5 Things the Grinch Teaches us about Information Security

by Sarah Harvey / February 7, 2023

With the holiday season always comes a rise in cyber crime and data theft. With that in mind, it’s a perfect time to remind ourselves of important information security tips to keep us safe and secure this holiday. So don’t let the Grinch ruin your holiday. Here are 5 things the Grinch can teach us about information security: 1. Beware of Social Engineering “With this coat and this hat I…

Road to HIPAA Compliance: Trends in Enforcement Activity

by KirkpatrickPrice / December 19, 2022

A Conversation about Trends in HIPAA Enforcement Activity In this webinar, Joseph Kirkpatrick and Mark Hinely discuss historic and 2016 trends in OCR enforcement activity. 2016 was a record year for enforcement and these trends are the most direct way that the OCR can tell us what or where they’re looking.    Mark Hinely has chosen four cases to discuss that represent 2016 enforcement activity trends: UMass Health, St.…

Building Trust in your Brand: Stoneleigh Recovery Associates’ Commitment to Compliance through SOC Audits

by Sarah Harvey / December 19, 2022

Stoneleigh Recovery Associates, a third-party debt collection company, continues to show their commitment to compliance and their brand by the recent completion of their SOC 1 Type II and SOC 2 Type II audits. Headquartered in Lombard Illinois, Stoneleigh has been in business since 2007 and has been receiving third-party audits on their compliance since 2010. Understanding the importance of compliance as a critical business function has given Stoneleigh a…

Understanding the Audit Types for Debt Collectors and Collection Agencies

by Sarah Harvey / June 14, 2023

How SOC 1, SOC 2, PCI and FISMA Apply to Debt Collection If you’re performing collections, you’re no stranger to regulatory compliance and the proactive supervision of government agencies such as the Federal Trade Commission (FTC), Consumer Financial Protection Bureau (CFPB), and the Office for Civil Rights (OCR). It’s also critical to consider how you’re protecting consumer data and understand what information security audits are available and will best fit…

SOC 1 vs. SOC 2: Which SOC Report Do I Need?

by Sarah Harvey / December 19, 2022

SOC 1 vs. SOC 2 Reports: What's the Difference? As a service organization, you are familiar with audit requests from clients who are required to meet specific compliance and audit requirements, and you have most likely been asked whether your organization is SOC 1 compliant or SOC 2 compliant. We often get asked: What are the differences between a SOC 1 vs. SOC 2 audit? Which SOC report should you…