https://www.latacora.com/categories/risk--compliance/Recent content in Risk & Compliance on LatacoraHugo -- gohugo.ioen-usFri, 27 Jun 2025 11:09:35 -0500https://www.latacora.com/blog/2025/06/27/privacy-for-the-newly-appointed-and-already-exasperated-dpo/Fri, 27 Jun 2025 11:09:35 -0500https://www.latacora.com/blog/2025/06/27/privacy-for-the-newly-appointed-and-already-exasperated-dpo/<p>Every other week, regulators around the world bombard their constituents with new data protection laws and acronyms. As the person who was just <em>voluntold</em> you’re now responsible for privacy at your startup, in addition to all your other duties and without any additional resources, how can you possibly be expected to keep up—let alone contextualize that information to maintain compliance?</p> <p>Privacy, at its core, is an ethical issue, which means the solution to your privacy challenges is deceptively simple: <strong>do the right thing and be transparent with your customers.</strong> That’s it. That’s what everyone means when they say “privacy by design.”</p>https://www.latacora.com/blog/2020/03/12/soc2-starting-seven/Thu, 12 Mar 2020 13:49:00 -0400https://www.latacora.com/blog/2020/03/12/soc2-starting-seven/<p>So, you plan to sell your startup’s product to big companies one day. Congratu-dolences!</p> <p>Really, that’s probably the only reason you should care about this article. If that’s not you, go forth and live your life! We’ll ask no more of your time.</p> <p>For the rest of you: Industry people talk about SOC2 a lot, and it’s taken on a quasi-mystical status, not least because it’s the product of the quasi-mystical accounting industry. But what it all boils down to is: eventually you’ll run into big-company clients demanding a SOC2 report to close a sale. You know this and worry about it.</p>