Compliance | News, how-tos, features, reviews, and videos
The Data Protection Commission alleges that X’s use of Grok violates GDPR guidelines on data protection and privacy and suggests a new version of Grok could worsen existing issues.
The proposed Digital Operational Resilience Act includes new incident response and third-party risk requirements for financial firms operating within the EU.
Proposed policy will have both positive and not-so-positive consequences for any organization serving Chinese consumers: Analyst
The ruling means the litigation — which began in 2020 — can continue. The case involves whether cookies collecting user information violates GDPR and whether the two companies are responsible for what web site operators do.
CISA’s massive rulemaking will create the first US cyber incident and ransomware payment reporting mechanism that promises to radically overhaul the workloads of most cybersecurity professionals.
GDPR is a regulation that requires businesses to protect the personal data and privacy of EU citizens for transactions that occur within EU member states. And non-compliance could cost companies dearly. Here’s what every company that does busin
Anyone who takes credit card payments needs to adhere to PCI DSS—and may face fines if they fail
With pressure from regulators, evolving threats and the need for stronger oversight, integrating cybersecurity risks into GRC programs requires alignment between both areas.
The access governance capability can allow access risk visibility, attack surface reduction, access right management, zero-trust enforcement, and insider risk mitigation.
What producers of IoT devices and software need to know about the growing movement to create a cybersecurity rating system similar to the Energy Star program for appliances.