Governance, Risk Management, Compliance

Rowan Fogarty

Recent Posts

GDPR: LAWFUL BASIS FOR DATA PROCESSING OF VERBAL MARKET RESEARCH INTERVIEWS

Posted by Rowan Fogarty on Sep 20, 2018 3:39:27 PM

How do you ensure GDPR compliance for telephone interviews conducted for the purpose of market research? If youre a market research company, or indeed conducting market research directly, youll be keen to ensure that data processing is in line with the EUs General Data Protection Regulation.

Read More

Topics: GDPR

GDPR COMPLIANCE  FOR B2B MAILING LISTS & MARKETING COMMUNICATIONS: WHY CONSENT IS NOT THE BE ALL  & END ALL

Posted by Rowan Fogarty on Jul 6, 2018 5:04:27 PM

GDPR is not all about consent. It looks like a lot of organisations are only concentrating on consent or are seeking consent on a just in casebasis. If this is how your company is approaching GDPR compliance, then be warned that this may well create problems for you at a later stage.

 

Read More

Topics: GDPR

WHO IN YOUR ORGANIZATION NEEDS GDPR TRAINING?

Posted by Rowan Fogarty on Jul 2, 2018 4:51:00 PM

Staff training is a requirement of GDPR compliance. Rightly so, because human error is the leading cause of data breaches. Rather than just viewing training as a checkbox to tick for GDPR compliance it ought to be at the forefront of your organization’s data protection plans. Make human resources the metal strength of your GDPR compliance policy and not the weakest link in the chain.

 

So, who in your organization needs GDPR awareness training?

Read More

Topics: GDPR

WHAT IS CYBER INSURANCE AND SHOULD YOUR COMPANY HAVE IT?

Posted by Rowan Fogarty on Apr 16, 2018 2:46:00 PM

A business fell victim to a ransomware attack every 40 seconds in 2017, with global ransomware damage costs for that year amounting to more than $5 billion. Despite the continuous improvements in information security software, these figures are likely to increase in 2019 and beyond.  

Read More

Topics: Cyber Insurance

7 WAYS PCI DSS HELPS YOU MEET THE REQUIREMENTS OF GDPR

Posted by Rowan Fogarty on Mar 19, 2018 9:53:00 AM

 

The General Data Protection Regulation (GDPR) deadline of 25 May 2018 is fast approaching. Like many others, you’re probably feeling anxious about your organizations’ GDPR compliance. GDPR brings about a far trickier regulatory environment and the fines for non-compliance with GDPR are hefty to say the least.

 

However, if your organisation controls and stores cardholder data then in my opinion you can breathe a small sigh of relief. The reason is that your organization is already required to comply with the Payment Card Industry Data Security Standard (PCI DSS), which has got a lot in common with the GDPR.

Read More

Topics: PCI Compliance, GDPR

VigiOne:

One GRC Solution, One Platform, Multiple Regulations & Standards 

Now you can get VigiTrust's award-winning products in one straightforward GRC suite. VigiOne helps you: 

  • Prepare
  • Validate
  • Comply

Across multiple regulations and standards, including:

  • PCI DSS
  • GDPR
  • HIPAA
  • ISO 27001

 

Subscribe to Email Updates

Recent Posts