Should you trust Alexa with your health information?

By now you’ve likely heard that Amazon is moving into the HIPAA space with Alexa.  In conjunction with their partners, ...
Read More

Who needs to comply with the CCPA? Hint: Not only California.

The first thing to realize about California Consumer Privacy Act (CCPA) compliance is that you don’t have to be a ...
Read More

Consumers in the Regulatory Driver’s Seat: Protecting Personal Data Privacy

Consumers on the warpath to protect personal data privacy are making strides in state houses. For instance, here's an update ...
Read More

How can your Third Party Vendor help or hurt your SOC 2 status?

Are you tracking the moving target of your third party vendors’ privacy and security practices? You may want to get ...
Read More

How to Harden Laptops, Tablets & Smartphones to Protect PHI

When your goal is to protect PHI on laptops and mobile devices, keep in mind that information security is only ...
Read More

5 Ways You Can Reduce Phishing Risk

Malware attacks via phishing knocked it out of the park in 2018. Phishing attacks account for an inordinate number of ...
Read More

Data Privacy & Security: 2018 Reflections & the Year Ahead

It’s been a tumultuous 2018 for data privacy and information security. New regulations here and abroad show that data privacy ...
Read More

Word of Warning: join.me Does Not Sign Business Associate Agreements

A few days ago, after making multiple attempts on behalf of a client to verify and clarify how join.me supports ...
Read More

Policy Controls: Why The Whole World Wants You to Write Policies

As a follow-up to Chris’s 2018 Privacy & Security Forum update, I’ll focus on policy controls, because the entire world ...
Read More

Privacy & Security Forum Update: OCR Activity, Audit Protocols, Ransomware & the HIPAA Security Rule

Julia and I had the pleasure of attending the 2018 Privacy & Security Forum a couple of weeks ago.  One ...
Read More

Recent Posts

Archives