GDPR: How to Achieve Compliance with Minimal Effort
It has been 2 years since GDPR came into effect and it seems privacy and data protection have never been more important. During this period, many companies like British Airways,…
How to Easily Cover the New DiGAV Data Protection Requirements
It is no secret that the German healthcare sector is heavily regulated in all possible aspects. The new Digital Health Applications Ordinance (DiGAV) of 21st April 2020 allows only approved…
Technical Guide to Protecting Voter Registration Databases
The US presidential election is in a few months and although the coronavirus is currently occupying everyone’s attention, it will soon be shifting to the election. And among the chief…
Webinar: Privacy in Time of Pandemic
In light of the COVID-19 pandemic, governments and corporations leverage contact tracing mobile applications to help health authorities overcome the crisis. Those apps process vast amounts of sensitive personal data and…
VPN Logs: Best Practices of Monitoring and Detecting Anomalies
VPN in Time of Pandemic: Best Practices In the times of the COVID-19 crisis, many employees are working from home. The general best practice is to allow them to connect…
GDPR: Compliance, Best Practices, Security Safeguards
Privacy and data protection have never been more important. From anxious consumers to activist regulators, everybody seems to have data protection on their minds. The proliferation of regulations and the…
Audit Trail – Purpose, Importance and Best Practices
When a person hears the term “audit”, the first association is related to paper documentation requested, reviewed, and analyzed by the audit department on a regular basis or in case…
The Role of Accountability in Data Privacy As Seen in GDPR and CCPA
Privacy legislation around the world is different in its technicalities but has a lot in common. The most famous recent laws are GDPR (EU but with extra-territorial effect) and CCPA…
Log Integrity: How SIEMs Address the Issue and Is It Enough?
Log Integrity Capabilities of SIEMs Log integrity and non-repudiation are key properties of audit logs. As SIEMs are usually the way to collect audit logs (among many other things) in large organizations, we…
Audit Trail In New PSD2 Requirements: EBA Guidelines on ICT and Security Risk Management
The financial sector is heavily regulated in all aspects imaginable. We have previously covered PSD2 and the corresponding EBA guidelines with regard to having a secure audit trail and related security functionalities.…
Webinar: Audit Trail in Large Organisations
Many organizations understand that the integrity of their audit trail is important only after a security incident takes place and they realize they cannot rely on their audit logs. Having…
The 2020 Alarming Trends in GDPR Fines and How to Avoid Them
It’s been almost two years since GDPR came into force. During this period, many huge companies were under the hackers’ radar and they suffered from losing both reputation and financial…