icon

Articles by tag "compliance"

9/17/2018 Compliance

Ask Our VP of Compliance: September 2018

In 2018, one thing is for certain: changes are happening—fast. Technology changes, as usual, are the focus this year as we watch new innovations unfold, new products emerge, and businesses take hold of new opportunities. However, tech isn’t the only thing changing rapidly. This year, Digital Edge’s Compliance articles have covered brand new regulations that have taken effect, which are likely to have impacted your business. 

 

Businesses must be aware of new laws and policy changes, no matter where they operate or what kind of business it is. A recent article published by Business News Daily says it best, “Staying apprised of policy changes could be the difference between gaining a competitive edge or falling behind due to compliance issues or strategic missteps.”

 

But, what about IT laws and regulations that already exist? Are you aware of what guidelines you should already be following? That is why, Digital Edge's VP of Compliance breaks down all the laws in this months Ask Our VP of Compliance!

9/4/2018 Compliance

DFS 500 Cyber Security Regulation Compliance Deadline: September 4th

Digital Edge Cybersecurity Compliance Team wants to remind you that all DFS Regulated Financial Services Companies are required to comply with the Regulation’s Governance Policies and Procedures, as well as Risk Based Monitoring Systems Requirements and Encryption Programs for Nonpublic Information by September 4, 2018.

 

Beginning on September 4, 2018, banks, insurance companies, and other financial services institutions regulated by DFS are required to have come into compliance with several additional provisions of the cybersecurity regulation that are vital to the governance and components of a robust financial services cybersecurity program.

 

For more information on this regulation deadline, please read more here!

 

As cybersecurity incidents continue to increase in frequency and severity, public companies and financial institutions should expect and prepare for increased regulatory scrutiny in the months ahead.

 

Digital Edge is an expert in ISO standards, and is certified by the International Standard Organization on Information Security and Quality (ISO 27001). There is a clear crosswalk between DFS law and ISO standards. Digital Edge will help to implement policies, standards and practices to cover all DFS requirements based on International Standards Organization framework.

 

Contact us today to further explore how our team can provide your business with an unparalleled cybersecurity solution, with our continued focus on StabilitySecurityEfficiency and Compliance

8/31/2018 Compliance

Ask Our VP of Compliance: August 2018

"California’s New Data Privacy Law”

Recently, California established a new data privacy law regarding the rights of consumers over their personal information. Set to take effect in 2020, this new law will affect companies in the digital sector (who have Californian clients) by forcing them to comply with higher privacy standards. Consumers will have to be given the option to opt-out of sharing personal information, as well as the right to prohibit the sale of their information if they do choose to share it.

So, what does this mean for businesses? Many businesses will have to undergo major changes by modifying their infrastructures in order to adhere to the new California law.

Find out more as Digital Edge's VP of Compliance answers some key questions regarding this significant change to data privacy in the US.

  • Who does this law apply to?
  • What is meant by “personal information”?
  • What are the requirements for collecting data on minors?
  • How will this law be enforced?
  • Can I set up a separate homepage for California consumers?
7/30/2018 Compliance

Ask Our VP of Compliance: July 2018

"HIPAA Compliance & HITRUST Common Security Framework”

In recent years, security breaches in the healthcare industry have become a lot more prevalent. The rise in data privacy violations, specifically infringements on the security of ePHIs (electronic Protected Health Information), has put millions of health records at risk. Surely, private data such as health information must always stay protected from unauthorized exposure, which is why HIPAA compliance and HITRUST CSF are so important. Digital Edge's VP of Compliance answers some key questions regarding HIPAA and HITRUST CSF!

7/24/2018 Compliance

The Equifax Effect: NYS DFS' Breach Response

The New York State Department of Financial Services (DFS) has recently issued a new regulation concerning Credit Reporting Agencies (CRA) with operations in New York, in response to the substantial data breach involving Equifax in 2017. This newly effective CRA regulation, called the “Registration Requirements and Prohibited Practices for Credit Reporting Agencies,” aims to protect New Yorkers from the possibility of data breaches by requiring credit reporting agencies to comply with the NYS DFS 500 Cybersecurity Regulations and to register with the DFS annually.

 

This announcement was made by NYS DFS Monday, July 23rd and will be implemented in 4 phases, the first one beginning in November. Digital Edge wants to inform all credit reporting agencies of this new requirement and offer our knowledge on DFS500 regulations. Learn more about this new regulation by reading the full article! 

 

Digital Edge is an expert in ISO standards, and is certified by the International Standard Organization on Information Security and Quality (ISO 27001). There is a clear crosswalk between DFS law and ISO standards. Digital Edge will help to implement policies, standards and practices to cover all DFS requirements based on International Standards Organization framework.

6/1/2018 Newsletters

Digital Edge Successfully Passed ISO 9001:2015 Audit!

On Tuesday, May 29th, Digital Edge passed the International Organization for Standardization’s (ISO) Quality Management Surveillance 1 Audit using the 9001:2015 framework! ISO is an independent, non-governmental international organization with a membership of 161 national standard bodies. ISO is credited for publishing more than 2100 international standards, covering almost every industry, from technology, to food safety, to aviation and healthcare.
 
Digital Edge is also certified in the ISO 27001:2013 framework for Information Security Management. The ISO 27001 is a specification for an information security management system (ISMS). Digital Edge protects businesses from threats, including internet fraud, hacking, overseeing of transactions and other cyber security threats. Digital Edge guarantees our clients are receiving outstanding services. 
 
Digital Edge is offering assistance in becoming compliant for any type of standard or certification. Our VP of Compliance is knowledgeable in ISO, DFS, NIST, HIPPA, GDPR, as well as any other standard our clients want to be compliant with. Digital Edge also sends out monthly newsletters informing them about most asked questions regarding compliance and any questions submitted. Check out our Compliance page on our website!
 

 

5/24/2018 Compliance

Ask Our VP of Compliance: May 2018

"GDPR"

With the General Data Protection Regulation (GDPR) legislation set to go into effect on May 25th of this year, it’s no surprise that there has been a plethora of questions come our way regarding this data protection regulations. Digital Edge's VP of Compliance answers the most commonly asked questions! 

 

5/22/2018 Compliance

Digital Edge Green Policy

Author: Danielle Johnsen (VP of Compliance)
Date: 22 May 2018
Version: 2.4

This document defines Digital Edge’s Green Policy.

5/22/2018 Compliance

Are You Ready for GDPR on May 25th?

Digital Edge is always working to stay compliant, which helps make compliance easier for your business.

5/17/2018 Compliance

Risk Driven Information Technology Organization

Or one may say Compliance Driven IT organization. As in the core of any today’s compliance lays Risk Management.

This article explains how to setup Risk Management practices for Cyber Security management. When it comes to Cyber Securty it's best to prepare for the worst-case scenario. It'll guide you on how to find ways to identify threats, face them and prepare to defend your business as well as give you templates to download to start your own risk management practice!

"The best garison is not the one that has lots of weapons but the one who has lot training."  

-M. Petrov CEO

 

Let's talk: 800-714-5143

Speak to a specialist