(With the Help of ChatGPT) In this article, the author provides three versions of a data retention policy that appears compliant with GDPR or NIST. After taking NACVA’s cybersecurity course, a student reached out to me asking for a Data Retention Policy template that would be compliant with the statutes and frameworks discussed in the course, such as the National Institute for Standards and Technology (NIST ...

From $600 to Over $1 Billion The EU General Data Protection Regulation (GDPR) and other data protection regulations apply to the smallest sole practitioner firm among us to the largest and each must take steps to implement a cybersecurity plan, to follow it, and to respond when an incident occurs. The failure to provide protection can result in fines. In this article, the author describes why Amazon and Goo ...

As the regulatory landscape has evolved, compliance departments and the chief compliance officer (CCO) have become increasingly important, helping organizations to adapt. Many CCOs sit on boards and report directly to the chief executive. They are no longer on the outside looking in on business development; instead, they are a key cog in the machinations of the C-suite. To read the full article in Financier ...