|
Last Updated: Nov 17th, 2008 - 12:30:30 |
Guide to Handling Personal Information Security Breaches
The Australian Privacy Commissioner, of the Privacy Commission, a
government agency, (do we have one of those in the US? I think not)
has released a new guide as a follow on to ones released this summer.
This guide, entitled "Guide to Handling Personal Information Security
Breaches" follows the guide entitled "Australian Privacy Law and
Practice" origionally released in August. Ok, we're not talking NYT bestsellers here, more like mandatory reading with a pop exam you'd better be prepared for!
The steps in the guide are not mandatory, however, those not following them could find themselves in a "tight spot" should they end up before a magistrate - it might be tough to explain why you didn't enact the "suggested" steps. Some of them are so sensible one has to wonder why they have to remind businesses, such as "erase and destroy hard drives containing personal information before disposing of them" Well, duh. I'd like to think that most businesses don't take a disk and toss it in the dumpster, but given the sheer volume of reported "missing information" I think that trust is misplaced. In any case, the guide spells out these sort of steps that companies should follow, and then the steps they should take if the first set of steps are not followed and something gets "lost", goes "missing" or otherwise is not where it is supposed to be. Again, not necessarily best seller reading, but certainly "best practice" reading.
The link to the guide is here
© EsignPortal Website Design: Copyright 2008 by Orion Systems, Inc.
All other material are or may be copyright protected by their respective owners.
Top of Page
