Blog
Use of Clinical Trial Patient Data for Future Research
By Dan Goldstein (dan.goldstein@tueoris.com), Co-founder and Partner, Tueoris, LLC – www.tueoris.com It’s a well-known fact in the life sciences world that data collected today in a clinical trial can have …
HIPAA Breach Notifications 2020: Analysis, Observations and Recommendations
Health Information Security/Privacy professionals should be familiar with the HIPAA Breach Notification Rule, which requires HIPAA covered entities (CEs) and their business associates (BAs) to provide notification to U.S. Department …
TPRM : Improving Outcomes in the Ecosystem
Third-Party Risk Management (TPRM) is a key component of information security (infosec) programs and it requires significant focus. This is borne out by breaches in the news as well as known data …
EU Personal Data Transfers 2021: Planning for a Year of Increased Scrutiny
By Dan Goldstein, Co-Founder, Tueoris, LLC and Daniela Fábián Masoch, Founder FABIAN PRIVACY LEGAL dan.goldstein@tueoris.com / www.tueoris.com daniela.fabian@privacylegal.ch / www.privacylegal.ch As 2021 begins, ex-EU transfers of personal data continue to …
GDPR Code of Conduct : Current State and Considerations for Next Steps
Since the EU General Data Protection Regulations (“GDPR”) came into effect in 2018, there has been much discussion, but little action, with regard to Article 40 Codes of Conduct (”Codes”) …
TPRM : Need for Change and The Way Forward
Third-Party Risk Management (TPRM) is a key component of information security (infosec) programs and it requires significant focus. This is borne out by breaches in the news as well as known data …
Privacy Shield: Weighing the Risks and Benefits of Withdrawal Versus Recertification
Co-written by Monica Meiterman-Rodriguez, Privacy Consultant, and Dan Goldstein, Co-founder and Partner of Tueoris. In the wake of the Schrems II decision, invalidating the EU-US Privacy Shield as a mechanism …
Next time you do a Risk Assessment or Analysis, make sure you have Risk Intelligence on board
I was prompted to write this quick post this morning when I read this article. I think it is a good example of what some (actually many, in my experience) …
Security Due Diligence For Microsoft 365 User Organizations
Co-written by Monica Meiterman-Rodriguez (Privacy Consultant) and Brian Ching (Information Security and Privacy Analyst) A majority of global enterprises are now using Microsoft 365 (“M365”) as their primary office application. …