Receive articles and resources from the information risk management experts at FoxPointe.
This article was written by Rebecca Renna, Consulting Manager, Fox Pointe Solutions – a Division of The Bonadio Group The purpose of a Compliance Program in any industry is to ensure that an organization is following all applicable laws, regulations, and ethical practices. The laws and regulations governing compliance are...
This article was written by Paul Mayer and Heather Brownson. The past two years have been very eventful for Compliance Professionals, starting with changes to the Office of Medicaid Inspector General’s (OMIG) Title 18 NYCRR Part 521 regulations. 18 NYCRR Part 521 was first made effective in 2009 and the...
Maintaining compliance with the Health Insurance Portability and Accountability Act (HIPAA) Security and Breach rules is not a one-time effort. It’s an ongoing project that spans the entire life of your organization. With the rise of new and emerging changes in work environments, evolving technologies, and increasingly sophisticated criminal methods,...
The European Union’s General Data Protection Regulation (GDPR) sets a high standard in the world of global data privacy and security. Known for its strict requirements and robust enforcement, the GDPR poses a considerable challenge for companies within its reach. However, for businesses planning to expand into the United States,...
Is your Credit Union in the know about the recent cybersecurity requirements mandated by the New York State Department of Financial Services (DFS) that may affect operations? DFS has made significant amendments to its Cybersecurity Regulation, 23 NYCRR Part 500. The rule is final and effective as of November 1,...
This article was written by Paul Mayer, June Crawford, and Heather Brownson To celebrate this year’s Corporate Compliance & Ethics Week (11/5-11/11 2023), The Compliance Solutions team at FoxPointe Solutions, a division of The Bonadio Group, wanted to share a few important reminders related to New York State’s mandatory compliance...
In today’s rapidly evolving digital landscape, the protection of sensitive information and the preservation of digital assets have become paramount, as has a full and accurate understanding of the controls in place. As organizations navigate the intricate realm of cybersecurity, the role of a Chief Information Security Officer (CISO) has...
by Allison Hall (Director) and Courtney Caryl (Manager), FoxPointe Solutions SOC 2+ Reporting A SOC 2 Plus Additional Subject Matter (SOC 2+) engagement allows a service auditor to assess a service organization’s compliance with the American Institute of Certified Public Accountants’ (AICPA) SOC 2 Trust Services Criteria (TSC), while at...
The Bonadio Group and their cybersecurity division FoxPointe Solutions highly recommends and encourages that our customers invest in an ongoing compliance solution that can help support its company’s internal controls and compliance requirements before an internal audit is performed by an independent third-party. Not only does an effective and valuable...