GDPR Surprise – Implementation Is Just Months Away, but Most Enterprises Aren’t Ready

October 26, 2017

The EU’s General Data Protection Regulation (GDPR) goes into effect on May 25, 2018, but according to Top Corporate Data Protection Challenges, a CGOC survey of 132 compliance officers from organizations around the world and across multiple industries, only 6 percent of respondents feel their organizations are currently compliant with the impending regulation, with most... Read more

How to Reduce Risk and Prepare for a Data Breach

September 19, 2017

In light of the recently revealed Equifax data breach, it might be a good time to highlight a best practice that can help manage your corporate risk. Gone are the days where the data security personnel would hide out in the dark basement of the enterprise they were monitoring. Today’s successful security professionals need to... Read more

Internal Investigations: 10 Ways To Be A Cyber Sleuth

August 28, 2017

By Caroline Sweeney (The following article was first published on August 15, 2017,  on  Law360, written by Caroline Sweeney, the global director for e-discovery and client technology at Dorsey & Whitney LLP and a faculty member for the Compliance, Governance and Oversight Council (CGOC).) Law360, New York (August 15, 2017, 1:00 PM EDT) — Cyberattacks aren’t the only significant threats facing enterprises... Read more

Five Essential Steps to GDPR Survival

August 10, 2017

by Eckhard Herych The passage is excerpted from an August 3, 2017, article on Info Security Magazine, written by Eckhard Herych, Faculty Member of the Compliance, Governance & Oversight Council (CGOC). We are now less than a year away from the implementation of the European Commission’s General Data Protection Regulation (GDPR) on May 25, 2018, and the... Read more

10 Critical Steps to Create a Culture of Cybersecurity

August 1, 2017

by Edward J. McAndrew   Businesses are more vulnerable than they need to be. Here’s what you can do about it. Despite constant headlines about cyber attacks, organizations continue to leave their systems and data unnecessarily vulnerable. Cyber incidents result in the loss of reputation, enterprise value, and jobs, not to mention regulatory fines and... Read more

Cybersecurity, eDiscovery and More: Recap of CGOC Minneapolis 2017

June 16, 2017

It was wonderful to be back in Minneapolis for another CGOC Regional Meeting at the Dorsey firm. Since our last event there in 2015, there have been many important developments in Information Governance. Addressing the Current Cyber Threat Landscape Anthony Ferrante fresh off his tenure at a number of high profile agencies (White House, National... Read more

Privacy, Unified Governance and More: Recap of CGOC NYC 2017

March 21, 2017

One of the benefits of yearly meetings in the same city is the ability to take a barometer reading of returning attendees on what has changed for them since last year. Attendees sharing updates into the progress of their 2016 initiatives around data privacy, analytics, eDiscovery and defensible data deletion helps us gauge what topics... Read more

Latest CGOC Information Governance Process Maturity Model

January 31, 2017

Much has happened in the world of information governance since 2012. I use 2012 as my yardstick because that’s when the original CGOC Information Governance Process Maturity Model was created. The writers and working group members who put it together were experts and visionaries, and as such, over the last five years, the model has... Read more

Streamlining Compliance in a GDPR Landscape and More: Recap of CGOC London 2016

October 28, 2016

At the CGOC event in London earlier this month, the fast approaching General Data Protection Regulations (GDPR) was of dominant interest for attendees.   No matter the session topic, whether blockchain, M&A or eDiscovery, GDPR would inevitably percolate back in to the discussion. In the US, Information Governance practitioners are aware of the importance of the... Read more

2017 Information Governance – New Challenges or More of the Same?

September 12, 2016

In a keynote session at Legaltech 2013, Hon. Andrew J. Peck, United States Magistrate Judge for the Southern District of New York, stated “If 2012 was the year of predictive coding or technology-assisted review, 2013 or ’14 seems to be information governance.” Well, we are fast heading into 2017 and information governance is no longer... Read more