Do you know your third-party providers well?
To maintain your compliance, you will have to track your third-party suppliers and how they handle any customer record data you pass over to them. These suppliers have to meet the same security and privacy standards as your internal team. However, it’s not enough to ask around this at the beginning of any relationship – you have to check that these standards remain in place over time too. Auditing your suppliers on a regular basis is therefore necessary.
