Whitepapers

Microsoft SSPA Program Attestation

What the SSPA requirement means for your business.

SOC for Cybersecurity

California Privacy Act Vs. The General Data Protection Regulation

Can you rely on GDPR to satisfy the requirements of CCPA?

GDPR FAQ’s for Hospitality

Last-Minute GDPR Compliance

It's too late to do GDPR compliance right for the May 2018 launch, but not too late to start.

Westlaw Journal - Data breach notifications: The state of the nation

Westlaw Journal - Legal trends, updates and strategies for 2018

Why Multiple Answers May Be The Right One

Most Common Examinations: Compared

Late Out of The Gate: Companies Lagging on GDPR's Controller Accommodation Requirement

GDPR: What It Means for US-based Companies

7 Steps Toward Audit Readiness

Going through an audit can be painless if you effectively plan and prepare. See the 7-step checklist that will help you better handle this exercise.

Understanding and Demonstrating Alignment with the GDPR

The Rise of SOC 2

Understanding FedRAMP

Your Guide to ISO 27001

ISO 27001 is a valuable way to identify, mitigate and monitor your company’s information security risk.

What SSAE No. 18 Means for the SOC 1 Reporting World

The practitioners performing the attestation engagements for SOC reports will not notice very many material changes in the standards; however, there are a few key areas of emphasis worth noting...

About Schellman

Understanding PCI PA-DSS: Security for Applications and for Organizations

The Payment Application Data Security Standard (PA-DSS) has been an instrumental part of the PCI family of standards from nearly the beginning of the PCI SSC.