With the fall semester in full swing, college students aren’t the only ones with homework to do. Higher education institutions in Maryland must comply with the state’s new privacy law, Maryland Code Title 10, Subtitle 13A, as of Oct. 1.
case study - Manufacturing
New Pig
Zaviant guided New Pig through a range of complex data security and privacy requirements and instituted policies and procedures to better secure their data.
Zaviant provides clarity in a very
murky world, outlining the risk
landscape in a straightforward and
pragmatic way. Before partnering with
them, data security and privacy was
something that kept me up at night.
Now, I can confidently say we’re on
solid footing.
Clark Stapelfeld
Chairman and CEO
Zaviant helped Discount Tire meet the procedural requirements of its cyber insurance policy and implemented a robust third- party risk management program.
Michael Silhasek
Corporate Counsel
Table of Content
Key Issues
ISO 27001
GDPR
US State Privacy Laws
Data Mapping & Inventory
Data Processing Agreements
DSAR Procedures
HIPAA
Challenge
New Pig, a multinational manufacturer of workplace spill and leak control products, needed to ensure their business complied with the European Union’s GDPR (General Data Protection Regulation) along with new state privacy laws in the United States.
Additionally, New Pig needed support with a range of other matters including data mapping and inventory, data processing agreements, and Data Subject Access Request (DSAR) procedures. Finally, as a covered entity that provides its own employee health plans, the company required assistance navigating and complying with HIPPA (Health Insurance Portability and Accountability Act).
Solution
First, Zaviant helped New Pig meet the complicated requirements for GDPR compliance and also ensured the company complied with all relevant US state privacy laws, including CCPA (California Consumer Privacy Act) and CPRA (California Privacy Rights Act). Then, Zaviant served as a vCISO and implemented ISO 270001, a set of international standards for managing information security risks. Finally, Zaviant helped New Pig comply with HIPAA.
Services Provided
Data Privacy, Security, and Risk
Build or improve upon your data privacy policies and controls.
Third-Party Risk Management
We tailor strategies to your unique risks and compliance needs, ensuring robust protection against cyber threats.
Regulatory Compliance & Frameworks
Zaviant's experts anticipate and mitigate cyber risks, safeguarding your data from diverse threats.
Impact
By helping New Pig become compliant with GDPR and US state privacy laws, Zaviant helped save the company millions of dollars in regulatory enforcement expenses. Zaviant continues to work closely with the New Pig leadership team, building out data security policies and procedures, implementing and maintaining controls, and holding quarterly steering committees to ensure the business stays up-to-date with best practices and legal requirements.