Blog: Legal Requirements
Page 10
Center for Internet Security (CIS) Controls
Information security is more important than ever. Practically every business should pursue an information security framework in order to meet its legal obligations, protect its business assets, and secure its customers' personal information. The Center for Internet Security (CIS) Controls are an excellent starting point for any organization wish to improve...
Vermont Security Breach Notice Act
Over the last few years, data breaches increased worldwide. Even though many governments have placed a greater emphasis on securing data, hackers are almost always ahead of the curve, with security professionals playing catch-up. Business owners and leaders of organizations worldwide have found cybercriminals applying techniques such as supply chain attacks,...
The Draft UK Adequacy Decision: What's Next?
Many organizations were relieved to learn that the European Commission has adopted a draft adequacy decision for the UK. If approved, the adequacy decision would enable organizations to continue transferring personal data from the EEA to the UK without impediment. But the decision isn't final. There are many issues with the...
Legal Considerations Before Launching a New Website
Are you launching a new website? Whether it's a simple blog, an ecommerce store, or a community message board, you must consider your legal position. From privacy to consumer protection to copyright, there are many ways in which the law can affect website operators. This legal landscape might not be as daunting...
Privacy Law Requirements When Selling an Online Business
When selling your business as part of a bankruptcy, merger, or acquisition process, the personal information you control may be considered an asset. But personal information isn't just any asset: Its sale has implications for your customers' rights and privacy. Certain rules apply to the sale of personal information under laws...
French Cookie Compliance 2021 Crackdown
Website operators offering services to people in the EU must comply with EU law. The relevant laws are the ePrivacy Directive and the General Data Protection Regulation (GDPR). These laws make it clear that the use of non-essential cookies requires opt-in consent. But many, if not most, websites remain non-compliant with...