Danielle Barbour

NIS 2 Directive Security Requirements for UK Banking Institutions

by Danielle Barbour April 2, 2026April 2, 2026 | Regulatory Compliance

The NIS 2 Directive establishes comprehensive cybersecurity obligations across essential and important entities throughout Europe, and its influence extends to UK banking institutions through supply chain relationships, cross-border operations, and...

State AI Legislation Surge: March 2026 Compliance Insights

by Danielle Barbour April 1, 2026April 1, 2026 | Regulatory Compliance

The first two weeks of March 2026 produced more enacted state AI legislation than most observers expected for the entire quarter. Washington’s legislature adjourned on March 12 after giving final...

AI Fine-Tuning and Customer Data: What Privacy Laws Actually Require

by Danielle Barbour March 30, 2026March 30, 2026 | Regulatory Compliance

Fine-tuning AI models on proprietary customer data is one of the most compelling use cases in enterprise AI — a model trained on your own customer interactions and transaction history...

Human in the Loop: What It Means for AI Compliance and When It’s Required

by Danielle Barbour March 30, 2026March 30, 2026 | Regulatory Compliance

“Human in the loop” is one of the most frequently cited — and least precisely defined — concepts in AI data governance. Organizations invoke it to assure boards that AI...

How to Conduct a Data Protection Impact Assessment for AI Systems

by Danielle Barbour March 30, 2026March 30, 2026 | Cybersecurity Risk Management

A Data Protection Impact Assessment is required before deploying any AI system that poses a high risk to individuals’ rights and freedoms. Most enterprise AI deployments qualify. Most organizations are...

How to Ensure the AI Tools Your Company Uses Are GDPR Compliant

by Danielle Barbour March 30, 2026March 30, 2026 | GDPR Compliance

Most organizations approach GDPR and AI as a vendor evaluation exercise. Check whether the AI platform has a Data Processing Agreement. Confirm it covers data transfers under standard contractual clauses....

AI Compliance by Industry: A Regulatory Reference Guide

by Danielle Barbour March 30, 2026March 30, 2026 | Regulatory Compliance

There is no universal AI compliance framework. Every organization deploying AI inherits the regulatory obligations attached to the data it processes — and those obligations vary dramatically by industry, data...

AI Compliance Requirements for State and Local Government: What You Need to Know

by Danielle Barbour March 30, 2026March 30, 2026 | Regulatory Compliance

State and local government agencies are deploying AI across citizen services, public safety, benefits administration, tax enforcement, and court systems at a pace that has outrun the governance frameworks most...

AI Compliance Requirements for Financial Services Firms: What You Need to Know

by Danielle Barbour March 30, 2026March 30, 2026 | Regulatory Compliance

Financial services firms are among the most aggressive early adopters of AI — and among the most exposed when it comes to compliance. The regulatory environment they operate in was...

AI Compliance Requirements for Federal Contractors: What You Need to Know

by Danielle Barbour March 30, 2026March 30, 2026 | Regulatory Compliance

Federal contractors occupy one of the most demanding AI compliance environments in the enterprise market. The regulatory stack they operate under — CMMC 2.0, NIST 800-171, FedRAMP, ITAR, FISMA, and...

AI Compliance Requirements for Legal Departments and Law Firms: What You Need to Know

by Danielle Barbour March 30, 2026March 30, 2026 | Regulatory Compliance

Legal departments and law firms occupy a distinctive position in the AI compliance landscape. Unlike other industries where AI compliance is primarily a regulatory matter, legal AI compliance is simultaneously...

AI Compliance Requirements for Manufacturers: What You Need to Know

by Danielle Barbour March 30, 2026March 30, 2026 | Regulatory Compliance

Manufacturing sits at a unique intersection in the AI compliance landscape. Defense manufacturers must satisfy CMMC 2.0 and ITAR compliance requirements that apply with full force to AI systems touching...

AI Compliance Requirements for Healthcare Organizations: What You Need to Know

by Danielle Barbour March 30, 2026March 30, 2026 | HIPAA Compliance

Healthcare organizations handle the most sensitive personal data in any industry — and they are deploying AI faster than most sectors have built the governance infrastructure to support it. AI...

20 States, Zero Federal Law, and a 40% Cost Increase

by Danielle Barbour March 26, 2026March 26, 2026 | GDPR Compliance

The United States now has more than 20 comprehensive state privacy laws on the books, with Oklahoma’s SB 546 — the latest to pass — set to take effect in...

AI Data Protection Strategies: Masking Techniques for Compliance Leaders

by Danielle Barbour March 26, 2026March 26, 2026 | Cybersecurity Risk Management

AI adoption has surged across regulated sectors, but the sensitive nature of training and inference data has exposed organizations to new privacy, compliance, and reputational risks. Compliance leaders must ensure...

Security and Compliance Blog

Learn security strategies, compare vendors, and implement best practices to prevent breaches and compliance violations from risky third party communications.

Posts by Danielle Barbour

NIS 2 Directive Security Requirements for UK Banking Institutions

AI Compliance by Industry: A Regulatory Reference Guide

AI Compliance Requirements for State and Local Government: What You Need to Know

AI Compliance Requirements for Financial Services Firms: What You Need to Know

AI Compliance Requirements for Federal Contractors: What You Need to Know

AI Compliance Requirements for Manufacturers: What You Need to Know

AI Compliance Requirements for Healthcare Organizations: What You Need to Know

Get started.