Posts Tagged ‘IT compliance’

The “Reasonable Belief” of a Privacy Breach

Wednesday, March 12th, 2008

The second article in my March e-journal issue of “IT Compliance in Realtime” is “The “Reasonable Belief” of a Privacy Breach.”
Here it is, unformatted:

(more…)

Iowa Privacy Breach Bill Has Much Of Its Teeth Pulled

Monday, March 10th, 2008

Iowa introduced a new bill, SSB 3200, on February 20 to establish a state privacy breach notification law.
As originally worded it would have also required merchants to follow credit and debit card industry data security rules and make them liable to banks for costs they incurred after a breach of payment card transaction data not retained in compliance with those rules. However, in the past week SSB 3200 was amended in committee to remove the retailer liability provisions.
A companion bill, HSB 721, was introduced February 26.

Twelve Messaging Risks to Address Now

Monday, March 10th, 2008

The first article within the March issue of my new e-journal, “IT Compliance in Realtime” is “Twelve Messaging Risks to Address Now.”
Here are a few excerpts…

(more…)

Warnings Of New Phishing Threat Hitting Mainstream

Friday, March 7th, 2008

Recently I blogged about getting a phishing scam message that threatened my life.
I was pleasantly surprised this morning to see the Iowa Attorney General’s office and law enforcement warning the public about this scam here.
The general public should made more aware of information security and privacy concerns, risks and scams to help keep them from falling victims to criminal schemes such as this.
What do you do to make those in your community more aware?

My New E-Journal For March Now Available!

Thursday, March 6th, 2008

Remember when I mentioned in January that I would be devoting more time in 2008 to writing papers to post to this site instead of spending as much time writing long blog postings?
Well, the papers I wrote in February are now available for you to download, FREE, in the form of what will be a monthly E-Journal!
For this month I wrote about the following issues that I see as immediately significant to businesses of all kinds:

(more…)

Another Messaging Risk To Keep In Mind

Wednesday, March 5th, 2008

Many of the business folks I’ve talked to in the past year or two are increasingly using text messaging more while doing their business. And they are using their business cell phones more for sending personal text messages.
A few weeks ago I wrote about how sending text messages got the mayor of Detroit in big trouble.
Here’s one more compelling reason to think twice about the text messages you send; whether from your business phone or personal phone:

(more…)

Did You Know This Was National Consumer Protection Week?

Tuesday, March 4th, 2008

Here’s another event related to compliance, information security and privacy to put on your calendar…
This is National Consumer Protection Week (NCPW) in the U.S.

(more…)

FREE Resource Overflowing With Great Info Sec & Privacy Articles Just Published

Monday, March 3rd, 2008

Long time dear friends and colleagues of mine, Tom and Justin Peltier, just published their “2007 Year in Review.”
It is a great, FREE, resource to add to your information security, privacy and compliance files.
Here are the folks who contributed, along with the articles they wrote:

(more…)

3rd HIPAA Criminal Indictment; Another Insider Job

Sunday, March 2nd, 2008

On February 15, Leslie A. Howell, from Oklahoma City, OK, was indicted for violating the Health Insurance Portability and Accountability Act (HIPAA) of 1996 as part of an identity theft scheme.

(more…)

Will Bad News Come in 3’s For Health Net?

Saturday, March 1st, 2008

In the past several days Health Net made the news…in ways they would rather not have…
First this on 2/22:

(more…)