Are privacy, AI or security compliance requirements leaving you overwhelmed?
Are your concerned about losing customer trust, unknown risks, or falling behind the competition?
Companies across industries face new Privacy and AI risks, with cascading requirements impacting companies of all sizes. AI is emerging as both a dynamic and exciting opportunity, but also a risk multiplier. Many companies push forward without awareness of the pitfalls. The consequences could emerge later with much higher impact and costs.
CodeBook AI Advisors brings expertise and capacity to help you and your team address risk, compliance and governance challenges.
How We Help Clients
Risk Management, Compliance, Regulation, Governance
Privacy
Privacy compliance is migrating from enterprises down into mid-cap and small businesses. Moving beyond the international regulations of GDPR, more than 14 US states have privacy laws and regulations, with more coming. In addition, contractual privacy requirements are cascading through the supply chain. We help clients implement compliant privacy solutions.
Artificial Intelligence (AI)
As companies deploy AI, either internally, externally, via third party applications, or their own development, they need to carefully consider risks, regulations, and ethics. Legal and compliance requirements are growing as well, such as the EU AI Act, and emerging state-level legislation. Codebook AI helps companies methodically evaluate, assess, and deploy AI responsibly.
Cyber Security
Cyber Security is a foundation of both Privacy and AI. Maintaining the confidentiality, availability and integrity of your underlying data and infrastructure is vital. Similar to our approach with Privacy and AI, we help clients implement Cyber Security frameworks, such as NIST CSF, SOC 2, HIPAA, and CIS Controls. We’re particularly focused on new AI cyber threats, both offensively and defensively.
Our Services
Consulting
We’re here to compliment your existing team with category-specific expertise and an independent, objective perspective. We can help on a comprehensive, program development basis, or on specific program elements.
Risk and Gap Assessments
Privacy Impact Assessments
AI Conformity Assessments
Policy and Process Development
Incident Response and Risk Management Plans
Data Flow and Data Inventory
Privacy Notices, Data Subject Request, Breach Notification, Record of Processing Activities
vDPO, vCISO Services
Program Leadership
Our clients often have multiple and diverse responsibilities, focused on their own business. CodeBook AI can take ownership of your compliance initiative, driving for deliberate results and timelines. We can help build, mature or operate your program.
Privacy Program Development
Artificial Intelligence Program Development
Cyber Security Program Development
Internal and External Audit Support
AI and Privacy Training
Similar to security awareness training, companies need organization-wide AI and privacy awareness. We help clients implement and deliver AI and privacy awareness training, to empower your team to optimally use emerging tools and avoid new threats.
Annual Compliance Training – Privacy, Security, AI
Awareness, Strategy and Risk
Executive Training
Speaking Engagements and Support
Regulations, Compliance and Frameworks
We support a broad range of state and international compliance and frameworks.
North American Privacy Regulations
California (CCPA), (CPRA); Colorado, (CPA); Connecticut (CTDPA); Delaware(DPDPA); Florida(FDBR); Indiana(ICDPA); Iowa (ICDPA); Maryland (ODPA), Montana(MCDPA); Nevada; New Jersey; Oregon(OCPA); Utah (UCPA); Tennessee(TIPA); Texas(TDPSA); Virginia (CDPA);
Canada Rule 25, PIPEDA, PIPA, PIP; Mexico;
International Privacy Regulations
EU (GDPR)
Algeria; Angola; Argentina; Armenia; Australia; Bahamas; Benin; Bosnia & Herzegovina; Botswana; Brazil; Canada; Chile; China; Colombia; Costa Rica; Dominican Republic; Ecuador; Egypt; EU/EEC; Ghana; Guinea; Hong Kong; India; Indonesia; Israel; Ivory Coast; Jamacia; Japan; Kazakhstan; Kenya; Lebanon; Lesotho; Madagascar; Malaysia; Mali; Mexico; Moldova; Morocco; Nepal; New Zealand; Nicaragua; Nigeria; Panama; Paraguay; Peru; Philippines; Romania; Russia; Saint Kitts and Nevis; Saudi Arabia; Senegal; Serbia; Singapore; South Africa; South Korea; Switzerland; Taiwan; Tajikistan; Thailand; Trinidad & Tobago; Tunisia; Turkey; Uganda; Ukraine; United Kingdom; Uzbekistan; Vietnam; Zambia; Zimbabwe
AI Regulations and Frameworks
EU AI Act; NIST AI Risk Management Framework (RMF); ISO 42001
OECD Principles on Artificial Intelligence; Singapore Model AI Governance Framework
States with current AI regulations: Alabama, California, Illinois, New York, Utah, Vermont, Washington
Cyber Security Frameworks
HIPAA, NIST CSF, CIS, SOC 2, ISO27001, NIST 800-171
Expertise and Credentials
Founder, Mark Kirstein has decades of management consultant experience, ranging from strategy, to go-to-market, to risk, cyber security, privacy and artificial intelligence. In recent roles, he supported clients with risk assessments and cyber security program development, including HIPAA, SOC 2, and NIST 800-171 frameworks.
Mark has a BSEE in computer design, MBA, and the following certifications:
Artificial Intelligence Governance Professional – In-Progress
Certified Information Privacy Professional – CIPP
Certified Information Systems Security Professional – CISSP
Founder and Principal, CodeBook AI Advisors
Partners
IT Managed Service Providers
We partner with MSPs to support their end-clients who are faced with privacy and AI regulations and risks. Our MSP partners help clients manage their IT assets, and implement and operate technical cyber security controls.
Professional and Legal Services
We’re not attorneys and we don’t provide legal advice. We partner with professional services companies and attorneys to help implement and operate privacy and AI governance programs on behalf of clients.
AI Developers and Applications
AI and privacy regulations are important considerations in leveraging AI for you and your clients. Developers partner with CodeBook AI to support risk and regulatory perspectives on the AI management team.
GRC Platforms and Auditors
We help our clients stand up and customize their GRC platform to efficiently manage and automate their compliance program. We partner with platform providers and auditors to enable successful compliance achievement.
Contact Us
Phone: 480-678-7778
Email: [email protected]