Blog

While many boardrooms and information stakeholders are understandably focused on trying to prevent – or, sadly, clean up after – a data breach, while also meeting the compliance requirements of the impending the EU’s General Data Protection Regulation (GDPR), I think they may be missing a broader and deeper strategy that could help them accomplish... Read more

The EU’s General Data Protection Regulation (GDPR), which goes into effect on May 25, 2018, impacts any company with customers or employees in the EU. Despite its global applicability, the recent CGOC Top Corporate Data Protection Challenges survey found only 6 percent of organizations felt ready for GDPR compliance. No wonder the UK government recently... Read more

It is telling that Information Management chose to feature “Making a successful case for a unified governance program” as the lead article on its website today. It’s a tremendous step forward that the publication recognizes the importance of data management professionals beginning to coordinate closely with other information stakeholders, including compliance and privacy teams, to... Read more

The EU’s General Data Protection Regulation (GDPR) goes into effect on May 25, 2018, but according to Top Corporate Data Protection Challenges, a CGOC survey of 132 compliance officers from organizations around the world and across multiple industries, only 6 percent of respondents feel their organizations are currently compliant with the impending regulation, with most... Read more

In light of the recently revealed Equifax data breach, it might be a good time to highlight a best practice that can help manage your corporate risk. Gone are the days where the data security personnel would hide out in the dark basement of the enterprise they were monitoring. Today’s successful security professionals need to... Read more

By Caroline Sweeney (The following article was first published on August 15, 2017,  on  Law360, written by Caroline Sweeney, the global director for e-discovery and client technology at Dorsey & Whitney LLP and a faculty member for the Compliance, Governance and Oversight Council (CGOC).) Law360, New York (August 15, 2017, 1:00 PM EDT) — Cyberattacks aren’t the only significant threats facing enterprises... Read more

by Eckhard Herych The passage is excerpted from an August 3, 2017, article on Info Security Magazine, written by Eckhard Herych, Faculty Member of the Compliance, Governance & Oversight Council (CGOC). We are now less than a year away from the implementation of the European Commission’s General Data Protection Regulation (GDPR) on May 25, 2018, and the... Read more

by Edward J. McAndrew The passage is excerpted from a July 26, 2017, article on the website Dark Reading, written by Edward J. McAndrew, Partner & Co-Chair, Privacy & Data Security Group, Ballard Spahr LLP, Faculty Member of the Compliance, Governance & Oversight Council (CGOC). Businesses are more vulnerable than they need to be. Here’s what... Read more

It was wonderful to be back in Minneapolis for another CGOC Regional Meeting at the Dorsey firm. Since our last event there in 2015, there have been many important developments in Information Governance. Addressing the Current Cyber Threat Landscape Anthony Ferrante fresh off his tenure at a number of high profile agencies (White House, National... Read more

One of the benefits of yearly meetings in the same city is the ability to take a barometer reading of returning attendees on what has changed for them since last year. Attendees sharing updates into the progress of their 2016 initiatives around data privacy, analytics, eDiscovery and defensible data deletion helps us gauge what topics... Read more