How PCI DSS acts as an (informal) insurance policy
The Payment Card Industry Data Security Standard, or PCI DSS, is a set of measures designed to help protect customers’ data and reduce credit card fraud.
Management, compliance & auditing
Keeping your team fresh: How to prevent employee burnout
Take these steps to keep your infosec team from burning out at work.
How foundations of U.S. law apply to information security
Information security professionals benefit when they learn foundational principles of United States law.
Data protection Pandora’s Box: Get privacy right the first time, or else
Learn about data protection practices that will help you keep your data safe.
Privacy dos and don’ts: Privacy policies and the right to transparency
Transparency is essential for privacy. Find out the top things you can do right (and wrong) when it comes to privacy policies.
Starr McFarland talks privacy: 5 things to know about the new, online IAPP CIPT learning path
Discover the intersection of technology, data security and the law with the CIPT learning path.
Data protection vs. data privacy: What’s the difference?
What is the difference between data privacy and data protection in cybersecurity?
NIST 800-171: 6 things you need to know about this new learning path
Too many businesses are dangerously ignorant about NIST 800-171. That’s the battle cry from Dave Hatter, an in-the-trench cyber defender and Infosec author....
Working as a data privacy consultant: Cleaning up other people’s mess
What is it like to work as a data privacy consultant in the cybersecurity industry?
6 ways that U.S. and EU data privacy laws differ
The United States and Europe have very different laws governing privacy. Find out how they differ.