supporting the security requirements of the Trusted Exchange Framework and Common Agreement (TEFCA) program. The TEFCA Recognized Coordinating...

There are plenty of industry-related regulations your company must follow, and one of them is likely the HITRUST Common Security Framework (CSF). However,...

It is official – 10 percent of U.S. states have data privacy legislation on the books.    About a month ago, Connecticut joined California, Virginia,...

The National Institute of Standards and Technology (NIST) has released the finalized edition of its latest guidance for companies to assess internal security...

For many organizations, the thought of maintaining compliance with regulations specific to their industry immediately brings up visions of spending huge amounts of...

In July, Colorado joined Virginia and California in passing a comprehensive privacy law. The Colorado Privacy Act (CPA) will go into effect on...

The National Institute of Standards and Technology plans to publish various volumes of Cybersecurity Practice Guides throughout 2022 and beyond. This move comes as NIST’s Cybersecurity...

If you’re a Department of Defense contractor, you’ve had the Cybersecurity Maturity Model Certification (CMMC) on the brain for some time. In fact, 2021 was...

Just as organizations throughout the world were getting acclimated to the rigorous standards in the EU’s General Data Protection Regulation (GDPR), China’s Personal Information...

It's only September 1st and Microsoft is already announcing updates to the Microsoft 365 product suite. Beginning today, Microsoft is making an important...