News & Events

To help understand the relatively new concept of the Zero Trust Model when it comes to data privacy and security, think of something very old: a castle from the Middle Ages. The traditional approach to security called for high walls, a moat, and a drawbridge all meant to fend off an outside attack. Those allowed inside the castle walls were considered trusted and had unchecked access. Applying the Zero Trust Model, the exterior barriers would remain, but additional interior measures would track everyone’s movements throughout the castle and reconfirm authorization prior to accessing any room. 
Read More

Just as the LBD could be considered an anchor of a woman’s closet – if not of the women’s fashion world in general – consent could be argued to be the LBD of the privacy world.  Every organization collecting personal information needs consent to do it.  It’s the baseline authority mechanism for collecting, processing, storing and transferring that personal information.  Consent is needed by government agencies, financial services companies, healthcare organizations, cloud communication providers, ride share platforms, online retailers, and everything in between.
Read More

“The Art of Approachable Privacy is a phrase I didn’t hear until I came to Kuma, and it’s truly one of the key advantages we have because it shows how we work with clients to set up and implement privacy programs that educate and empower employees,” Theo says. “It’s about — exactly as it says — making privacy approachable and not so scary that it seems insurmountable. Once you establish that. . . .
Read More

There’s a reason for this day! It is to celebrate the recognition of privacy, data protection, and freedom of expression. In 2007, the Council of Europe and the US House of Representatives each declared that the original signing date of a very important international convention would be recognized as Data Privacy Day. This was the date the Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data (‘Convention 108’) was signed on the 28th of January in 1981
Read More

Whereas most privacy and security agencies simply identify risks and offer services or recommendations to remedy those vulnerabilities, Kuma takes a different approach, favoring education as the best long-term solution. Kuma’s comprehensive new training series on privacy and security matters ensures that all employees are cognizant of best practices and — even more important — understand the “why” behind the lessons. 
Read More

Depending on where you live in the United States, and the kind of business you are in, you have likely heard something or other about driver’s licenses going digital. Many states are exploring the value, feasibility and various approaches to issuing driver’s licenses to our mobile phones. There are a wide variety of factors, players and influences that are presenting themselves as Mobile Driver’s Licenses (mDLs) make their way to the mainstream. Let’s take a closer look at what mDLs may mean for all of us and what it is going to take to drive their adoption.
Read More

Meet Josh, our Director of Security & Compliance. Often referred to as a unicorn in his profession and taking pride in helping clients meet their security and compliance needs, one coffee cup at a time, he's found his niche at Kuma.
Read More

Meet Santosh, our Director of Privacy. It’s a serendipitous publication that brought him to the privacy & security domain, he can drive a stick-shift and enjoys it a lot more than auto-transmission, and he refrains from eating anything that's canned and he drinks vegetable juice every morning.
Read More

Something I have always loved about the privacy industry is that everyone has taken a different path in their careers and towards success.
Read More

After obtaining her Juris Doctorate degree from the University of South Carolina, Jade began her privacy career. She served as a privacy officer for a pharmacy with locations throughout the country and grew to become the Director of Corporate Compliance for that organization. In addition to maintaining knowledge of relevant privacy legislation and regulations, her time was spent supervising the compliance department employees, overseeing internal and external audits, monitoring training and licensing verification, and creating policies and procedures.
Read More