GLBA

Rego Payment Architectures, Inc. Invited by U.S. House of Representatives Committee on Energy and Commerce to Testify on Stronger Child Financial Transaction Data Privacy Laws

Retrieved on: 
вторник, мая 2, 2023
United States Senate Commerce Subcommittee on Consumer Protection, Product Safety, and Data Security, Private sector, BLUE, Georgia Institute of Technology School of Cybersecurity and Privacy, COPPA, Intelligence, GLBA, Committee, Representative, Data, Hearing, FBI, Louisiana House of Representatives, House, Social media, Computer security, Cryptocurrency, Privacy

BLUE BELL, Pa., May 02, 2023 (GLOBE NEWSWIRE) -- Rego Payment Architectures, Inc. (“REGO”) (OTCQB: RPMT), a leading white-label family digital wallet platform provider for financial institutions, was invited by the House Commerce Innovation, Data, and Commerce Subcommittee of the U.S. House of Representatives, to provide testimony on April 27, 2023, on the importance of stronger regulations to protect children’s financial data and privacy.

Key Points: 
  • BLUE BELL, Pa., May 02, 2023 (GLOBE NEWSWIRE) -- Rego Payment Architectures, Inc. (“REGO”) (OTCQB: RPMT), a leading white-label family digital wallet platform provider for financial institutions, was invited by the House Commerce Innovation, Data, and Commerce Subcommittee of the U.S. House of Representatives, to provide testimony on April 27, 2023, on the importance of stronger regulations to protect children’s financial data and privacy.
  • “What we are experiencing now in the financial industry is the convergence of several trends, that, though individually benign, will collectively cause unnecessary harm to our nation’s children,” remarked Mr. Codling during his testimony.
  • “In my experience, no other financial technology company has a child’s financial data and privacy protection so integrated in its foundational strategy other than REGO,” said Mr. Codling.
  • A recording of the hearing, including REGO’s testimony, can be found at the following web address: https://www.regopayments.com/rego-payment-architectures-inc-invited-by-u...

Troutman Pepper Continues to Grow Market-Leading Financial Services Team with Addition of Joseph Reilly in DC

Retrieved on: 
среда, апреля 26, 2023
Fair Credit Reporting Act, OCC, LLP, CFPB, Fintech, University, Fannie Mae, Stanford University, United States Court of Appeals for the Second Circuit, FDIC, Privacy, Bank Holding Company Act, GLBA, Virginia School for Girls, Federal Reserve, JD, Troutman Pepper, Consumer, Bank holding company, American College, Virginia Law Review, Manatt, Phelps & Phillips, Financial adviser

WASHINGTON, April 26, 2023 /PRNewswire/ -- Joseph "Joe" Reilly, an experienced attorney who advises financial services companies in a wide variety of regulatory, enforcement, and compliance matters, has joined Troutman Pepper's nationally recognized Consumer Financial Services Practice Group as a partner. He most recently practiced at Manatt, Phelps & Phillips, LLP.

Key Points: 
  • WASHINGTON, April 26, 2023 /PRNewswire/ -- Joseph "Joe" Reilly , an experienced attorney who advises financial services companies in a wide variety of regulatory, enforcement, and compliance matters, has joined Troutman Pepper's nationally recognized Consumer Financial Services Practice Group as a partner.
  • "We are delighted to welcome Joe – a highly sought-after financial services and bank regulatory compliance attorney – to Troutman Pepper," said John West, chair of the firm's Business Litigation department.
  • Reilly is the third partner to join the firm's highly regarded Consumer Financial Services team in the last two months.
  • "Troutman Pepper has a market-leading financial service team that is known for its dedication to client service," Reilly said.

