18th December 2017
PCI DSS Third Party Risk continued…. In our previous blog (PCI DSS Third Party Risk – Compliance and Liability in an Outsourced Payment Processing model) on the importance of being Payment Card Industry Data Security Standard (PCI DSS) compliant when using a Third Party service provider (TPSP) we highlighted the issue that PCI non-compliant organisations…
LEARN MORE18th December 2017
PCI DSS Third Party Risk The use of Third Party service providers (TPSPs) to process credit card payments is increasingly popular given the cost and operational efficiencies it represents and the perception of short-cutting the costly burden of Payment Card Industry Data Security Standard (PCI DSS) compliance. In this series of blogs we’ll take a…
LEARN MORE15th December 2017
A few thoughts on Fourth Party Risk Management. We all know the drill. It’s time for some annual festivity, frivolity and fake fir trees. Without wanting to sound like the Grinch, there is one thing that doesn’t take a holiday. RISK! We hope that by now the mix of media attention, ICO & GDPR guidelines…
LEARN MORE13th December 2017
Shared Assessments, the trusted source in Third Party risk, today released its GDPR Data Processor Privacy Tool Kit, another resource in the “Building Best Practices” series. The GDPR Data Processor Privacy Tool Kit provides preliminary guidance for both data controllers and data processors to effectively evaluate and manage Third Party processor risk under the European Union…
LEARN MORE5th December 2017
One Step Ahead of Uncertainty: GDPR and the Supplier IT Risk Landscape Following DVV Solutions’ participation at ILTA INSIGHT 2017 we are pleased to share the recording of our panel discussion on GDPR and the implications for managing Supplier IT Risk: Synopsis Is GDPR a blessing and a curse? There is inevitably a lot of…
LEARN MORE4th December 2017
This White Paper from Shared Assessments discusses what Third Party Risk Rating is, what Risk Rating is needed and how an organisation can apply Risk Rating best practices as part of their Third Party Risk Management (TPRM) Abstract Risk rating of third party providers is an essential aspect of a comprehensive risk management program. When…
LEARN MORE