We collaborate with the world's leading lawyers to deliver news tailored for you. Sign Up for any (or all) of our 25+ Newsletters. Some states have laws and ethical rules regarding solicitation and ...
The California Consumer Privacy Act’s (CCPA) cybersecurity audit regulations, finalized September 23, 2025, became effective January 1, 2026, establishing the first ...
In examining how the Office of Civil Rights administered its periodic Health Insurance Portability and Accountability Act audit program from January 2016 through December 2020, the U.S. Department of ...
The CCPA requires covered businesses to implement reasonable security procedures and practices appropriate to the nature of the personal information they control to protect it from unauthorized or ...
In the prior Part 4 of this series, we explained how CCPA cybersecurity audits are likely to surface in CalPrivacy and California Attorney General enforcement actions ...
Security is about alleviating risks. Proper security audits help organizations spot weak points in their systems, processes and controls that hackers could potentially exploit or that insider threats ...
The HHS’ Office for Civil Rights’ audit program was too narrow in scope to effectively assess data protections and reduce cyber risks in the healthcare sector, according to the report. The report, ...
The Federal Reserve Board and Consumer Financial Protection Bureau both have information security programs that are no longer effective, a government watchdog has found. On Monday, the Office of the ...