Test

Category: Security & Compliance

  • AI Security Isn’t Optional. It’s Urgent

    AI tools behave like email—they send and receive data. But unlike email, they can query internal systems and interrogate your data. That’s why permissions, monitoring, and data loss prevention policies are more critical than ever.

    Security isn’t just about blocking access. It’s about managing what AI tools can see, do, and share. TechHouse’s AI usage policy emphasizes transparency, ethical use, and data protection. We recommend monitoring AI activity in the same way as email, restricting access to approved tools, and preventing sensitive data from leaking through prompts.

    AI adds complexity. Your security strategy needs to evolve with it.

    Read full article here

  • Updating Your AI Governance — What SMBs Should Do Now

    If your current policy on AI is “don’t use it,” it’s time for a rethink.

    Small businesses increasingly use tools like Microsoft 365 Copilot, GPT-based services, and low-code platforms. However, without clear guidelines, teams may use these tools in ways that create risk or confusion.

    What to Update:

    • Define which tools are approved for work use
    • Clarify how sensitive data should be handled in AI prompts
    • Add a contact person for exceptions or questions
    • Ensure storage and classification policies apply to AI-generated content

    Why It Matters:

    Even informal policies need to evolve. A simple one-page update to your handbook or SOP can prevent misuse and support safe adoption.

    Want examples and templates?

    Read the full article here for practical guidance on updating your governance.

  • Transitioning Your Cybersecurity Strategy from Stage 1 to Stage 2

    When your company is small, with just a few employees, security often relies on personal knowledge and trust. But as your company grows, you need more structured processes, including cybersecurity. In this post, we’ll discuss key areas to consider and actions to take as you transition.

    Reasons to Change Your Cybersecurity Approach

    Increased Attack Surface

    As your company grows, so does your attack surface. More users, devices, data, and applications mean more entry points for attackers. Due to more people and workflows, you also have less control over this expanded surface.

    Operational Continuity

    Growth also brings staff changes. While turnover is less of an issue with a small team, it becomes more likely as you expand. Operational continuity ensures your business can continue smoothly regardless of staff changes. This is crucial for cybersecurity. In a small team, one person might keep everyone informed about cybersecurity changes. But who will ensure all employees use multi-factor authentication (MFA) correctly as your team grows? Ensuring operational continuity in cybersecurity is essential as your organization expands.

    Get Started With:

    • Policies: Implement Cybersecurity, Data, and Usage Policies.
    • Tools: Use Automated Patch Management for all devices.
    • Testing: Maintain centralized and regularly tested backups.

    Interested in Learning More?

    Check out our LinkedIn article for more areas, like third-party software and breach costs. We are always glad to meet with you to explore what cybersecurity defenses are a good fit for your organization today.

  • Dynamics GP Support FAQ And Key Dates

    GENERAL

    Q. When will Dynamics GP support end?

    For customers using the latest version of Dynamics GP (currently v18.6), Microsoft will continue releasing product updates, regulatory (tax) updates, and security updates/hotfixes until September 30, 2029, and security updates if needed until April 30, 2031. And technical support will be available until September 30, 2029 (except until April 30, 2031, for support related to security updates/hotfixes). Customers using an earlier version of Dynamics GP covered by the Modern Lifecycle Policy (i.e., v18.1 – 18.5) should upgrade to the current version of Dynamics GP.

    For customers on a legacy version of Dynamics GP covered by the Fixed Lifecycle Policy (GP 2018 R2 and earlier), support ends on the dates published on the Microsoft lifecycle website (see https://microsoft.com/lifecycle), which are earlier than above.

    Note: To access any updates or support during the periods indicated above, customers must have an applicable Service Plan.

    Q. Why is Microsoft ending support for Dynamics GP?

    Microsoft is channeling its innovation and investment into cloud solutions and technologies. We are convinced that cloud solutions elevate business performance through AI capabilities and enhanced security. Consequently, we are accelerating our investment in Dynamics 365 Business Central to address the ERP needs of small and medium-sized businesses.  

     

    END OF SUPPORT

    Q. Can customers download security updates for their existing Dynamics GP environment after April 30, 2031?

    For customers on the current version of Dynamics GP (currently v18.6), Microsoft does not expect to create additional security updates beyond April 30, 2031.

    For customers on a legacy version of Dynamics GP covered by the Fixed Lifecycle Policy (GP 2018 R2 or earlier), support ends on the dates published on the Microsoft lifecycle website (see https://microsoft.com/lifecycle), which are sooner than April 30, 2031.

    In either case, current policy permits customers with an active Service Plan (e.g., AP) to download previously released security updates for their version of Dynamics GP, even if such download occurs after the applicable end of support date(s) for that version. Policies are subject to change.

    Q. Can customers user licenses and modules to their existing Dynamics GP perpetual or subscription environments beyond September 30, 2029, or April 30, 2031?

    Currently customers with an active Service Plan (e.g., AP) may purchase additional user licenses for their existing system, even if such purchase occurs after the applicable end of support date(s). Policies are subject to change.

    Q. Can customers purchase Service Plans beyond September 30, 2029?

    Currently customers may renew their Service Plans (e.g., EP, AP, Advantage Plans) beyond their end of support date(s), however, product support benefits including upgrades and incident support are not provided by such plans beyond end of support dates as described in the first question of these FAQs. See Microsoft Services and Support Policy Guide (PSBC log-in required) for which benefits are available before and after end of support dates. Policies are subject to change.

    Q. Will Extended Security Updates (ESUs) be offered?

    Extended Security Updates or ESUs (which provide critical security updates beyond end of support) are not expected to be offered for Dynamics GP products.

