Breach Notification in New York: The SHIELD Act

by Sarah Harvey / December 15, 2022

On July 25, 2019, New York Governor Cuomo signed the Stop Hacks and Improve Electronic Data Security (SHIELD) Act which amends the state’s breach notification law in order to “impose stronger obligations on businesses handling private data to provide proper notification to affected consumers when there is a security breach.” The breach notification amendments took effect in October 2019, while the data security requirements will take effect on March 21,…

business people walking

Understanding Your Audit: Locations and Sampling

by Sarah Harvey / June 13, 2023

During the audit process, our qualified Information Security Specialists use best practices to determine the scope of the work. If you've never completed an audit, you’ve probably had questions about scoping and sampling. How many locations should be audited? Which locations are most important? How does an auditor develop a scope? What kind of sampling takes place during the audit? These are all valid questions asked by organizations undergoing an…

Most Common HIPAA Gaps

by Sarah Harvey / June 13, 2023

It’s not uncommon for healthcare breaches to make the headlines these days. Whether it’s a major breach like Anthem’s $16 million breach or a smaller HIPAA violation such as improper disposal of secure records, healthcare organizations are falling victim to security breaches at an alarming rate. According to IBM Security’s 2019 Cost of a Data Breach Report, the highest industry average cost of $6.45 million is the healthcare industry. Do…

4 Reasons the Online Audit Manager is the Audit Tool You’ve Been Missing

by Sarah Harvey / February 5, 2024

When you choose an audit partner, there are certain qualities that you’re likely looking for such as experience, attention to detail, quality, audit tools, and the firm’s audit processes. We know that there’s a lot of audit firms out there, making the decision that much harder. If it’s your first time undergoing an audit or even if you are familiar with the processes, narrowing down the right partner for your…

Trends in Privacy, Breach Notification, Data Security Legislation in 2019

by Sarah Harvey / December 15, 2022

It’s hard to keep track of the different privacy, breach notification, and data security laws that exist in each state – but that’s the job of a thorough, expert auditor. Because of technology advancements and the implementation of GDPR, the momentum to update, amend, and create new legislation is elevated right now. Our mission is to educate you on the latest trends, legislation, and threats so that you can meet…