Posts Tagged ‘awareness and training’
Sunday, February 22nd, 2009
On Februry 17, 2009, a new workplace privacy law took effect in Portugal…
(more…)
Tags:awareness and training, Information Security, IT compliance, IT training, policies and procedures, Portugal privacy law, privacy training, risk management, security training
Posted in Laws & Regulations, Privacy and Compliance | No Comments »
Friday, February 20th, 2009
I just ran across this U.S. Department of Justice (USDOJ) press release from January 20, 2009…
(more…)
Tags:awareness and training, Information Security, IT compliance, IT training, medical identity theft, policies and procedures, privacy training, Remberto Sarmiento, risk management, security training
Posted in identity theft | 2 Comments »
Thursday, February 19th, 2009
The 2nd ever to date HIPAA sanction has been handed down by the Department of Health and Human Services (HHS)…
(more…)
Tags:awareness and training, CVS, HIPAA, HIPAA sanction, Information Security, IT compliance, IT training, policies and procedures, privacy rule, privacy training, risk management, security rule, security training
Posted in Information Security, Laws & Regulations, Non-compliance Sanctions Examples, Privacy and Compliance | No Comments »
Tuesday, February 17th, 2009
January 28 was international Data Privacy Day, which I blogged about a few times here, here, and here.
While the Intel site posted about many of the events that occurred, there were many more they missed.
Here are a few of them:
(more…)
Tags:awareness and training, Data Privacy Day, Information Security, IT compliance, IT training, policies and procedures, privacy training, risk management, security training
Posted in Privacy and Compliance, Training & awareness | No Comments »
Monday, February 16th, 2009
On February 12 the U.S. Federal Trade Commission (FTC), the most actively aggressive oversight agency in the U.S. with regard to enforcing privacy protections, released new behavioral advertising principles…
(more…)
Tags:awareness and training, behaviorial advertising, compliance, FTC, Information Security, IT compliance, IT training, policies and procedures, privacy, privacy principles, privacy training, risk management, security training
Posted in government, Laws & Regulations, Privacy and Compliance | No Comments »
Sunday, February 15th, 2009
Cloud computing is an attractive, low-cost means of collaboration. But have you considered the risks involved with placing documents with PII “in the cloud”?
The monthly column I wrote for the December 2008 CSI Alert was, “Cloudy Privacy Computing.” Here’s the first section…
(more…)
Tags:awareness and training, cloud computing, compliance, Information Security, IT compliance, IT training, policies and procedures, privacy, privacy training, risk management, security training
Posted in Information Security, Privacy and Compliance | No Comments »
Friday, February 13th, 2009
I just ran across this article while doing some research, and it made me go, “Whoa!”…
(more…)
Tags:Australia, awareness and training, facebook, Information Security, IT compliance, IT training, policies and procedures, privacy training, risk management, security training
Posted in Information Security, Laws & Regulations, Miscellaneous | 3 Comments »
Wednesday, February 4th, 2009
Tags:awareness and training, HIPAA, Information Security, Institute of Medicine, IOM, IT compliance, IT training, policies and procedures, privacy rule, privacy training, risk management, security training
Posted in Laws & Regulations, Privacy and Compliance | No Comments »
Tuesday, February 3rd, 2009
Do any of you really think that there is a single place on earth that cannot be looked down upon from satellites too high in the sky to see with the naked eye? Google continues their march to know all and see all…
(more…)
Tags:awareness and training, google, Information Security, IT compliance, IT training, policies and procedures, privacy training, risk management, security training, surveillance
Posted in Miscellaneous, Privacy and Compliance | No Comments »
Monday, February 2nd, 2009
Boy, all throughout the day I heard on the radio, and it was all over the noon and evening news, that Iowa customers of MetaBank were receiving text messages on their phones to call MetaBank about unusual activity in their account…
(more…)
Tags:awareness and training, Information Security, IT compliance, IT training, MetaBank, phishing, policies and procedures, privacy training, risk management, security training
Posted in identity theft, Information Security, Privacy and Compliance, Privacy Incidents | No Comments »