The European Union's General Data Protection Regulations, or GDPR, has some Canadian and US companies concerned about their compliance level such that they have suspended the accounts of the EU customers. yes, the rules and fines are not something to ignore, but we shouldn't be afraid. Many companies may already be complying with many of the rules, while others may simply need to improve their data collection, breach response and security practices. So what is GDPR requiring companies to do? As of May 25, 2018, the GDPR places obligations on companies that collect and process personal data from EU residents. What's got companies running scared? The administrative fines companies for infringement are massive, up to 10 million euros or 2% of worldwide income. However, you'd have to be significantly negligent with personal data and failed to have follwowed reporting requirements before the administration would even trigger a discussion about fines. How much effort would it take for Canadian companies to comply with the GDPR? Well, many factors could impact this effort, such as the type of industry, data collected, how permission to collect data is obtained and how the stored data is protected. For companies that meet the requirements of Canada's Personal Information Protection and Electronic Documents Act (PIPEDA), or the US Health Insurance Portability and Accounting Act, some of these regulations are already consistent with the GDPS's provisions. Where would I start if I need to determine if my company is compliant with the GDPR? The best place top start is to read the GDPR. You should also consult with your security and privacy teams to ascertain areas of data collection and usage risks in your organization. Finally, consult with a GDPR expert and legal counsel to ensure you have all of your bases covered. Should you need wenbsite services to ensure your site is compliant, feel free to contact Straydog for a free assessment. What are the most important requirements of GDPR? The most important requirements are:

1. Collect and use only data for which the individual has given consent, and to seek that consent in a transparent manner.
2. To only use that data for the purposes agreed to by the individual. You must also offer individuals a transparent method to withdraw consent and erase their data, where there are no legal grounds to keep it.

How can I my company's data policy help to keep data secure? The most secure data is the data that you never collect and store.The GDPR requires that you collect only personal data that you need to perform the service or conduct the research agreed to by customers - and to store that data for only as long as you need it. If you're conducting a lot of research on individuals, ask yourself whether you need to store names, addresses or phone numbers? The more unnecessary data you collect, the greater your potential for liability. How can a company protect data it needs to store longer? You should have a robust security protocol, making it hard for intruders to access your network via the internet of WIFI and through user actions. You should have a network firewall in place and then monitor and control incoming and outgoing network traffic to identify and stop unusual or malicious activity. You should also restrict access to staff that need to use the data, and use encryption and file integrity monitoring. Finally, you should train employees to protect data that is in their care and to recognize scams and fraudulent links that might expose data to theft. While you can achieve a degree of protection using passive controls, adding a human element to supervise network traffic can make the difference between fending off a cyber attack and allowing bad people to achieving their malicious goals. Article by Rob Barnett President, Brand Strategist at Straydog Tweet

After 4 years of work, the GDPR was approved in April of this year and the regulations came into affect, May 25, 2018. If you don't know what GDPR is, you should! The European Union's General Data Protection Regulations is designed to harmonize privacy laws across Europe and to protect all EU citizens data privacy and to organize the way organizations across the EU approach data privacy. So you may be asking, how does an EU regulation affect my business here in North America, and why should I care? Well, the direction of the regulations is to protect all EU citizens, regardless of where they may live and which websites (w0rldwide), they may be using.  So the biggest update to these regulations is most definitely the landscape for which these laws apply, as it applies to all companies processing personal data of dta subjects residing in the EU, regardless of the websites owners jurisdiction. GDPR makes its applicability very clear - it will apply to the processing of personal data by controllers and processors in the EU, regardless of whether the processing takes place in the EU or not. The GDPR will also apply to the processing of personal data of data subjects in the EU by a controller or processor not established in the EU, where the activities relate to: offering goods or services to EU citizens (irrespective of whether payment is required) and the monitoring of behaviour that takes place within the EU. Non-Eu businesses processing the data of EU citizens will also have to appoint a representative in the EU. So what does this mean to you...well, if you have a website then you need to be GDPR Compliant. Does this scare you if you know nothing about this or don't now if your site is compliant? At Straydog, we can help. We can assess your site and help you get GDPR compliant, just give us a call or contact us through our webform...remember, the deadline for compliance was May 25, 2018. The penalties for not being compliant can be stiff, don't be a target, let us help!   Article by Rob Barnett President, Brand Strategist at Straydog Tweet

Straydog has been awarded the 2018 Runner-up in North America in the fifth edition of Best Brand Awards, for the design of the Cannabis Compliance brand. The CCI Brand and logo is a a bold and clean brand identity. We designed a strong CCI anogram, whereby the gaps in the letters represent the comprehensive services that CCI provide to their clients. About Best Brand Awards Best Brand Awards are the international awards honoring the excellence on the design around the world. Designers, agencies, companies world wide are represented each year, promoting their best works and launching the best brands of the planet. About Cannabis Compliance Inc. Cannabis Compliance Inc offers risk mitigation, due diligence and regulatory compliance for commercial cannabis producers and resellers around the world. We focus in the Global market, and provide our clients with trusted and comprehensive solutions. CCI has extensive expertise in regulatory compliance, cultivation/horticulture, security designs/tender, facility designs/build-outs, quality assurance programs, Import & Export, staff recruitment and financial planning. CCI exists to empower the future leaders in the global cannabis industry.   Article by Rob Barnett President, Brand Strategist at Straydog Tweet