info@riddlecompliance.com

Get In Touch

908.447.0521

Call Us
Riddle Compliance
Riddle Compliance

DATA PROTECTION, PRIVACY AND CYBERSECURITY COMPLIANCE

Our team of legal professionals and information security practitioners assist growing organizations deploy effective risk mitigation protocols. We advise on data protection, privacy and cybersecurity compliance, data breach and incident response practices, internal and external security investigations, development of policies and procedures, vendor management programs, and customized information management initiatives. Our solutions are practical and devised to mitigate pertinent risks

PRIVACY PRACTICES TO ENHANCE GOVERNANCE, REGULATORY COMPLIANCE, AND RISK MITIGATION

Riddle Compliance advises on a myriad of regulations governing how organizations within specific industries use and share confidential information. Some of the privacy and compliance regulations we provide guidance on include the General Data Protection Regulation (GDPR), Health Insurance Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA), California Consumer Privacy Act (CCPA), New York Cybersecurity Regulation, and various other international, national, and state regulatory mandates.

DATA BREACH INVESTIGATIONS AND INCIDENT RESPONSE

Data breaches are problematic. Multinational companies receive the most media attention when these events occur, but growing companies are bigger targets for cyber criminals. Growing companies are more susceptible to cyber attacks due to their lack of resources and inferior infrastructures. We support growing organizations with cybersecurity investigations, incident response protocols, and in developing effective management standards for longterm growth.

INTERNAL AUDITING AND RISK ASSESSMENTS

Routine internal audits and risk assessments are critical parts of a cybersecurity plan. Riddle Compliance assists organizations in devising an internal audit schedule along with a detailed plan to monitor impending security risks. Risk assessments include staff interviews, policy and procedure reviews, analyses of previous audit findings, and a comprehensive evaluation of compliance controls.

DEVELOPMENT OF USEABLE SECURITY AND PRIVACY CONTROLS, POLICES, AND PROCEDURES

Companies require customized security and privacy standards to fit specific organizational structures and differences in corporate culture. Riddle Compliance works with internal staff across business functions to devise useable policies and controls to support organizations’ regulatory compliance obligations and information security goals.

SUPPLY CHAIN CYBERSECURITY CONSIDERATIONS

Having an effective vendor management program is vital in addressing data protection, privacy, and cybersecurity risks. Riddle Compliance advises clients on pertinent supply chain risks and regulations across different industries. Business partners, vendors, and other third parties are heavily used in certain industries and this inherently creates security and privacy vulnerabilities. These matters have to be addressed routinely to ensure risks are properly mitigated.