ZenGRC

Simply Powerful GRC

Home » Resource Center » Blog

Blog

Found 1515 Results
Page 24 of 152

What is a GDPR Compliance Risk Assessment?


A GDPR Compliance Risk Assessment is a systematic process used by organizations to identify, evaluate, and mitigate the risks associated with the processing and handling of personal data in line with the requirements of the General Data Protection Regulation (GDPR). This assessment is an essential component of GDPR compliance and is intended to ensure that […]

Phone With Network And Icons

December 19, 2023

What are the CCPA Categories of Personal Information?


The California Consumer Privacy Act (CCPA), the United States’s strictest and most comprehensive data privacy law, has the broadest definition of “personal information” of any law in effect—including the European Union’s General Data Protection Regulation (GDPR). The law is so sweeping that it includes 11 categories of personal information. The CCPA aims to prevent the […]

U.S. map with red push pin in California

Tags: ,

December 18, 2023

How to Become FedRAMP-Certified on Azure


Any company bidding on U.S. government contracts while the company itself uses cloud services for its own IT operations will need to assure that those cloud service providers comply with FedRAMP, the Federal Risk and Authorization Management Program.  FedRAMP acts as a seal of approval either for cloud service providers (CSPs) bidding on government contracts […]

federal building with Azure logo on blue sky

How automation can ensure compliance and safety for businesses?


In today’s complicated, highly interdependent business environment, assuring business security is not just a regulatory requirement. It’s also a vital component of a successful business strategy.  Automation becomes crucial in such a world, offering innovative solutions that streamline operations, mitigate risks, enhance overall safety, and provide peace of mind.  This blog delves into the transformative […]

Glowing Circuit Board

December 17, 2023

What is FCPA compliance?


In today’s global business landscape, ensuring ethical practices and maintaining legal compliance are paramount. The U.S. Foreign Corrupt Practices Act (FCPA) of 1977 stands as a cornerstone for ethical business conduct on the international stage.  Understanding and adhering to FCPA guidelines, implementing a robust FCPA compliance program, and adhering to a comprehensive FCPA compliance checklist […]

computer screen displaying Compliance

Tags:

December 13, 2023

Are Public Companies Required to be Audited?


Audits play a pivotal role in corporate governance, compliance, and finance. They are crucial tools to assure transparency, accountability, and trust in the public markets — and for publicly traded companies, the stakes are even higher. They are required to undergo annual audits of their financial statements and internal control, an exacting process that imposes […]

magnifying glass looking at documents

Tags:

December 12, 2023

How Long Do I Have to Respond to CCPA Verifiable Consumer Requests?


The California Consumer Privacy Act (CCPA) imparts primary compliance responsibilities onto businesses that collect personal data from California residents. Any company that meets thresholds around revenue and volume of California consumer data needs to comply with CCPA regulations around collecting, using, disclosing, and processing that information. The CCPA grants California residents certain rights around access […]

California Republic flag

3 Factors To Consider When Buying Risk Register Software


Managing risk is a complicated task because modern organizations have so many risks to address. One way to track all those risks is via a risk register — essentially, a catalog of your company’s risks and how you’re trying to manage them.  This article serves as an introduction to risk registers: what they are, how […]

Digital Security Padlock Over Glowing Sphere

What is a Data Retention Policy?


A data retention policy is a company’s established protocol for keeping records for a set period. It may also be called a records retention policy or backup retention policy. The goal is to secure your data and ensure compliance with particular business needs, industry guidelines, or legal requirements. A comprehensive data retention policy and records […]

wooden blocks spelling out 'data' next to blocks with person icons

Tags:

December 11, 2023

How to Simplify PCI Compliance with SAQs


Even before the pandemic forced most of us to shop online, we were already heading in that direction — an easy transition considering that, according to Experian, each U.S. consumer carries an average of four credit cards from which to choose. However, this increase in credit card usage also brings more significant risks associated with […]

credit card in hand

December 10, 2023

Page 24 of 152

Ready to Experience Simply Powerful GRC?

×