PCI Security Standards Council. (2022). Document library. https://www.pcisecuritystandards.org/document_library Review the source of the current standard and, briefly, the updated PCI Card Production Security Assessors (CPSA) guide.
Committee of Sponsoring Organizations of the Treadway Commission. (2022). Guidance on enterprise risk management. COSO. https://www.coso.org/Shared%20Documents/2017-COSO-ERM-Integrating-with-Strategy-and-Performance-Executive-Summary.pdf Pages 1 through 8 of this document provide an updated view of enterprise risk management that has broad relevance from executive to managerial levels. While created for SOX, it provides an update ahead of most alternatives, providing value across the all sectors and types of organization.
Monnin, P. (2020). A new wave of privacy and consumer laws: Should the California Consumer Privacy Act be implemented in North Dakota? North Dakota Law Review, 95(2), 345–371. This resource gives an overview of the California Consumer Privacy Act, CCPA, and the new approaches taken by certain states to protect private consumer information. Also, highlights the paths currently accessible to protect the privacy of consumer information of North Dakotans.
Crescioni, M., & Sklar, T. (2020). The Research Exemption Carve Out: Understanding Research Participants Rights under Gdpr and U.S. Data Privacy Laws. Jurimetrics: The Journal of Law, Science & Technology, 60(2), 125–138. This resource highlights recently passed state laws and the impact of the increasingly unclear regulatory landscape on data privacy in clinical trials, particularly with the growing use of real-world evidence.
Kaminski, M. (2020). A recent renaissance in privacy law: Considering the recent increased attention to privacy law issues amid the typically slow pace of legal change. Communications of the ACM, 63(9), 24–27. The article examines the history of U.S. privacy laws, compares and contrasts U.S. privacy laws with the European Union (E.U.) General Data Protection Regulation (GDPR), and U.S. Supreme Court cases regarding government surveillance and what they may portend for privacy laws. It also discusses the California Consumer Privacy Act (CCPA).
Theodos, K., & Sittig, S. (2021). Health information privacy laws in the digital age: HIPPA Doesn’t Apply. Perspectives in Health Information Management, 2–10. This resource highlights how federal law must shift to accommodate the new reality of digital data for use in the healthcare industry.