Preparing for the CFPB: Vendor Compliance Management

by Sarah Harvey / June 13, 2023

According to CFPB Bulletin 2012-3, companies must “oversee” their vendors “in a manner that ensures compliance with Federal consumer financial law…The CFPB’s exercise of its supervisory and enforcement authority will closely reflect this orientation and emphasis.” An effective risk management strategy includes the assessment and monitoring of vendor compliance; in accordance with your company’s formally written policies and procedures. Today’s compliance program certainly involves an ongoing struggle in organizing vendor…

What Role Does Speech Analytics Play in Contact Center Compliance?

by Jason Napierski from CallMiner / June 15, 2023

Collections contact centers and Accounts Receivables Management (ARM) firms face a constant challenge: maximizing payments while staying compliant and up-to-date with on new rules and regulations.  The ramifications of neglecting to do so can be severe: The latest WebRecon statistics show 3,204 consumers filed Consumer Financial Protection Bureau (CFPB) complaints against debt collectors in January 2015 and roughly 929 consumers filed lawsuits under consumer statutes during that same time period.…

Tips for Securing Healthcare Data

by Sarah Harvey / June 15, 2023

It's one thing to suffer one data breach - there is room to recover. Will Anthem survive a second breach? Don't let this happen to you. With the Anthem breach still on the forefront of everyone's minds, as well as the upcoming supervision from the OCR and the new phase of HIPAA audits, we have put together some tips to help get you thinking about what you can do now to…

5 Steps to Mastering a Risk Assessment

by Sarah Harvey / June 14, 2023

Performing a Risk Assessment is a critical component of any Information Security Program. It’s mandated by several frameworks (SSAE 16, SOC 2, PCI DSS, ISO 27001, HIPAA, FISMA). In order to comply with those frameworks, your organization has to complete a risk assessment, and then assess and address the risks by implementing security controls. The Risk Assessment process is a constantly moving and evolving process for an organization. So, where…

Are you Ready for an Onsite Audit from the OCR?

by Sarah Harvey / June 13, 2023

Phase 2 of HIPAA Audit Program Expected in 2015 The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) has always enforced HIPAA compliance. Recently, they have announced plans to proceed with Phase 2 of the HIPAA audit program, a more proactive approach to overseeing HIPAA compliance. Supervision is coming. The OCR is determined to begin performing periodic audits to ensure that Covered Entities and Business Associates…