|
|
|
Last Updated: Sep 15th, 2009 - 14:20:36 |
News
New HIPAA Provisions Go in to Effect this Fall
Snuck in as part of the "American Recovery and Reinvestment Act of 2009" were some surprising provisions - including several updates to HIPAA. Among those are new and tighter restrictions on what healthcare entities must do in case of a personal information breach. These provisions also provide for much more "transparency" when a breach occurs, and penalties are applied for violators. In addition, the new HIPAA restrictions prevent any use of "personally identifying information" without your consent. Including selling the information to third parties etc. You still can't control if they aggregate information, but they can ONLY aggregate data that contains NO personally identifying information. So be prepared to sign new forms next time you visit the Dr!
[ Visit Website ]
Aug 19, 2009, 16:53
News
Your Home is YOUR Castle, Right?
Your home is your castle...and it's Private right?
Can Privacy EVER be assumed anymore?
We've all grown up hearing the old adage, your home is your castle. People firmly believe that. They believe that what happens in their home is private, and they will defend their "castle" in many different ways. While ancient castle owners built moats to keep out marauding invaders, today's "castle" owners had better come up with the electronic equivalent - and fast, if they hope to continue to defend their privacy! Since you are reading this article, it is safe to assume that you are on the internet somewhere. And I'll bet you think nobody's watching. (tuck your undershirt in by the way...) But, it's likely that whether you're sitting in your Lazy boy in your living room with your beer in one, PC on your lap, or sitting properly at your home office desk - SOMEONE is watching EVERY
click, keystroke and possible the *content* of every message. Think I'm paranoid? Read on! More.......
Apr 29, 2009, 11:25
News
Guide to Handling Personal Information Security Breaches
Guide to Handling Personal Information Security Breaches
The Australian Privacy Commissioner, of the Government Privacy Commission, (do we have one of those in the US? I think not.) has released a new guide as part of a series first released this summer. This guide, entitled "Guide to Handling Personal Information Security Breaches" follows the guide entitled "Australian Privacy Law and Practice" origionally released in August.
Nov 10, 2008, 11:04
News
A California Paradox
A California Paradox...
Well, new quarter, new articles, same old happenings it seems.
California is a state with one of the (supposedly) most stringent data breach laws in the country. One would think then, that the result would be a lower rate of ID thefts, breaches etc. One would be wrong. Very wrong. In a report published by the FTC, one location in California is the "ID Theft Capitol" of the country. Yes, that's right - one place in the land of the harshest penalties for breaches, is the worst place to whip out your credit card, ID, checkbook or other identifying generator of personal information. The California paradox.
Oct 28, 2008, 14:35
News
Information Security Forum Releases Update "Best Practices" Guide
New Best Practices Guide for Security Releasesd; Includes updated Identity and Access Management
The Information Security Forum (ISF), a nonprofit IT security group,
today announced the availability of its updated Standard of Good
Practice, a free benchmark that organizations can use to assess and
reduce risks related to information systems.
| |
The Standard is updated at least every two years in order to:
|
| • |
respond to the needs of leading international organisations |
| • |
refine areas of best practice for information security |
| • |
reflect the most up-to-date thinking in information security |
| • |
remain aligned with other information security-related standards, such as ISO 27002 (17799), COBIT v4.1 and PCI/DSS |
| • |
include information on the latest ‘hot topics’. | |
Oct 22, 2007, 14:41
News
Canada to Close Data Theft Loophole
Oct 16, 2007, 15:37
News
Gartner Says Data Theft Costs will Increase
Gartner Says the Cost of a Sensitive Data Breach Will Increase 20 Percent per Year Through 2009
Financially motivated targeted attacks are becoming more prevalent and
new vulnerabilities continue to be reported, but 90 percent of these
attacks can be avoided without requiring any increase in security
spending, according to Gartner, Inc. However, ensuring one’s enterprise
is not part of the 10 percent requires implementing security processes
to monitor and manage vulnerabilities and provide strong identity and
access management capabilities
Oct 16, 2007, 15:29
News
Office of the Privacy Commissioner of Canada, Report of an Investigation into the Security, Collection and Retention of Personal Information
Report of an Investigation into the Security, Collection and Retention of Personal Information
This report, released by the Privacy Commissioner of Canada, is an in-depth analysis into the TJX/TJ Maxx security breach, and offers strong suggestions on how other companies may learn from their mistakes. In addition, the Commissioner determined that TJX/TJ Maxx violated PIPEDA in several instances, including the collection of drivers license information "without a specific business purpose" and the retention of that inappropriately collected information.
For companies in Canada, PIPEDA provides set guidelines on what information can be collected, for what purpose that information can be collected, and how long that information can be retained, and the Privacy Commissioner's Office monitors compliance with these provisions. Violators are subject to fines, additional monitoring and more.
Oct 10, 2007, 10:42
News
'Laptop security? Never heard of it...'
'Laptop security? Never heard of it...'Despite rising levels of laptop theft and high-profile instances of data loss, businesses are failing to understand the need to encrypt their hard drives or better protect sensitive data.
Research conducted by silicon.com has found worrying levels of
insecurity where it comes to laptops, with 63 per cent of respondents
saying their company does not encrypt the data on their laptops.
Furthermore, 67 per cent of respondents said their companies do not
provide laptop locks to reduce the risk of opportunist theft.
May 11, 2007, 08:54
News
Snatched the taxman's laptop? Don't get too comfortable
April 05, 2007 (IDG News Service) -- The Internal Revenue Service
(IRS) may not be doing a very good job of encrypting data on its laptops, but
it does have a way to recover its lost equipment.
In fact, thieves looking to steal from the Department of the Treasury may
find themselves behind bars, thanks to tracking software used by the IRS to
contact investigators whenever a laptop is stolen.
Apr 13, 2007, 10:14
|
|
|
|
