Archive for November, 2007

Do Something To Change Information Security, Privacy and Compliance…Contact Congress!

Sunday, November 4th, 2007

I, along with a very large number of other bloggers, writers and instructors, often pick apart data protection and privacy laws and regulations, and point out how certain portions of them are infeasible for most organizations to implement, and talk about the types of laws that should be inacted to protect personally identifiable information (PII) and privacy. But how many of us actually do something about it and contact our lawmakers to communicate this information?

(more…)

Definitions For the Identity Theft Prevention Program Rule Under FACTA & Questions For Your Organization

Friday, November 2nd, 2007

In addition to some great followup questions I got from Andy in response to my blog posting yesterday, “FTC Now Requires Organizations to Have an Identity Theft Prevention Program” I have also received some interesting questions from others about the new Identity Theft Prevention Program Rule, along with having the opportunity to have some interesting discussions with several folks today, such as Linda McGlasson at bankinfosecurity.com.

(more…)

Definitions For the Identity Theft Prevention Program Rule Under FACTA & Questions For Your Organization

Friday, November 2nd, 2007

In addition to some great followup questions I got from Andy in response to my blog posting yesterday, “FTC Now Requires Organizations to Have an Identity Theft Prevention Program” I have also received some interesting questions from others about the new Identity Theft Prevention Program Rule, along with having the opportunity to have some interesting discussions with several folks today, such as Linda McGlasson at bankinfosecurity.com.

(more…)

FTC Now Requires Organizations to Have an Identity Theft Prevention Program

Thursday, November 1st, 2007

Did you know that if you are a U.S. financial organization, *AND/OR* if you have information about your U.S. customers with which identity theft could occur, you are now legally required to have a documented Identity Theft Prevention Program to help prevent identity theft in connection with new and existing accounts?

(more…)