The Carlson Firm advises both global and local companies in all aspects of privacy program and security program development—two separate practices that are necessary for a complete data protection program.
The firm also regularly works with a range of businesses including retailers, medical device firms, and state, county, and federal government agencies to shore up audit readiness, specifically GDPR, HIPAA, HITECH, breach response, and many more. This includes written risk assessments, system test and evaluation plans (ST&E), and completed and prepared letters related to the above.
Here’s the level of security and insight that the Carlson Firm can offer your company:
Outside counsel services/management consulting
Policies and documentation services
Data privacy and security risk overview
GDPR (General Data Protection Regulation) compliance and advisory services
Audits (PCI, vendor, bank, and liaison services)
Risk assesments and vendor risk assesment services (for PCI, ISO, HIPAA, Safe Harbor, GLBA, FISMA, and more)
Vendor response services
Comfortable compliance (ongoing compliance service)
Privacy and security program development and operationlization (for NIST, FISMA, PCI, SOX, HIPAA, HITECH, FEDRAMP, ISO, Safe Harbor, energy sector, and critical infrastructure cybersecurity framework)