Investing Where It Matters: Unbounce’s Commitment to GDPR Compliance

by Sarah Harvey / December 16, 2022

There’s no doubt that the GDPR is reshaping the marketing industry, and yet many marketers remain unsure about what the law actually requires. The regulation is long, confusing, and in many areas, vague. Plus, there’s immediate tension between GDPR requirements and marketing principles. A marketer’s goal is to gain identification information, while GDPR’s goal is to limit identification information to what's strictly necessary. Let’s take a look at how Unbounce,…

California Consumer Privacy Act vs. GDPR: What Your Business Needs to Know

by Sarah Harvey / December 22, 2022

Data Privacy and Security in the US According to Pew Research Center, 64% of American adults have experienced data theft. Yahoo, eBay, Equifax, Target, Anthem, Home Depot – it has become habitual to worry about data breaches, identity theft, and other privacy concerns. With every new headline of a data breach, it seems like consumers are losing more control over what personal information is publicly available. At the same time,…

GDPR Readiness: Challenges for Organizations Outside of the EU

by Sarah Harvey / February 20, 2023

Although the EU’s General Data Protection Regulation (GDPR) enforcement deadline has passed, many non-EU organizations are still questioning what they need to do to ensure compliance. Do they need a designated representative? Where does their designated representative need to be located? Is a designated representative the same thing as a Data Protection Officer? Who do they need to notify that they have a designated representative? How do they do this?…

SOC 1 Compliance Checklist: Are You Prepared for a SOC 1 Audit?

by Sarah Harvey / April 12, 2023

What is a SOC 1 Audit? The SOC 1 audit is based on an attestation standard developed by the American Institute of Certified Public Accountants (AICPA) to be used in the auditing of third-party service organizations, whose services are relevant to their clients’ impact over financial reporting. A SOC 1 Type I report is an attestation of controls at a service organization at a specific point in time. It reports on…

Horror Stories – Magecart’s Malicious Skimming Campaign

by Sarah Harvey / June 14, 2023

In September, British Airways announced that 380,000 transactions were compromised during a breach that took place between August 21 and September 5. Fortunately, no travel or passport details were compromised, but payment information was obtained through digital skimming of the airline’s website and app. The UK’s National Crime Agency, National Cybersecurity Centre, and Information Commissioner’s Office are investigating this incident. This breach is being linked to Magecart, a threat group that…