All Articles

You have your corporate email defenses lined up. While you may be using an out of the box product such as Microsoft O365 or something more sophisticated like ProofPoint – here is what you need to know.

Although you might be as safe and secure as possible you should still be aware of the vulnerablities that exist and can affect you.  

Unless users are restricted from using mobile email apps, there is nothing that can protect you. This risk extends even to disclosure of your corporate authentication. 

Click here to read about this potential threat.

Cyber security is the protection of systems, networks and data from attack. Cyber security audits examine the threats, vulnerabilities and risks facing your organization and addresses mitigating these risks. When assessing your cyber security there are three key areas to take into account: people, processes and technology. Thorough audits should be performed regularly not only to protect your organization but also to comply with legislation regarding protection of personal data. Digital Edge's VP of Compliance answers the most important questions regarding audits: 

• What is the difference between a cyber security audit and a cyber security assessment?
• What do I need to have in place for Incident Response?
• What if users are my Biggest Security Risk?
• Why are Cyber Security Audits Important?

Digital Edge’s HIPAA Compliance Self-Assessment

In recent years, security breaches in the healthcare industry have become a lot more prevalent. The rise in data privacy violations, specifically infringements on the security of ePHIs (electronic Protected Health Information), has put millions of health records at risk. Surely, private data such as health information must always stay protected from unauthorized exposure, which is why HIPAA compliance and is critical.

HIPAA, or the Health Insurance Portability and Accountability Act, was passed to set the standards for the protection of sensitive healthcare information. It involves setting administrative, technical, and physical safeguards for the security of data.

Unsure if you are following the law correctly? Check out Digital Edge’s HIPAA Compliance Self-Assessment here!

Don’t wait until it’s too late. Tomorrow starts now! Prioritize your compliance with HIPAA mandates, and establish a credible HIPAA program. Digital Edge is an expert in HIPAA standards. Our team will help to implement policies, standards and practices to cover all HIPAA requirements. 

Contact us today to further explore how our team can provide your business with an unparalleled cybersecurity  compliance solution, with our continued focus on Stability, Security, Efficiency and Compliance. 

All 50 states, the District of Columbia, Guam, Puerto Rico and the Virgin Islands have enacted legislation requiring private or governmental entities to notify individuals of security breaches of information involving personally identifiable information.

Security breach laws typically have provisions regarding who must comply with the law (e.g., businesses, data/ information brokers, government entities, etc); definitions of “personal information” (e.g., name combined with SSN, driver’s license or state ID, account numbers, etc.); what constitutes a breach (e.g., unauthorized acquisition of data); requirements for notice (e.g., timing or method of notice, who must be notified); and exemptions (e.g., for encrypted information).

Introduction

Digital Edge is committed to maintaining a workplace free from sexual harassment. Sexual harassment is a form of workplace discrimination. Digital Edge has a zero-tolerance policy for any form of sexual harassment, and all employees are required to work in a manner that prevents sexual harassment in the workplace. This Policy is one component of Digital Edge’s commitment to a discrimination-free work environment.

Sexual harassment is against the law. All employees have a legal right to a workplace free from sexual harassment, and employees can enforce this right by filing a complaint internally with Digital Edge, or with a government agency or in court under federal, state or local antidiscrimination laws.

In 2018, one thing is for certain: changes are happening—fast. Technology changes, as usual, are the focus this year as we watch new innovations unfold, new products emerge, and businesses take hold of new opportunities. However, tech isn’t the only thing changing rapidly. This year, Digital Edge’s Compliance articles have covered brand new regulations that have taken effect, which are likely to have impacted your business. 

Businesses must be aware of new laws and policy changes, no matter where they operate or what kind of business it is. A recent article published by Business News Daily says it best, “Staying apprised of policy changes could be the difference between gaining a competitive edge or falling behind due to compliance issues or strategic missteps.”

But, what about IT laws and regulations that already exist? Are you aware of what guidelines you should already be following? That is why, Digital Edge's VP of Compliance breaks down all the laws in this months Ask Our VP of Compliance!

• What are the broadly applicable laws and regulations that we need to follow?
• What are the industry-specific regulations and guidelines?
• Are there other state regulations besides NYS DFS 500 and California Data Protection Act? 
• In addition to GDPR, are there other international security and privacy laws?

By tomorrow, Hurricane Florence is expected to make landfall in North Carolina, South Carolina and Virginia. With strong winds predicted up to 130 mph, the storm should make its first landfall by noon on Thursday, September 13, 2018. While the storm’s path is still progressing, over 1 million people are facing mandatory evacuations.

Over the past few days, the Digital Edge Disaster Recovery Team has been virtually migrating many of its Carolinian and Virginian clients with onsite systems to virtual servers in the New York Area. Digital Edge is ensuring that business data, backups, applications, and server images are safely stored off-site. If requested, Digital Edge can coordinate the process of moving any critical systems to our Cloud environment.  

If you feel that your business is in need of Digital Edge’s Disaster Recovery assistance in preparing for Hurricane Florence, please contact the Digital Edge team. 

You might’ve configured your email logging system incorrectly. How would you know until you got hacked? It’s fine -  you have cyber security insurance that will cover you right? WRONG. Recently, an undisclosed client experienced a major breach and was denied of their claim. Having cybersecurity insurance doesn't guarantee the safety net you might think it does -  not unless you meet the basic security guidelines.  Digital Edge’s Cybersecurity and Compliance experts are available to help you meet these standards in addition to protecting your infrastructure. 

Digital Edge Cybersecurity Compliance Team wants to remind you that all DFS Regulated Financial Services Companies are required to comply with the Regulation’s Governance Policies and Procedures, as well as Risk Based Monitoring Systems Requirements and Encryption Programs for Nonpublic Information by September 4, 2018.

Beginning on September 4, 2018, banks, insurance companies, and other financial services institutions regulated by DFS are required to have come into compliance with several additional provisions of the cybersecurity regulation that are vital to the governance and components of a robust financial services cybersecurity program.

For more information on this regulation deadline, please read more here!

As cybersecurity incidents continue to increase in frequency and severity, public companies and financial institutions should expect and prepare for increased regulatory scrutiny in the months ahead.

Digital Edge is an expert in ISO standards, and is certified by the International Standard Organization on Information Security and Quality (ISO 27001). There is a clear crosswalk between DFS law and ISO standards. Digital Edge will help to implement policies, standards and practices to cover all DFS requirements based on International Standards Organization framework.

Contact us today to further explore how our team can provide your business with an unparalleled cybersecurity solution, with our continued focus on Stability, Security, Efficiency and Compliance. 

"California’s New Data Privacy Law”

Recently, California established a new data privacy law regarding the rights of consumers over their personal information. Set to take effect in 2020, this new law will affect companies in the digital sector (who have Californian clients) by forcing them to comply with higher privacy standards. Consumers will have to be given the option to opt-out of sharing personal information, as well as the right to prohibit the sale of their information if they do choose to share it.

So, what does this mean for businesses? Many businesses will have to undergo major changes by modifying their infrastructures in order to adhere to the new California law.

Find out more as Digital Edge's VP of Compliance answers some key questions regarding this significant change to data privacy in the US.

• Who does this law apply to?
• What is meant by “personal information”?
• What are the requirements for collecting data on minors?
• How will this law be enforced?
• Can I set up a separate homepage for California consumers?