Posts Tagged ‘Department of Homeland Security’

Example privacy breach response plan

Sunday, February 24th, 2008

Too few organizations are prepared to respond to a privacy breach when it happens. Too many naively believe a privacy breach will not happen to them.
It is helpful to look at existing privacy breach notice plans when creating your own. The U.S. government agencies actually provide some good plans you can use as examples.


New U.S. Law Effective Jan 1 Prohibits Lithium Batteries In Checked Luggage

Friday, December 28th, 2007

I like to carry extra laptop and cell phone batteries with me when I travel for more than a couple of days at a time, especially if going outside the country. I fried a cell phone once using a faulty outlet converter overseas, so now I like to play it safer by depending upon extra batteries. It was fairly simple to pack the extra batteries into my checked luggage. It was a good simple way to have a backup power source while travelling.
Well, as of next Tuesday that simplicity is no more.


Social Security Number No Match Rule: Employers Will Need to Prove Compliance

Monday, August 20th, 2007

The new U.S. Social Security number (SSN) No Match Rule was published August 15 in the Federal Register. You can also see it here.
This new regulation provides directives for the letters the U.S. Social Security Administration (SSA) issues to employers when the SSA discovers that an SSN does not match the information provided by the employer.


U.S. Dept. of Homeland Security Makes 14 Privacy Impact Assessments Available

Wednesday, August 15th, 2007

I am a huge proponent of privacy impact assessments (PIAs); basically risk assessments for privacy. PIAs can reveal gaps in privacy practices, along with the information security practices used to protect privacy. They are important and effective exercises for all organizations that handle personally identifiable information (PII).