Knowledge center
With the recent release of ISO 27001:2022, NEN 7510 is gearing up for a significant update. Final adjustments are currently underway, and the new version is expected to roll out by the end of this year or early next year. Whether your organisation is already certified or planning to be in future, it’s important to understand the updates to remain compliant and ensure your information security management practices are up to date.
The first part of this series. Basic arithmetic tells us that every 2 needs a 1. In this blog we discuss how to approach a phase 2 ISO 27001 audit. More elaborate and detailed than the Phase 1 audit, we tell you what you can expect from the auditor, and how you can best prepare your team for the big day.
Discover key tips for getting ready for your ISO 27001 Phase 1 audit. Learn about essential documentation, leadership involvement, and how to avoid common pitfalls, with expert advice from NAALA’s legal consultants.
With the introduction of the GDPR, understanding the distinction between personal and anonymous data is important for compliance. Dive into our guide to learn about data anonymisation, key court rulings, and practical steps to know when your data is truly anonymous.
Understand the privacy and information security implications of integrating OpenAI’s ChatGPT API with insights from NAALA. Learn about compliance measures and best practices to ensure data protection.
Are you the manufacturer of AI in healthcare? Then you probably closely follow the AI Act. But what does this specifically mean for you? We highlight important dates for…
High-profile data breaches have become a serious threat to companies in the complex landscape of cybersecurity and data privacy. How can you best protect against these threats? International standards like…..
As we embarked on a new year, it is our responsibility to ensure that you have crucial 2024 dates noted and emphasized in your freshly minted 2024 calendar. If you are utilizing the extended transition period, the following dates are important to take note off…
In the dynamic landscape of information security, staying updated with the latest standards is essential. The recent publication of ISO 27001:2022 or ISO 27001:2023 – read more about that below – is of interest to anyone who has, or wishes to obtain, information security certification. In this blog…
In this blog post, we will explore the concept of Data Protection Impact Assessments (DPIAs) and how you can effectively carry out these assessments to identify and mitigate data protection risks. DPIAs are a crucial step in ensuring compliance with data protection regulations and safeguarding…