As privacy laws continue to expand and evolve, the pressure on companies to keep up with changing laws, regulations and industry practices grows ever more onerous. At the same time, the constant danger of data breaches — with the potential release of personal or sensitive data — can pose dire, or even existential, risks to the enterprise.
We work closely with clients on all key compliance measures. As many new privacy and data security laws require organizations to maintain written documentation of their policies — even in the absence of a statutory requirement — our clients regularly call on us to draft and update such policies.
Audits and Training
We conduct compliance audits to evaluate the privacy and data security controls currently put in place by our clients, and to test them against legal obligations and industry best practices. Thereafter, we provide recommendations on improvements and enhancements to the program. To assure policies are fully implemented — and do not just exist on paper — we conduct security awareness training for their employees as well.