STAR Approves Uniform Risk Assessment Standards: Streamlining Cybersecurity Compliance for Automotive Dealers and Vendors

Retrieved on: 
среда, марта 29, 2023
National Institute of Standards and Technology, PCI DSS, Gramm–Leach–Bliley Act, STAR, Risk assessment, Trust, Service, Reynolds, Privacy, GLBA, PCI, NPI, Risk management, Reynolds and Reynolds, Service provider, Environment, Medical device, Audit, Security (finance)

MCLEAN, Va., March 29, 2023 /PRNewswire-PRWeb/ -- The Standards for Technology in Automotive Retail (STAR), automotive's leading IT standards organization, announced today the approval of uniform risk assessment standards for retail automotive. These standards assist automotive dealers and vendors alike in complying with cybersecurity requirements under the revised FTC Safeguards Rule.The approved assessment simplifies and standardizes retail dealership and vendor compliance with the federal Gramm-Leach-Bliley Act (GLBA) Safeguards Rule. As part of the rule, automotive dealers must periodically assess their service providers for the adequacy of their physical, administrative, and technical information safeguards. STAR's approved assessment is completed by "Service Providers" to demonstrate their ability to adhere to privacy and cybersecurity standards set forth in the Rule. Dealers can also proactively send the assessment to their Service Providers for completion.

Key Points: 
  • The Standards for Technology in Automotive Retail (STAR), automotive's leading IT standards organization, announced today the approval of uniform risk assessment standards for retail automotive.
  • MCLEAN, Va., March 29, 2023 /PRNewswire-PRWeb/ -- The Standards for Technology in Automotive Retail (STAR), automotive's leading IT standards organization, announced today the approval of uniform risk assessment standards for retail automotive.
  • Regulatory Compliance: Vendors use the uniform risk assessment to satisfy regulatory requirements, while enabling dealers to continue using their services with confidence in existing security measures.
  • STAR's uniform risk assessment standards represent a significant milestone in the organization's ongoing efforts to improve cybersecurity across automotive retail.

Dig Security to Showcase Cloud Data Security Innovations at FS-ISAC Americas Spring Summit

Retrieved on: 
среда, марта 15, 2023
GDPR, Privacy, Summit, Classification, PII, TEL, Azure, Financial Services Information Sharing and Analysis Center, Organization, FTC, PCI, AWS, SOX, GCP, Snowflake, DLP, Bankruptcy, Digging, DDR, Entrepreneurship, GLBA, Cryptocurrency

TEL AVIV, Israel, March 15, 2023 /PRNewswire/ -- Dig, the cloud data security leader, today announced it will participate in the Financial Services Information Sharing and Analysis Center (FS-ISAC) Americas Spring Summit. FS-ISAC is the only global cyber intelligence sharing community solely focused on financial services. At the Summit, Dig's data security experts will demonstrate how users can gain real-time visibility, control, and protection of financial data across all public cloud environments.

Key Points: 
  • TEL AVIV, Israel, March 15, 2023 /PRNewswire/ -- Dig , the cloud data security leader, today announced it will participate in the Financial Services Information Sharing and Analysis Center (FS-ISAC) Americas Spring Summit.
  • At the Summit, Dig's data security experts will demonstrate how users can gain real-time visibility, control, and protection of financial data across all public cloud environments.
  • The Dig Data Security Platform re-invents cloud data security using data security posture management (DSPM) with data detection and response (DDR) and cloud data loss prevention (DLP).
  • For more information on Dig Security's cloud data security solutions for financial services, click here or please visit https://www.dig.security/ .

Proactive Risk Partners with Horizon3.ai to Bring Clients a Comprehensive Risk Management Solution

Retrieved on: 
вторник, февраля 7, 2023
Internet, Security, Data Management, Technology, Software, Software as a service, Pulse, Java Authentication and Authorization Service, CMMC, Risk, Cybersecurity Maturity Model Certification, NYDFS, GLBA, GeForce Partner Program, Privacy, Financial services, Partnership, Risk management, Certification, Gramm–Leach–Bliley Act, Medical device

Proactive Risk , a leading provider of technology risk management solutions, is excited to announce that it has joined the Horizon3.ai Partner Program as an Authorized Service Provider.

Key Points: 
  • Proactive Risk , a leading provider of technology risk management solutions, is excited to announce that it has joined the Horizon3.ai Partner Program as an Authorized Service Provider.
  • As an Authorized Service Provider partner, Proactive Risk will have access to Horizon3.ai’s innovative technology, training, and support to help clients effectively manage and mitigate risks.
  • This collaboration will also allow Proactive Risk to offer clients a comprehensive solution that combines its expertise in risk management with Horizon3.ai’s cutting-edge SaaS technology platform, NodeZero.
  • “Proactive Risk is committed to helping clients achieve their compliance and risk management objectives, and this partnership with Horizon3.ai will enable us to better serve our clients,” added Brennan.