    Q. Can customers using Dynamics GP continue to use the product beyond its end of support date?

    Customers with a perpetual license for Dynamics GP may continue using their licensed solution beyond its end of support date, however, use of a then-unsupported product is not recommended.

    Currently customers with a subscription license for Dynamics GP are not blocked from renewing their subscription license on Dynamics GP’s end of support date, but doing so is not recommended as the product would no longer be supported. Permitting such continued use will be reviewed and may change.

    Q. Will Service Plans end on September 30, 2029?

    Customers should engage with their partners to develop a migration plan which considers any renewal date considerations. Currently Service Plans (e.g., EP) are available beyond end of support dates, although many benefits (e.g., upgrades) do not extend beyond the end of support dates as described in the first question of these FAQs. See Microsoft Services and Support Policy Guide (PSBC log-in required) for benefits available before and after the end of support dates. Policies are subject to change.

    MIGRATING TO DYNAMICS 365 BUSINESS CENTRAL

    Q. Can customers with highly customized Dynamics GP environments migrate to D365 Business Central?

    Dynamics 365 Business Central has benefited from extensive development and enhancement in recent years and many features/processes that once required customization are included in the base product. In addition, there has been tremendous growth in ISV extensions for Business Central, providing cost-effective solutions for customer and industry-specific requirements. Over 5500 solutions are available in AppSource to extend Business Central’s functionality. Click here to explore.

    Q. Can customers move from Dynamics GP perpetual to Dynamics 365 Business Central on-premises?

    Microsoft believes Dynamics 365 Business Central (online) represents the best long-term solution for most Dynamics GP customers. However, Dynamics 365 Business Central on-premises perpetual licenses currently remain available for new Business Central customers until April 1, 2025, and Dynamics 365 Business Central on-premises subscription licenses currently remain available for new Business Central customers until April 1, 2026. Policies are subject to change.

     

    GP Versions with Support Start and End Dates

     

  • Planning for 2025 – Tech and Trends for Small and Midmarket Businesses.

    As we enter 2025, small and mid-market businesses must stay ahead of the curve. At TechHouse, we understand your unique challenges. Here’s a concise guide to help you navigate the key trends and ensure your business thrives.

    To-Do List from 2024

    Following the release of Generative AI in late 2023, 2024 became a whirlwind of changes and advancements. If you haven’t caught up yet, here are the must-dos:

    • Understand the Shared Responsibility Model: Ensure your team knows who is responsible for what in your IT setup, especially with cloud services.
    • Secure Based on IT Policies: Focus on AI, data management, and security. Make sure your policies are up-to-date and comprehensive.
    • Everything to SaaS: Move as many applications as possible to Software as a Service (SaaS), including desktops and legacy apps.
    • Spreadsheets Skills Refresh: Post-COVID, it’s time to refresh basic and advanced spreadsheet skills.
    • Low Code and AI Integration: Embrace low-code platforms and integrate AI to streamline operations.
    • Secure Yourself Against Increased Attacks:
      • Patching and Updates: Regularly update all software and systems. Monthly patches are essential.
      • SOC (Security Operations Center): If you don’t have a full SOC, follow basic guidelines for phishing prevention, multi-factor authentication (MFA), conditional access, and endpoint security.
      • Cloud Security: Secure connections to cloud software and monitor for anomalies. Firewalls and VPNs are still important, even with remote and cloud work.

     

    Focus for 2025: SAID – Security, AI, and Data

    Security:

    • Increased Focus on Compliance: Protection begins with your team understanding the risks and how to prevent them. Go beyond simulated phishing testing to include security policies for AI usage, data management, and updated security protocols.
    • AI Policy: With over 70% of organizations using AI by mid-2024, having a clear AI policy is non-negotiable. Train your team on its implications and usage.

    AI:

    • Industry-Specific AI Models: In 2025, expect more industry-specific and organization-specific trained AI models. Create knowledgeable AI models to search specific SharePoint content and automate everyday tasks.
    • Select Your First Application: Whether it’s information gathering, summarizing complex information, or automating tasks, consider these initial use cases:
      • Hyper-Personalization: AI can help your sales team and support desk quickly find the right mix of products for customers.
      • Smart Support: Use AI as an advanced wiki or knowledge base that provides rich conversational support for troubleshooting and problem-solving.
      • Expert Guidance: AI can be an expert in your tools, helping you become proficient in applications like Excel, Word, Dynamics Sales, or even your proprietary software.

    Data:

    • Data Quality: “Garbage in, garbage out” is as relevant as ever. Treat your file storage (e.g., SharePoint, Dropbox) with care. Cleanse data and decide what can and cannot be accessed by AI models. Tools like SharePoint AI Agents can simplify this effort.

    How to Move Forward from Here:

    • Assess Workflows: Track Time, effort, and outcomes. The goal is to understand in broad strokes where benefits may be gained. Work with a business and tech advisor to identify opportunities.
    • Assess Recent Advances and Capabilities: Consider how new technologies can be applied to your business. Consider common use cases above as thought starters.
    • Pilot Selection: Start with a small, well-defined pilot project. Provide training to ease transitions and boost productivity.
    • SAID Planning: Assess each plan based on Security, AI, and Data.
    • Deployment: Roll out successful pilots in phases. Start with early adopters and quick wins. Be prepared to adjust and pivot as technology changes during the project.
    • Feedback Loop and Repeat: Encourage continuous feedback with tools like a Teams channel or a dedicated email address.

    Planning for and delivering on these key initiatives can help you stay competitive and secure in 2025. At TechHouse, we’re here to provide innovative solutions, practical software, and friendly support every step of the way. Let’s make 2025 your best year yet!

    TechHouse

    Innovative Solutions. Practical Software. Friendly Support.

    Schedule a call  |  View Upcoming Events  |  Access our TechHouse Library of Articles