Data classification (location, data type, use, sharing)
Assessment of applicable laws and regulations (state, federal, international, industry specific)
Vendor compliance programs (questionnaire, model clauses, gap analysis, ongoing programs)
Compliance with customer requirements
HIPAA Business Associate analysis
Technical, administrative and physical security measures
Executive training programs
Employee training and job aids
Talking points for vendors and customers
DLG helps your company meet its ongoing compliance requirements based on customer/vendor requirements, industry standards, type of data, and location of data collection, use or sharing. We gauge gaps in compliance requirements and actual practices. DLG programs continually evolve with the changing data needs of your business. We assess the risks to your company, build processes to reduce risk, and augment the value of your data, products and services. DLG attorneys will train your executive team to understand your company’s data privacy and security security landscape and implement effective policies and procedures. Finally, we educate your employee base as to the daily implementation of your corporate compliance strategy.
Compliance programs may include, and we have experience with, state and federal laws, FTC guidance, international laws/transfer requirements, Gramm-Leach Bliley Act, HIPAA, FERPA, TCPA, CAN-SPAM, COPPA, and more.