Cyber Security Services Announces Plan to Be the First U.S. Cybersecurity Company to Provide Exclusive Services for Technology Distributors and Their Partners

Retrieved on: 
четверг, декабря 29, 2022
GLBA, Partnership, CISO, MDR, Catalog, SOC, HIPAA, PCI, Risk, CMMC, SOC 2, TD, CSS, VARS, Security, Risk management

COLUMBUS, Ohio, Dec. 29, 2022 (GLOBE NEWSWIRE) -- The Columbus, Ohio-based cybersecurity company , Cyber Security Services (CSS), is shifting gears in 2023 to provide exclusive services for technology distributors and their partners.

Key Points: 
  • COLUMBUS, Ohio, Dec. 29, 2022 (GLOBE NEWSWIRE) -- The Columbus, Ohio-based cybersecurity company , Cyber Security Services (CSS), is shifting gears in 2023 to provide exclusive services for technology distributors and their partners.
  • CSS noted that technology partners are finding it difficult to compete with the billion-dollar cybersecurity companies on consulting engagements.
  • Cyber Security Services founder Matt Santill says, "At our core, we are a hands-on cybersecurity company.
  • This announcement seeks to expand upon that in 2023 by providing exclusive services for the distribution channels and their technology partners.

TierPoint Renews Key Industry Certifications, Completes SSAE 18 Compliance Audits

Retrieved on: 
четверг, декабря 22, 2022
GLBA, SOC 2, Organization, SOC, EU, HIPAA, SOC 1, ITAR, NIST, Shield, Privacy, HITRUST, PCI-DSS, Information, Medical device, Audit

TierPoint is also ISO 27001 certified, covering its Information Security Management System, corporate headquarters, and all major data centers.

Key Points: 
  • TierPoint is also ISO 27001 certified, covering its Information Security Management System, corporate headquarters, and all major data centers.
  • TierPoint met SSAE 18 standards for SOC 1 Type II, SOC 2 Type II, and SOC 2 + HITRUST audits for all its data centers.
  • The SOC audits objectively evaluate the effectiveness of controls in place to address operations, security, availability, compliance, and financial reporting.
  • “Security, privacy protection, and reliability are key to the success of our customers and a priority for our company,” said TierPoint Chief Security Officer Paul Mazzucco.

Global Artificial Intelligence in Cybersecurity Market Report 2022: Growing Adoption of IoT and Increasing Number of Connected Devices Bolsters Sector - ResearchAndMarkets.com

Retrieved on: 
вторник, января 3, 2023
Mobile, Wireless, Technology, Security, Software, Internet, Hardware, Data Management, IOT (Internet of Things), Consumer Electronics, Artificial Intelligence, Government, GLBA, Bank, Gramm–Leach–Bliley Act, Security type system, Bank of Spain, Denial-of-service attack, GDPR, Federal Information Security Management Act of 2002, ML, Federal Trade Commission, NLP, Apple, European Union Agency for Cybersecurity, MediaTek, UTM, App Store (iOS/iPadOS), Organization, SOX, USD, Health Insurance Portability and Accountability Act, ENISA, Hardware, HIPAA, PCI, WPA2, FTC, Growth, Guideline, Privacy, SME, Sarbanes–Oxley Act, Linksys, Cloud computing, AI, Android, OpenBSD, PCI DSS, Information, IAM, Linux, Accountability Act, DLP, IOT, FISMA, Intelligence, Medical device, Computer security, Software, Wi-Fi, Microsoft Windows, Geography

The Driving Factors can be attributed to increasing instances of cyber threat, increasing vulnerability of Wi-Fi networks to the security threats, growing adoption of IoT and increasing number of connected devices among others.

Key Points: 
  • The Driving Factors can be attributed to increasing instances of cyber threat, increasing vulnerability of Wi-Fi networks to the security threats, growing adoption of IoT and increasing number of connected devices among others.
  • Enterprises are required to meet the mandatory security standards, failing which, severe fine is to be paid to the government.
  • An enterprise data breach or data leakage causes huge data loss to organizations and hamper the brand image of companies.
  • Asia Pacific is projected to be a high-growth market for artificial intelligence in cybersecurity during the forecast period.

