#compliance

Dan Berezin Stelzer 13 May 2026 5 min read

On April 15, NIST announced a prioritized enrichment model for the National Vulnerability Database. Most CVEs will still be published, but fewer will receive the CVSS scores, CPE mappings, and CWE classifications that container scanners and compliance programs have historically relied on. The change formalizes a drift that has been visible to anyone pulling NVD...

productscompliancesecurity

Erlang Solutions Team 12 Feb 2025 8 min read

DORA is in effect, making compliance essential for fintech firms. This guide covers key requirements, risks, and next steps. The post DORA Compliance: What Fintech Businesses Need to Know appeared first on Erlang Solutions.

fintechuncategorizedcompliancedora

Vibhuti Garg 13 Apr 2023 1 min read

Emerging regulations, like the revised U.S. FTC Safeguards Rule, are largely focused on proactive threat defense to drive effective security. Interestingly, the revised U.S. Federal Trade Commission (FTC) Safeguards Rule now covers auto dealers and other “non-banking financial institutions.” This is because automobile dealerships, amongst many other organizations, process and store consumers’ personal financial data. The […] The post Revisions…

spotlightcompliancedns-layer securityftc safeguards rule

Nazanin Hoglund 6 Apr 2023 1 min read

Are you writing loans at your car dealership, printing checks, issuing your own store credit card — or otherwise handling consumer financial data? You may not consider yourself a “financial institution” — but the U.S. Federal Trade Commission (FTC) sure does. FTC is classifying countless companies as a “non-banking financial institutions” subject to its revised […] The post FTC Safeguards…

spotlightcomplianceftc safeguards rule

Rob 13 Feb 2023 2 min read

A very big part of my work at Covie for the last year has been putting in place the processes required for to achieve SOC 2 Type II compliance. This standard by the AICPA is all about an organisation's security, availability, processing integrity, privacy and confidentiality controls and processes. It's a comprehensive set of requirements covering our product's and organisation's…

compliance

lukaseder 30 Jun 2016 1 min read

When people start creating commercially licensed software (like we did, in 2013 with jOOQ), there is always the big looming question: What do I do about piracy? I’ve had numerous discussions with fellow entrepreneurs about this topic, and this fear is omnipresent. There has also been a recent discussion on reddit, titled “prevent sharing of … Continue reading With Commercial…

businessjooq-developmentopen-sourcecommercial licensingcompliance