Our HIPAA compliance checklist was designed to help organizations understand their obligations under the law. The checklist items are not a complete list, just a starting point for your compliance program. HIPAA requires a yearly risk analysis to identify new vulnerabilities. Any business process change or new technology usage introduces new risk into an organization’s […]
As security and privacy become more prominent in the news, you’re probably starting to hear the term end-to-end email encryption a lot. But what does it actually mean? You may have a rough idea that it protects your data, but many people are vague on the specifics. However, it’s the details of end-to-end encryption that […]
If you are allowing Mozilla FireFox or Thunderbird to remember passwords to web sites and/or email accounts in their Password Manager tool, you should know that these passwords are all stored in a plain text file (base64 encoded) on your computer’s disk drive. This file is accessible to anyone with administrative access to your computer. […]
As of 2010, 91% of all law firms have 10 or fewer employees; 99.6% have less than 100 employees1. The smaller the firm, the less likely they are to have a strong IT department and are much more likely to be focused on case load rather than on current changes in the compliance landscape that […]
Email and other data are either being “transmitted” or “processed” or are “at rest.” I.e., it is moving from one computer to another, stored/at rest on a computer, or preparing to be transmitted or stored. While most types of compliance regulation, such as HIPAA, specifically require that data be transmitted securely, not all regulations require […]
