Yesterday San Jose Mercury News printed a story about how Yahoo, Microsoft and Ask are going to “limit” the personally identifiable information (PII) they collect online.
Privacy Initiatives Sincere Or Marketing Ploy?
July 24th, 2007Reminder: Your “Privacy in the 21st Century” Submissions Need to Be in by July 27th…This Friday!
July 24th, 2007Last week I posted about this year’s Global Security Week.
PCI DSS and Identity Theft
July 23rd, 2007Over the past month or so I’ve been discussing the Payment Card Industry (PCI) Data Security Standards (DSS) with some of my information assurance practitioner friends and colleagues and what they’ve been doing to meet the requirements and accompanying challenges. I was thinking about some of the issues over the weekend.
Insider Threat Example: Payroll Employee Threatens To Illegally Use Other Employees’ PII If Not Given a Good Review
July 22nd, 2007Here’s another example of the insider threat similar to situations that I’ve heard of happening many times throughout the years through conversations with folks at conferences and other professional meetings.
Did You Know This About U.S. Bank Check Processing Compliance?
July 20th, 2007I’m thankful to be able to have my own company of one to do what I enjoy so much with information security, privacy and compliance. I am also an active part of managing the farm business for my family. With these two businesses comes A LOT of paperwork, along with checks that must regularly be sent in to various government agencies.
Privacy in the 21st Century: Show Your Creativity for Global Security Week!
July 19th, 2007Global Security Week (GSW) is September 3rd through 9th.
The topic this year is “Privacy in the 21st Century.”
Norman Borlaug: A Great Role Model for the Power of One
July 19th, 2007I have heard many information assurance (IA) professionals, when they are feeling frustrated, angry, or whatever other negative feelings we all have at one time or another, say what they are doing is not making a difference, or say they feel they are looked down upon by others in their organization as a “necessary evil.” They often feel that one person cannot make a difference.
UK Annual Privacy Report: Businesses Need To Give Individuals Access to Their PII, and More Awareness and Training Is Needed
July 18th, 2007An Exemplary Privacy Practice at a University
July 17th, 2007There are many…*MANY*…reports of privacy breaches and security incidents virtually every day. However, I think it is important to point out when organizations do something right with regard to privacy practices, particularly when they are uncommon compared to what other businesses do; perhaps other organizations will see their positive example and follow their lead.
Data Protection & Privacy Noncompliance Fines Increasing in France
July 16th, 2007The French Data Protection Authority (CNIL) made some interesting statements last week in their annual report, covering June 2006 through June 2007, about some fines they’ve given during the past 12 months for non-compliance with their data protection laws.
