Archive for Employer
FTC Extends Enforcement Deadline for Identity Theft Red Flags Rule
From the FTC website dated May 28, 2010: “At the request of several Members of Congress, the Federal Trade Commission is further delaying enforcement of the “Red Flags” Rule through December 31, 2010, while Congress considers legislation that would affect the scope of entities covered by the Rule. Today’s announcement and the release of an [...]
Read moreEmployers who mandate identity monitoring lower their risks
Employers should make it a mandatory exercise that all employees regularly monitor their identity. Data breaches of the company’s own employees’ personally identifiable information (PII) can be detected if an employee discovers inappropriate activity from their review of credit reports and other free consumer aggregators’ data bases. If they follow a strategy of reviewing their [...]
Read moreFacebook and other “social media” sites do not delete info even if you do
This doesn’t surprise me because in order to remove a file from your own computer you cannot do so with the just the “delete” function. You have to “wipe” it clean. As part of any data security policy all electronic devices containing sensitive information must be “wiped” clean with appropriate utility programs or pulverized if [...]
Read moreCopy machines hold sensitive information on their hard drives!
This is a new one for me. I never thought about copy machines having hard drive storage, but it makes sense now that they are networked with computers. But the “images” stay on the hard drives just like files do on our computers. If you ever have it fixed, all the sensitive information is right [...]
Read moreAssisting Victims
If an individual contacts you claiming to be a victim of identity theft, stemming from a transaction involving your company, you have certain federal mandates to follow. Under the 2003 amendments to the Fair Credit Reporting Act (PDF, 192 KB) (FCRA) section 609(e), identity theft victims are entitled to get from businesses a copy of [...]
Read morePreventing Data Breaches
Since 2005 over 350 Million Sensitive Personal Records Have Been Breached Costing Enterprises Responsible Billions in Penalties and Civil Liabilities. Our firm focus is to help every employer prevent a potentially devastating breach of confidential information that your customers, employees, and vendors have given you to keep private. Our Identity and Sensitive Data Risk Management [...]
Read more