From the time that the European Union General Data Protection Regulation began to be enforced in May of 2018, there has been an issue with the transfer of personally identifiable information of residents of the European Economic Area (EEA) to the United States. The underlying cause of the issue is the view under EU law […]
Sh*t Rolls Down Hill
We have all had the moment where we are downhill of an avalanche of a problem that is rolling our way and gaining steam. This is otherwise knowns as the snowball effect. There are more examples than days in a year, but let’s consider one that is greatly influenced by the times we now live […]
Too Big to Fail; Too Big to Serve?
Recall back in the 2008 financial crisis that a group of huge banks were designated as “too big to fail” such that they warranted a government bailout for the impact of their past risky and aggressive lending practices? We were told that these banks had to be saved to mitigate the impact on the overall […]
Millenniums of Proof – Pillars Lead to Longevity
3 Pillars of Compliance: Compliance is not typically top-of-mind until it cripples your business. Our most common prospect calls at BostonCOMPLY come from anxious suppliers who are being threatened to have their contracts cut off, POs frozen or having revenue clawed back because they can’t prove they are meeting agreed-to compliance demands of their customers […]
Obstacles to Business CCPA Compliance
In October of 2019, the data security software company Egress surveyed security professionals about their plans to become compliant with the California Consumer Privacy Act (CCPA). The legislation became law on January 1st of this year, but at least half of US companies are still struggling to comply. Why is this? The Egress survey found […]
Top 10 HIPAA compliance violations
Is your company in danger of violating HIPPA (Health Insurance Portability and Accountability Act) compliance regulations? Here are the 10 most common violations reported by the HIPAA Journal: Snooping on Healthcare Records Failure to perform an organization-wide risk analysis Exceeding the 60-day deadline for issuing breach notifications Failure to manage security risks/lack of a risk […]