b'REGULATORY COMPLIANCE SERVICESWhat We DoA host of local, state, federal and international laws regulate how organizations handle sensitive data. Our professionals perform a wide range of risk assessments and audit readiness assessments to help clients identify compliance gaps and close them. FISMA- The Federal Information Security SERVICES Management Act (FISMA) requires federal agencies to have a robust information protection plan in Privacy Laws Assessments & Strategy place. FISMA aims to help protect information held We conduct gap analyses and remediation programs foron federal information systems.compliance with laws including: GDPR- The General Data Protection Regulation CCPA - The California Consumer Privacy Act(GDPR) applies to all organizations that collect and (CCPA) enhances privacy rights and consumerprocess data that belongs to European Union (EU) protection for residents of California.The effectivecitizens. The regulation has specific requirements date is January 1, 2020, with a six-month delay inrelated to privacy, security, data control, and enforcement after that date. governance.FACTA- The Fair and Accurate Credit TransactionsGLBA- The Gramm-Leach Bliley Act (GLBA) is a U.S. Act (FACTA) red flags rule requires financialfederal regulation that requires financial institutions institutions to demonstrate they have takento ensure the confidentiality and integrity of the sufficient steps to protect consumers againstnon-public personal information of their customers.identity theft. HIPAA- The Health Insurance Portability and FERPA- The Family Educational Rights and PrivacyAccountability Act (HIPAA) requires organizations Act (FERPA) aims to protect the privacy of studentdealing with Protected Health Information (PHI) education records and prevent unauthorized accessand Electronic Protected Health Information (ePHI) to them. FERPA applies mainly to educationalto protect that data, and to require its business institutions. associates such as vendors to also comply. 2019 ERMProtect. All rights reserved.'