- Page 38 of 124 -

If you must comply with the Red Flags Rule, which is a rule that falls under the umbrella of the Fair and Accurate Credit Transactions Act (FACTA), which most organizations in the U.S. who process payments from their customers must comply with, for which compliance is required by November 1 of this year, then you should review the recently released guidance documents that will be used by the government oversight examiners…

Read the rest of this entry »

Tags: awareness and training, FDIC, federal reserve, identity theft, Information Security, IT compliance, IT training, policies and procedures, privacy law, privacy training, Red Flags rule, risk management, security training
Posted in Laws & Regulations, Privacy and Compliance | No Comments »

Two Great Sites About Privacy Breaches and Privacy Studies

October 16th, 2008

A friend (thanks Terry!) just pointed me to a couple of really great sites that Nymity provides without needing to register, and they have no ads or marketing…

Read the rest of this entry »

Tags: awareness and training, Information Security, IT compliance, IT training, Nymity, policies and procedures, privacy breaches, privacy studies, privacy training, risk management, security training
Posted in Privacy and Compliance, Privacy Incidents | No Comments »

Insider Threat Example: Obama’s Campaign Folks Make Email Mistake

October 15th, 2008

No matter how much technology you throw at trying to prevent security incidents, the weakest link in the organization, your personnel (who could be your strongest link with effective training and ongoing awareness) can defeat that security technology.
On purpose, because of lack of knowledge, or by making a plain ol’ mistake.
And EVERYONE makes mistakes. Fewer if they are more diligently aware though.

Read the rest of this entry »

Tags: awareness and training, Barack Obama, email mistakes, Information Security, insider threat, IT compliance, IT training, policies and procedures, politics, privacy training, risk management, security training
Posted in Information Security, Training & awareness | No Comments »

Commerce Department Issues New Rule For Encryption Exports

October 14th, 2008

Remember all the talk in the 1990’s that surrounded the legalities, and largely restrictions, surrounding how encryption could be used for data sent outside the U.S.? Or how encryption tools and algorithms could be exported? It’s been a significantly more silent issue during this new century.

Read the rest of this entry »

Tags: awareness and training, encryption, Information Security, IT compliance, IT training, policies and procedures, privacy training, risk management, security training
Posted in Information Security, Laws & Regulations | No Comments »

Hackers Are “Rattlesnakes Without the Rattles”

Web 2.0 Security, Privacy & Policies

FTC Postpones Active Red Flags Rule Enforcement To May 1, 2009

DHS Secretary Chertoff Calls For Better Computer Security

Reading Online Privacies Could Cost $365 Billion Annually? Doubt It!

$243 Million Judgment In Iowa For Violations Of Spam Law

Federal Reserve Releases Examination Procedures For Red Flags Rule Compliance

Two Great Sites About Privacy Breaches and Privacy Studies

Insider Threat Example: Obama’s Campaign Folks Make Email Mistake

Commerce Department Issues New Rule For Encryption Exports

Search Privacyguidance

Categories

Archives

Blogroll

Meta

Syndicate