Blog - Page 63

Legal articles in easy to understand language.

Center for Internet Security (CIS) Controls

Center for Internet Security (CIS) Controls

Information security is more important than ever. Practically every business should pursue an information security framework in order to meet its legal obligations, protect its business assets, and secure its customers' personal information. The Center for Internet Security (CIS) Controls are an excellent starting point for any organization wish to improve...

FAQ: Handling Trademark Violations in Canada

FAQ: Handling Trademark Violations in Canada

Every business owner ought to think about the use of trademarks as part of their overall branding strategy. That is true throughout North America, but what happens if you own and operate a company in Canada and believe someone has violated your trademark? Your customers must be able to recognize and...

Vermont Security Breach Notice Act

Vermont Security Breach Notice Act

Over the last few years, data breaches increased worldwide. Even though many governments have placed a greater emphasis on securing data, hackers are almost always ahead of the curve, with security professionals playing catch-up. Business owners and leaders of organizations worldwide have found cybercriminals applying techniques such as supply chain attacks,...

Oregon Consumer Privacy Act (OCPA)

Oregon Consumer Privacy Act (OCPA)

Senate Bill 619, or the Oregon Consumer Privacy Act (OCPA), was passed on August 1, 2023. The law goes into effect January 1, 2024. This article will cover everything you need to know about the Oregon Consumer Privacy Act (OCPA) including who it applies to, how to comply with the law,...

Is a Privacy Policy the Same as a Privacy Notice or Privacy Statement?

Is a Privacy Policy the Same as a Privacy Notice or Privacy Statement?

Practically every business needs a page on its website or app explaining how it collects and uses personal data. Some businesses call this transparency information a "Privacy Policy." Some call it a "Privacy Notice" and some call it a "Privacy Statement." There are other names, too, like "Fair Processing Notice" or...

The Draft UK Adequacy Decision: What's Next?

The Draft UK Adequacy Decision: What's Next?

Many organizations were relieved to learn that the European Commission has adopted a draft adequacy decision for the UK. If approved, the adequacy decision would enable organizations to continue transferring personal data from the EEA to the UK without impediment. But the decision isn't final. There are many issues with the...