Articles

Alan Friel Lists "10 Steps to Build a Privacy and Security Program" in Corporate Compliance Insights

Articles / September 24, 2013

Partner Alan Friel authored an article for the Sept. 24, 2013, issue of Corporate Compliance Insights headlined “Data Hygiene Part of Corporate Compliance – 10 Steps to Build a Privacy and Security Program.” In it he outlines the general process of developing a good data privacy and security compliance program and lists these 10 steps businesses should take:

  • Identify the information assets and practices.
  • Conduct an assessment.
  • Identify responsive measures.
  • Establish responsibility.
  • Implement the measures and monitor the operation and effectiveness of the program.
  • Consider insurance.
  • Regularly reassess the program.
  • Address education and training.
  • Address the data in the hands of third parties.
  • Prepare for the event of a security breach.

Read the full article (subscription required).

 

Blog

In The Blogs

Previous Next
Data Counsel
New EDPB Draft Guidance Provides Practical Scenarios for Data Breach Notification Analysis Under the GDPR
By Michael E. Fitzgerald, Benjamin D. Wanger
February 19, 2021
In certain cases, the General Data Protection Regulation (GDPR) requires entities that experience a personal data breach to provide notice of the incident to relevant national supervisory authorities and the individuals whose personal data...
Read More ->
Data Counsel
Virginia Poised to Enact the Consumer Data Protection Act, the Nation's Second Comprehensive Consumer Privacy Law
By Kyle R. Dull, Kyle R. Fath, Alan L. Friel, Patrick R. Waldrop
February 17, 2021
Having passed both houses of the Virginia General Assembly, the proposed Consumer Data Protection Act (CDPA) may become the second comprehensive consumer privacy bill to be enacted in the United States. However, to reach the governor’s...
Read More ->
Data Counsel
AdTech Under the CCPA and CPRA
By Kyle R. Fath, Alan L. Friel
February 15, 2021
Please join us for a follow-up discussion on AdTech Under the CCPA and CPRA, originally presented as part of the PrivacyOC Privacy Week Forums 2021. Speakers Alan Friel and Kyle Fath will discuss four seemingly overlapping consumer rights...
Read More ->
Data Counsel
Virginia Likely to Become Second State with Comprehensive Privacy Legislation
By Kyle R. Dull, Kyle R. Fath
February 11, 2021
With a special session scheduled to begin Feb. 10, Virginia is poised to become the second state to pass comprehensive consumer privacy legislation. The Consumer Data Protection Act (CDPA) passed the Virginia Senate on Friday, Feb. 5, and...
Read More ->
Data Counsel
California AG Becerra Tweets Endorsement for a Universal Opt-Out Tool
By Taylor A. Bloom, Alan L. Friel
February 8, 2021
On Jan. 28, California Attorney General Becerra tweeted his support for a newly developed privacy tool that may function as a means for universal opt out. “#CCPA requires businesses to treat a user-enabled global privacy control as a...
Read More ->