In the News

Stop Dragging Your Feet: GDPR Compliance Can Make You More Competitive

December 15, 2017

Publication: Corporate Compliance Insights
Written by Heidi Maher

The May 2018 deadline for the EU’s General Data Protection Regulation (GDPR) should have organizations scrambling to roll out GDPR-readiness programs. After all, the regulation applies to most organizations doing business in the EU, non-compliance can result in severe fines, and getting ready for compliance will likely take significant time and effort.

Read the article

If GDPR Compliance Doesn’t Start With Information Governance, You’ll Probably Fail

December 9, 2017

Publication: Forbes Technology Council
Written by Heidi Maher

Most discussions regarding the EU’s impending General Data Protection Regulation (GDPR) -- scheduled for implementation in May 2018 -- focus squarely on consent management (i.e., making sure organizations have permission to use the data they are collecting and processing).

Read the article

Most companies ill-prepared for EU data protection requirements

November 10, 2017

Publication: Information Management

Known as the General Data Protection Regulation or GDPR, the EU describes the new requirements as “the most important change in data privacy regulation in 20 years.” Intended to replace the current European Data Protection Directive and standardize the laws governing data privacy across the EU’s member countries, it is meant to reshape the way organizations across the region deal with data privacy.

Read the article

Really? Only 6 Percent Of Companies Ready For GDPR

November 9, 2017

Publication: Clinical Leader

A survey of top corporate data protection challenges has found only 6 percent of companies are prepared to be compliant with the EU’s General Data Protection Regulation (GDPR), which goes into effect on May 25, 2018. The Compliance, Governance, and Oversight Council (CGOC) released the results of the survey, which gathered the results from 132 compliance officers from organizations around the world. Those organizations were across multiple industries. GDPR is a growing concern for companies in the life sciences industry. A session at DIA’s annual meeting in Chicago in June 2017 brought the issue to the attention of many pharma executives in the audience. Violations of the regulation can result in a penalty of €20 million or 4 percent of worldwide revenue.

Read the article

Press Release: CGOC Survey of Top Corporate Data Protection Challenges Reveals Only 6 Percent of Companies Feel Ready for GDPR Compliance

October 31, 2017

Publication: GlobeNewswire

The CGOC (Compliance, Governance and Oversight Council) today released the results of a survey and accompanying infographic that reveals most enterprises are not ready to comply with the EU’s General Data Protection Regulation (GDPR), which goes into effect on May 25, 2018. According to Top Corporate Data Protection Challenges, a survey of 132 compliance officers from organizations around the world and across multiple industries, only 6 percent of respondents feel their organizations are currently compliant with the upcoming regulation. The results also indicate most organizations are concerned about their poor data disposal practices and ability to demonstrate compliance, key elements of GDPR readiness. Organization size had no significant impact on readiness levels. Read more for the complete Top Data Protection Challenges Survey results and to download the infographic.

Read the article

Press Release: Registration Open for CGOC Regional Meeting in London on Nov 14, 2017

October 17, 2017

Publication: GlobeNewswire

MEDIA ADVISORY, Oct. 17, 2017 (GLOBE NEWSWIRE) -- The CGOC (Compliance, Governance and Oversight Council) announced that registration is now open for the Council’s regional meeting in London, England on November 14, 2017. “This year’s CGOC event in London will provide attendees the vital information they need to navigate today’s most pressing data challenges, including incidence response to a security breach, mobilizing a GDPR program and aligning GDPR with other regulations,” said Heidi Maher, Executive Director, CGOC. “It also provides a rare opportunity to network with some of the top experts in privacy, compliance and information governance.”

Read the article

Successful Big Data Initiatives Live At The Intersection Of Insight And Compliance

October 16, 2017

Publication: Forbes Technology Council
Written by Heidi Maher

Consider how many organizations embark on a big data initiative. They purchase the right technology and begin pooling data from disparate systems into data lakes or data warehouses. But how do they know which data stores to use? How sure can they be of the lineage and integrity of their data? What can they do to ensure that their data lake doesn’t become a data swamp? The answer is simple: Start with a unified governance approach.

Read the article

Internal Investigations: 10 Ways To Be A Cyber Sleuth

August 17, 2017

Publication: Law360
Written by Caroline Sweeney

Cyberattacks aren’t the only significant threats facing enterprises today. Companies often find themselves needing to conduct extensive and costly investigations into employee behavior. For example, I was recently involved in an internal investigation that was estimated to cost a global Fortune 500 company more than $1 million just for the investigation itself. Of course, costs can run much higher when settlements and other legal fees are included. According to the Mintz Group, Foreign Corrupt Practices Act penalty amounts totaled $1.8 billion for the period from implementation of the FCPA in 1977 to May 2016. The financial impact to companies, as well as the damage to their reputations and business disruption, can be staggering, and possible litigation following an investigation can cause further financial and reputational harm.

Read the article

Five Essential Steps to GDPR Survival

August 4, 2017

Publication: Info Security Magazine
Written by Eckhard Herych

Less than a year away from the implementation of the European Commission’s General Data Protection Regulation (GDPR) and stakes for companies are high. This article outlines important steps companies can take right now to make significant progress toward creating a data infrastructure that dramatically reduces the likelihood of non-compliance.

Read the article

10 Critical Steps to Create a Culture of Cybersecurity

July 26, 2017

Publication: Dark Reading
Written by Ed McAndrew

Although eliminating all cyber incidents is impossible, a "unified governance" approach that combines security with data management and information governance can help create a business culture that promotes a strong defense. CGOC Faculty Member Ed McAndrew offers 10 steps you can follow to create a culture of cybersecurity.

Read the article