nvi - kn

It’s Been 5 Years Since GDPR Lauched. Are You Deleting Personal Data Like You’re Supposed To?

Five years have passed since the introduction of GDPR in Europe, heightening awareness about consumers’ personal data in the hands of businesses. This in turn has paved the way for increased regulations outside of Europe, including the CPRA, and individual state mandates which grant consumers, patients, and employees the power to request the deletion of their personal data from a company’s records. Businesses must respond swiftly to these requests while also balancing records retention and other legal requirements. The CPRA, as an amendment to the CCPA, and the GDPR both emphasize transparency and the rights of individuals concerning their data. However, despite looming penalties, the lack of significant enforcement of these regulations coupled by the extreme difficultly of properly implementing these controls, has led many businesses to lag in implementing proper controls for compliance.

Roy Golombick
Read More

WHAT IS DATA RISK INTELLIGENCE (DRI)?

Taking a Data First Approach to Optimize Data Protection Controls

In our previous blog, ‘Data Risk Intelligence’ vs. ‘Data Security,’ we discussed the definition and importance of data visibility. We discussed legacy, cyber-focused controls vendors (e.g., Varonis) as well as privacy-focused vendors (e.g., BigID ) that take a tactical approach for securing “some” data as opposed to “all” data. As one of our music media customers recently stated. “It’s the blind spots that gets you. If you don’t know what you don’t know, that’s where you’re going to get caught.” This is exactly what data risk intelligence is all about. NVISIONx uses a strategic, “data first” approach of “knowing” your data before configuring controls to protect them.

Charles
Read More

TEAM WITH BUSINESS TO GAIN CONTROL OF DATA RISKS

After nearly two decades of data privacy compliance regulations to satisfy mandates such as Sarbanes-Oxley and HIPAA, privacy breaches remain a leading business concern. It is evident that regulated data remains challenging to protect and compliance “checkbox” tools such as DLP is less data loss prevention and more data loss watch. Likewise, the valuable intellectual property (IP), confidential business strategies, and sensitive board communications that are critical to companies’ competitive strength and directly contribute to the corporate revenues have far less focus and resources. Yet, more and more, these are the crown jewels that nation-states and cyber criminals are looking to steal and monetize.  

chris
Read More