Compliance

CCPA vs. GDPR: Similarities and Differences Explained

The California Consumer Privacy Act (CCPA) and the General Data Protection Regulation (GDPR) are laws that emerged to give individuals greater power over their personal information. Both regulate organizations that collect and use data in a variety of ways. A brief summary of the CCPA: Gives California residents increased transparency and control…

What Is Personal Data?

Put simply, personal data is information that relates to 1. an identified or identifiable person or 2. an identified or identifiable legal entity (where such information is protected similarly as personal data under applicable data protection laws and regulations). While regulations use different terms with slightly varying definitions, “personal…

Securing Data Across APAC: Achieving APEC PRP Certification

At Okta, trust and transparency are core to who we are as a company. These values critically inform the way we view our responsibilities to our customers and to the personal data of their users that they entrust to Okta. The keystone of our transparency is providing our customers with a clear understanding of how we collect, process, and secure…

Okta’s Response to the Court of Justice of the European Union’s Decision on Transfers of Personal Data

Okta is the identity company that stands for trust. We consider the security and privacy of our customers’ data as foundational elements of our business. Today, we’re updating our customers about their transfers of EU individuals’ personal data to Okta’s service, in light of the July 16, 2020 decision of the Court of Justice of the European Union …

Founders in Focus: DataGrail

Welcome to the next post in our Founders in Focus series. This month, we’re getting to know DataGrail, and their mission around privacy compliance. What is DataGrail and what is your mission? DataGrail aims to make privacy compliance easier for organizations. Our platform eliminates the error-prone, manual, and time-consuming processes associated…

The Production Line: Automations

For our second edition of The Production Line, we’re going back to the future with Automations. Introduced in February of 2019, this Early Availability (EA) feature is currently the most popular EA selection since we added self-enablement options for super admins, so let’s dig in! What are Automations? The Automations feature impacts three areas…

How Okta Lifecycle Management Can Help with Audit and Compliance

At Okta, we run compliance differently. Most organizations place compliance under either the legal or finance team, who don’t work with their security team to ensure those controls are implemented effectively. At Okta, we use security to drive compliance. Compliance is complex and regulations are a moving target, with GDPR and other privacy…

How Okta Can Help Confirm User Consent to Comply with Data Privacy Laws

With the proliferation of massive security breaches like Panera Bread and many others in 2018, new data privacy regulations like the GDPR are being enforced to protect individuals’ personal data. As awareness of these breaches rises, loss of individual trust is tied directly to customer sentiment, which, in turn, impacts revenue. In this post, we…

Okta Releases FIPS 140-2 Validated Encryption in Okta Verify

Credential phishing is a real and growing threat, and multi-factor authentication (MFA) is an effective protection against it. The strength of MFA lies in its requirement to present additional valid factors, beyond a password, to gain access, thwarting would-be attackers. But not all factors are created equal. Some factors, like security questions…

GDPR, Privacy and Consent Management: How Okta Can Support Your CIAM Requirements

Beginning on May 25, 2018, the General Data Protection Regulation (GDPR) became officially enforceable. This new regulation is now top of mind for any organization storing and processing EU citizen data. Consumer-facing apps and sites are of particular sensitivity. The challenge is that while the GDPR provides guidelines for compliance, it is not…

Archive