Access control is one of the most important cybersecurity practices. Careful adjustment of users’ access rights helps to secure sensitive data and reduces the chance of a successful attack. However, choosing an access control model relevant to your organization can be tricky. In one of our previous posts, we reviewed role-based and attribute-based access control models. This article discusses use cases for mandatory and discretionary access control models.

The General Data Protection Regulation (GDPR) is often considered the strictest regulation in the world for securing users’ personal data, with fines for non-compliance reaching more than €20 million. The GDPR applies to all organizations processing the personal data of European Union (EU) residents. Do you find it daunting to read through the complex articles of this regulation?

As desirable targets for cybercriminals, insurance companies must comply with strict data protection requirements. Non-compliance often leads to data breaches and considerable fines. In this article, you’ll learn about eight data protection best practices for insurance organizations to comply with relevant laws, regulations, and standards and safeguard your customers’ sensitive data.