Part 1: On the Convergence of Data Privacy and Data Security

data privacy security

If you’re fairly new to this ‘privacy stuff’, you might be wondering why I used the phrase ‘data privacy’, not ‘data protection’. Well, unlike the security industry where we can’t even agree on when to use ‘cybersecurity’, ‘data security’, or ‘information security’, the privacy world has its act together. Hell, security folk can’t even agree […]

Does ISO 27001 Certification Give You Immunity From GDPR Fines?

data privacy, GDPR compliance, CCPA, Personal Data Discovery, password, account, hack

I was actually chuckling to myself as I wrote that title because I know you were thinking [the equivalent of] one of the following as you clicked on the link: If you have not read the GDPR: “That would be awesome!” If you have read the GDPR: “Don’t be so bloody stupid.” No, of course ISO 27001 certification won’t give you […]

Privacy Shield Does NOT Equal GDPR Compliance

data privacy, GDPR compliance, CCPA, Personal Data Discovery, password, account, hack, health

Once again, I will begin this blog with the caveat that I am NOT a privacy expert. However, even a single reading, some brief research, and little common sense makes it clear that Privacy Shield is more about keeping US-EU business moving than it is protecting the rights of data subjects. At least from the […]