Compliance Software » compliance

Final phase of Mass. data protection law kicks in March 1

compliancesoftware — Fri, 27 Jan 2012 17:27:00 +0000

All companies storing personal data on Massachusetts residents have just over a month to ensure that their contractors, suppliers, technology providers and other third parties comply with a provision of a state data breach law that went into effect in …

uPromise and FTC

compliancesoftware — Thu, 12 Jan 2012 16:07:58 +0000

The FTC alleged that after the personalized offers feature was enabled, extensive information was collected from the user and transmitted to Upromise, including the names of all websites visited, all links clicked by the user and information that users entered …

2012 Security Spending To Hold Strong

compliancesoftware — Fri, 18 Nov 2011 16:37:03 +0000

For 2012, 37% of information security professionals say their business plans to increase its security spending, while only 16% expect their security spending to decrease. The top drivers for spending increases are to address compliance, mobile devices, and data loss …

The (EMV/Contactless) World According To Visa « PCI Guru

compliancesoftware — Sat, 24 Sep 2011 15:18:06 +0000

The PCI SSC stated that while Visa is not requiring merchants to file a ROC or AOC, the merchant still has to ensure that it is PCI DSS compliant. This means that the merchant still must go through the PCI …

Agency to deliver shared governance, risk compliance service

compliancesoftware — Fri, 16 Sep 2011 12:00:44 +0000

CenITex, the Victorian Government’s shared services IT agency, will adopt a new IT governance, risk and compliance (ITGRC) package to improve its information security function. via Agency to deliver shared governance, risk compliance service.

VMware’s CP&C releases free Compliance Checker tool

compliancesoftware — Wed, 14 Sep 2011 12:07:38 +0000

The Compliance Checker runs an assessment on ESX/ESXi hosts managed by vCenter The assessment is based on a predefined subset of 29 of the vSphere 4.1 Security Hardening Guide rules and is run against the first 5 ESX/ESXi hosts found …

Google Apps and Google App Engine complete SSAE-16 audit

compliancesoftware — Thu, 11 Aug 2011 02:12:16 +0000

One of the ways our customers can be are assured their data is protected is through third-party audits and certifications. Since 2008, Google Apps has successfully undergone annual SAS 70 Type II audits. This year the SAS70 Type II audit …

OCR Deciding Whether To Run HIPAA Audits on Business Associates – iHealthBeat

compliancesoftware — Sat, 06 Aug 2011 03:14:42 +0000

An official at HHS Office for Civil Rights says the agency has not decided whether to include business associates in its HIPAA-compliance audit plans, HealthLeaders Media reports. via OCR Deciding Whether To Run HIPAA Audits on Business Associates – iHealthBeat.

AHA urges changes to proposed rule for PHI disclosures

compliancesoftware — Wed, 03 Aug 2011 19:38:16 +0000

The Department of Health and Human Services should not require hospitals and other entities covered by the Health Insurance Portability and Accountability Act to provide to individuals on request a report detailing all internal disclosures of their personal health information …

Free tool to find Credit Card numbers for #PCI Comlpliance

compliancesoftware — Sat, 02 Jul 2011 14:17:25 +0000

ControlCase Data Discovery enables large and small businesses and organizations to find credit and debit card information that could be stored in their systems in violation of the Payment Card Industry (PCI) Data Security Standard (DSS) Finding credit card data is one of the key …