Avoiding the cyber fines:
Start addressing your cyber-fine risks with our comprehensive toolkit.
Get authorative answers about your cyber-security & compliance posture with our interactive and measurable tools based approach.
Don't become a cyber-fine victim - Become proactive.
Stop the risky business of flying blind, use our tools and remove the risks.
What are the fines?:
• Web Accessibility (ADA/WCAG) fines. These are fines up to $55,000 for the first violation and $110,000 for each subsequent offense. ($4,000 for minor ones)
• GDPR, CCPA, PIPEDA, LGPD / ePrivacy etc. Non-compliance fines. This applies to most organizations processing personal data - compliance is mandatory. – Huge fines based on worldwide income for non-compliance. (Up to €20 million, or 4% of worldwide turnover for the preceding financial year for GDPR)
• PCI-DSS fines. ($5,000 to $100,000 per month, according to the Payment Card Industry Compliance Guide) (Applies mainly for eCommerce sites) In the worst case they may prevent you from operating entirely. For exampe: A fine of $145 million and a ban from processing card payments for 14 months. That was the PCI DSS fine Heartland paid for data theft of 100 million debit and credit card data from their site not so long ago.
• Fines related to actual data breaches/hacks. (This can vary from many thousands of dollars to multi-million dollars)
The answer to these formidable challenges is starting early, proactively utilizing tools that reveal and resolve risks and problems early on.
(Eventually, you may likely not have the skills to fix all the issues yourself. But you will at least know about them, enabling you to take appropriate actions, which is half the battle won. And afterwards you will be able to see if they have been mitigated as ordered.)
NEW (below)! Slideshow featuring some essential tools. (Best seen on a computer with a bigger screen)
• Web Accessibility (ADA/WCAG) fines. These are fines up to $55,000 for the first violation and $110,000 for each subsequent offense. ($4,000 for minor ones)
• GDPR, CCPA, PIPEDA, LGPD / ePrivacy etc. Non-compliance fines. This applies to most organizations processing personal data - compliance is mandatory. – Huge fines based on worldwide income for non-compliance. (Up to €20 million, or 4% of worldwide turnover for the preceding financial year for GDPR)
• PCI-DSS fines. ($5,000 to $100,000 per month, according to the Payment Card Industry Compliance Guide) (Applies mainly for eCommerce sites) In the worst case they may prevent you from operating entirely. For exampe: A fine of $145 million and a ban from processing card payments for 14 months. That was the PCI DSS fine Heartland paid for data theft of 100 million debit and credit card data from their site not so long ago.
• Fines related to actual data breaches/hacks. (This can vary from many thousands of dollars to multi-million dollars)
The answer to these formidable challenges is starting early, proactively utilizing tools that reveal and resolve risks and problems early on.
(Eventually, you may likely not have the skills to fix all the issues yourself. But you will at least know about them, enabling you to take appropriate actions, which is half the battle won. And afterwards you will be able to see if they have been mitigated as ordered.)
NEW (below)! Slideshow featuring some essential tools. (Best seen on a computer with a bigger screen)
The above slideshow shows just a
tiny subset
of tools (Free and paid ones) that you can use to to
assess, improve and fix
your compliance / security posture.
So what I have collected and categorized is an Excel sheet with
- More than 750 tools, including:
- Accessibility tools
- Privacy tools
- Standards compliance tools
- PCI/DSS tools
Just to mention a few categories.
(Screenshot from a small fragment of the Excel file below:)
For the time being, the only way to get access to this resource is to help our friend Jane with her knee surgery. Get access to it by donating $200 to her health recovery fund.
Important questions that will be answered by using these tools:
• Am I currently at risk of getting a huge fine and how can I find out?
• Does my outsourcing partners comply with the new regulations? Suppose I use a 3rd party element that causes a violation of my customer's rights. In that case, I can still be held responsible for non-compliance!
• Do I unknowingly expose my customers to illegal data collection?
• What is my website or app's cybersecurity score?
• How likely is it that I will get hacked based on my present-day security status?
• Does my website comply with the new regulations, or am I just gambling that they will not find me?
In a nutshell - what is my strategy for online survival?
Don't speculate about these matters, find out by using our cyber-toolkit.
Ignorance is not bliss at all. It is more like a kiss of death...
But knowledge is power, and you can do something to rescue yourself by getting the right kind of knowledge and tools.
Recent legal development:
Web Accessibility fines:
On July 26, 1990, President George H.W. Bush signed the American Disabilities Act (ADA) into law.
According to Seyfarth Shaw, the number of Federal Website Accessibility Lawsuits Almost Tripled in 2018. Most of those cases (96%) were filed in Florida and New York.
In 2021, online stores were noted to be a target for website accessibility.
Six primary industries are being hit the hardest, as noted by UsableNet: retail, food service, travel and hospitality, banking and finance, entertainment and leisure, and self-service.
https://getadaaccessible.com/ada-compliance-law-and-penalties/
A few more articles are below:
It’s a win for Web accessibility as courts can now order companies to make their sites WCAG 2.0 compliant
https://hub.packtpub.com/its-a-win-for-web-accessibility-as-courts-can-now-order-companies-to-make-their-sites-wcag-2-0-compliant/
Web accessibility emerges as a top CIO priority
Various legal and regulatory developments and a substantial potential market will make digital accessibility a top priority in 2022.
https://www.cio.com/article/307552/web-accessibility-emerges-as-a-top-cio-priority.htmll
Privacy Compliance
(A proactive approach to data compliance is the only way to avoid these pitfalls.)
You need to use tools to meet a growing number of compliance requirements:
(A proactive approach to data compliance is the only way to avoid these pitfalls.)
You need to use tools to meet a growing number of compliance requirements:
PCI-DSS Fines
PCI DSS: Protecting Payment Card Information.
PCI DSS is not enforced by law. However, it is a requirement from Visa, Mastercard, American Express, Discover, and JCB. And if you don’t comply, you won’t be able to process card payments from the customers of those systems!
Get the Proactive Cyber Protection Pack:
What is in our offer?
A carefully curated spreadsheet list of 750 diagnostic and troubleshooting tools.
The list is split up into categories containing (amongst others):
• Account takeover prevention tools
• Security scanner tools
• Email security tools
• Compliance tools
• Security Policies Configuration (CSP,
• Malware scanners.
• Application security tools.
• Content Security Policy tools.
• Cybersecurity rating tools.
• Solutions to the GDPR documentation requirements.
• Beef up Website security & vulnerabilities.
• Avoid credential stuffing and Account takeover attacks (ATO)
+ much more.
How do you use the tools effectively?
1) Install the "open multiple URL" Firefox or Chrome extension.
2) Copy and paste the tools you want to examine into the browser.
3) Interact with each tool and examine the results.
What is in our offer?
A carefully curated spreadsheet list of 750 diagnostic and troubleshooting tools.
The list is split up into categories containing (amongst others):
• Account takeover prevention tools
• Security scanner tools
• Email security tools
• Compliance tools
• Security Policies Configuration (CSP,
• Malware scanners.
• Application security tools.
• Content Security Policy tools.
• Cybersecurity rating tools.
• Solutions to the GDPR documentation requirements.
• Beef up Website security & vulnerabilities.
• Avoid credential stuffing and Account takeover attacks (ATO)
+ much more.
How do you use the tools effectively?
1) Install the "open multiple URL" Firefox or Chrome extension.
2) Copy and paste the tools you want to examine into the browser.
3) Interact with each tool and examine the results.
A