Tueoris Blog - Our Thoughts On Information Security and Privacy

Security Due-Diligence For Microsoft 365 User Organizations

Co-written by Monica Meiterman-Rodriguez (Privacy Consultant) and Brian Ching (Information Security and Privacy Analyst) A majority of global enterprises are now using Microsoft 365 (“M365”) as their primary office application. …

HealthIT / Interoperability / Patient Access

Healthcare Interoperability and Information Security : It Is Not About Compliance

Rarely do we encounter regulations that also have the potential of spurring innovation and generating significant positive outcomes in health, wellness and indeed the larger economy. That is exactly the nature …

HealthIT

Healthcare Interoperability: Preparing to Meet New Privacy and Security Obligations

Written by Dan Goldstein (Partner and Co-Founder), Kamal Govindaswamy (Partner and Co-Founder) and Monica Meiterman-Rodriguez (Privacy Consultant). Healthcare Information Technology (Health IT) in the United States has undergone considerable change …

GDPR / Privacy / Regulatory Compliance

SCCs under Scrutiny: Transfer Strategies for US Companies Contracting with EU Service Providers

For many US-based multinational organizations, EU-approved Standard Contractual Clauses (“SCCs”) have long represented a relatively straightforward solution for the compliant transfer of personal data of EU residents to the organizations’ …

GRC / Meaningful Outcomes - Information Security

How can Infosec GRC Deliver Wins in Risk Management?

Information security (infosec) risk management can often seem overwhelming and hard. Organizations can spend considerable resources on infosec programs or solutions, yet they may have challenges in implementing commensurate and demonstrable …

CCPA / Privacy / Uncategorized

Your Cookies Banners are Not Enough: How to Gain True Compliance with Cookies Requirements

It’s become increasingly clear that true compliance with applicable cookies requirements is no easy task. Sorting through the requirements of General Data Protection Regulation (“GDPR”), the ePrivacy Directive and now …

Uncategorized

NY SHIELD Act: Keeping Your Business Compliant

On March 21, 2020, New York’s Stop Hacks and Improve Electronic Data Security Act (“SHIELD Act”) went into effect, amending New York’s data breach notification law and imposing new …

CCPA / Data Breaches / Information Risk / Privacy / Risk Assessment / Uncategorized

Building the Privacy Balance Sheet in VC and PE Portfolios

By Rob McWilliams, Consultant – Tueoris In a global economy that is more reliant than ever on digital information, personal data is a high-value asset that carries corresponding risks. …

Tueoris Blog – Our Thoughts On Information Security and Privacy