Compliance Pointers

by CompliancePoint

An in-depth look into the latest news, trends, and challenges surrounding information security, privacy, and marketing compliance.

Visit CompliancePoint.com to learn more about our suite of risk management and compliance services.

Podcast episodes

  • Season 2

  • S2 E31: Why ISO Makes Sense Even Without a Customer Requirement

    S2 E31: Why ISO Makes Sense Even Without a Customer Requirement

    In this episode of Compliance Pointers, David Forman from Mastermind joins us to share some of his ISO expertise. David explains why complying with frameworks like ISO 27001, ISO 27701, and ISO 42001 can be a good move for businesses, even if they don’t have a customer requirement or may never seek formal certification. Listen to the entire episode to learn about: · Leveraging ISO as a baseline for establishing new policies · How governance helps prepare rotating organizational requirements · Building a culture of security and #privacy · Starting ISO implementation by focusing on scope and risk management Learn more about CompliancePoint's ISO and other InfoSec services at https://www.compliancepoint.com/services/information-security/ Connect with David at https://www.linkedin.com/in/masterminddavid/

  • S2 E30: Common HIPAA Privacy Rule Mistakes

    S2 E30: Common HIPAA Privacy Rule Mistakes

    HIPAA is comprised of the Security Rule, Privacy Rule, and Breach Notification Rule. In this episode of Compliance Points, Carol Amick shares the most common Privacy Rule mistakes she sees healthcare organizations make. She also discusses how your organization can avoid those mistakes. Listen to learn about: ⚕️ Website privacy notices for health data ⚕️ Updating privacy policies and procedures ⚕️ Breach notification obligations ⚕️ Privacy risk assessments To learn more about CompliancePoint's healthcare security and privacy services at https://www.compliancepoint.com/services/healthcare/

  • S2 E29: Website Privacy Functions and Controls

    S2 E29: Website Privacy Functions and Controls

    The Office of the New York State Attorney General conducted an investigation to discover if website privacy functions and controls were operating properly. In this episode of Compliance Pointers, Matt Dumiak explores the results of the investigation and what businesses can do to ensure their cookies and other online tracking tools are compliant with all applicable laws. Listen to learn: 🍪 Common challenges with cookies, tags, and other tracking tools 🍪 Business strategies for success 🍪 The risks of tracking technology not functioning properly Learn more about CompliancePoint's Privacy Services.

  • S2 E28: The Value of Compliance Orchestration

    S2 E28: The Value of Compliance Orchestration

    In this episode of Compliance Pointers, Brandon Breslin explains why organizations should consider breaking away from the point-in-time audit routine and utilize a compliance orchestration strategy. This method can end the audit crunch and streamline the compliance process for PCI DSS, SOC 2, ISO 27001, and other frameworks. Listen to learn: ⏱️ Compliance orchestration: what and why ⏱️ The benefits ⏱️ How to get started ⏱️ Implementation challenges and solutions To learn more about CompliancePoint's cybersecurity, privacy, and marketing compliance services, visit www.compliancepoint.com.

  • S2 E27: Consent Revocation Rules and Best Practices

    S2 E27: Consent Revocation Rules and Best Practices

    Honoring consent revocations or opt-outs is a key component of TCPA compliance. In this episode of Compliance Pointers, Tony Jarnigan breaks down how revocation rules are evolving. Take a listen to learn about: 📵 Acceptable opt-out methods 📵 How much time businesses have to honor requests 📵 Recent court cases 📵 Honoring consent revocation best practices Learn more about CompliancePoint's marketing compliance services at https://www.compliancepoint.com/services/marketing-compliance/