Showing Posts In "Data Protection and Privacy" Category

Government Report Calls For Comprehensive Privacy Law

A new report on consumer privacy from the Government Accountability Office concludes that there ought to be a comprehensive federal law governing the collection, use and sale of personal information by companies since there currently is none. The just-released report on “information resellers” was requested in June 2011 by Sen. Jay Rockefeller (D-W.Va.), who last […]

Getting Rid of Consumer Report Information with the Disposal Rule

Businesses commonly use consumer reports when deciding whether to make a job offer or extend a line of credit. In the wrong hands, consumer reports may also be used to commit fraud and identity theft. This is why the Federal Trade Commission (FTC) enacted the Disposal Rule. As required by the Fair and Accurate Credit […]

Workplace Privacy 2014: What’s New and What Employers May Expect

New laws that went into effect on January 1, 2014, are a harbinger of what employers may expect to see in the coming year regarding workplace privacy: more restrictions on access to applicants’ and employees’ criminal history, credit information, and personal social media content. Employers will now be required to grapple with next-generation issues raised […]

FTC Reaches Settlement With Accretive Health on Inadequate Data Security

On December 31, 2013, the Federal Trade Commission announced that Accretive Health, Inc. (“Accretive”) has agreed to settle charges that the company’s inadequate data security measures unfairly exposed sensitive consumer information to the risk of theft or misuse. Accretive experienced a breach in July 2011 that involved the protected health information of more than 23,000 […]

2014 Data Protection and Breach Readiness Guide

Breach Report Highlights: 89% of breaches and data loss incidents could have been prevented 740 million records disclosed 31% of insiders were due to insider threats or mistakes 21% of the incidents were the result of physical loss (PC, drive, notebooks, paper documents..) 40% of the top breaches recorded to-date occurred in 2013 76% of […]

Privacy Industry Index (PII): Data Breach Vendors

Protecting data has value and you have to invest to make sure that data is properly protected. Businesses must work with a large collection of vendors from a variety of disciplines to reach their privacy goals. From the legal advisors to the insurance companies to the IT services and software, the IAPP has sought to […]

Report Indicates Insider Threats Leading Cause of Data Breaches in Last 12 Months

Untitled Document While threats to data security and privacy are often perceived to come from the outside, all signs point to internal threats being just as dangerous, intentional or not. Forrester Research recently released its Understand the State of Data Security and Privacy Report, which draws on a survey of small and medium businesses and […]

Hack of Data Brokers Highlights Weakness of Knowledge-Based Authentication

Security blogger/researcher Brian Krebs broke a story recently about a cyber underground identity theft service in the business of selling Social Security numbers, birth records, credit and and background reports, and other pertinent, sensitive details of millions of Americans. The potential impact of having those details compromised is massive–which is why that information shouldn’t play […]

Top Five Information Security Threats to Data

Full survey results

10 Steps to a Quality Privacy Program: Part One

This is the first of a series of articles that will drill down on each recommended step in an effort to help those just getting started on or revamping existing policies. Step 1: Creating Roadmaps of Regulatory and/or Contractual Requirements. In order to have a sound compliance or privacy program, one first must know the […]

Subscribe to our Publications