Medocity Elevates Its Security and Privacy Infrastructure with Successful Completion of HITRUST Certification and SOC 2® Type 2 Examination

Retrieved on: 
понедельник, декабря 5, 2022
Trust, FedRAMP, American Institute, Certification, Process, PCI DSS, NIST Cybersecurity Framework, FFIEC, Policy, Security, GDPR, CCPA, ISO 27001, CISO, CPA, NIST, PCI, HITRUST, HIPAA, Patient, Software as a service, Privacy, GLBA, Implementation, ISO, Penetration test, SOC, AICPA, Confidentiality, Microsoft, CMMC, CSA, American Institute of Certified Public Accountants, FISMA, Title 21 CFR Part 11, SSPA, Certified Public Accountant, Medoc II, Organization, Audit, Medical device, Risk management

PARSIPPANY, N.J., Dec. 5, 2022 /PRNewswire-PRWeb/ -- Medocity Inc. has successfully completed its HITRUST Risk-based, 2 year (r2) Certification and System and Organizational Controls (SOC) 2® Type 2 examination on controls relevant to Security, Availability, and Confidentiality for its Virtual Care Platform Services system, a solution provided to pharmaceutical companies, health insurers, and hospital systems. Medocity has achieved HITRUST (r2) certification with the following regulatory factors, EU GDPR, 21 CFR Part 11, HIPAA, and CCPA. Furthermore, Medocity's platform, facilities, and supporting infrastructure were validated against the information protection program that is consistent with the objectives specified in NIST Cybersecurity Framework v1.1.

Key Points: 
  • To achieve its compliance goals, Medocity chose 360 Advanced, Inc., a licensed CPA firm, to perform the demanding third-party HITRUST assessment and SOC examination.
  • Medocity has achieved HITRUST (r2) certification with the following regulatory factors, EU GDPR, 21 CFR Part 11, HIPAA, and CCPA.
  • "The completion of the SOC 2 examination and HITRUST certification demonstrates Medocity's prioritization of, and commitment to, the security and privacy of our clients' data."
  • To achieve its compliance goals, Medocity chose 360 Advanced, Inc., a licensed CPA firm, to perform the demanding third-party HITRUST assessment and SOC examination.

Thought Industries Boosts Security Posture with Successful Completion of SOC 2® Type 2 Examination and HIPAA, PCI Assessments

Retrieved on: 
четверг, ноября 10, 2022
Security, Organization, PCI, GDPR, Health Insurance Portability and Accountability Act, HITRUST, Learning, Accountability Act, FFIEC, Knowledge, Confidentiality, CPA, Payment Card Industry Data Security Standard, AICPA, PCI DSS, Certified Public Accountant, Penetration test, American Institute of Certified Public Accountants, CMMC, American Institute, ISO, Sparks, ISO 27001, Solution, Compliance, Time, HIPAA, Privacy, SSPA, Trust, FISMA, GLBA, Thought Industry, Industry, VP, FedRAMP, Microsoft, Information, CSA, SOC, NIST, Risk management, Audit

BOSTON, Nov. 10, 2022 /PRNewswire-PRWeb/ -- Thought Industries, the leading external enterprise learning platform for customer, partner, and professional training, today announced the successful completion of its System and Organizational Controls (SOC) 2® Type 2 examination on controls relevant to Security, Availability, and Confidentiality, for external enterprise learning management services. The company also completed its HIPAA and PCI DSS SAQ-D assessments.

Key Points: 
  • The Payment Card Industry Data Security Standard Self-Assessment Questionnaire (PCI DSS SAQ-D) assessment documents that Thought Industries has upheld security standards to protect cardholder data.
  • The completion of the SOC 2 examination, and the HIPAA and PCI assessments demonstrates Thought Industries prioritization of the security and privacy of its clients' data, said Mary Sparks, VP of Information Security.
  • "Obtaining a SOC 2 Type 2 examination along with HIPAA and PCI assessments, that were performed by an accredited third party, demonstrates our commitment to data security best practices."
  • Thought Industries chose 360 Advanced, Inc., a licensed CPA firm, to perform the demanding third-party SOC examination and the PCI and HIPAA assessments.