Articles

Alan Friel Lists "10 Steps to Build a Privacy and Security Program" in Corporate Compliance Insights

Articles / September 24, 2013

Partner Alan Friel authored an article for the Sept. 24, 2013, issue of Corporate Compliance Insights headlined “Data Hygiene Part of Corporate Compliance – 10 Steps to Build a Privacy and Security Program.” In it he outlines the general process of developing a good data privacy and security compliance program and lists these 10 steps businesses should take:

  • Identify the information assets and practices.
  • Conduct an assessment.
  • Identify responsive measures.
  • Establish responsibility.
  • Implement the measures and monitor the operation and effectiveness of the program.
  • Consider insurance.
  • Regularly reassess the program.
  • Address education and training.
  • Address the data in the hands of third parties.
  • Prepare for the event of a security breach.

Read the full article (subscription required).

 

Blog

In The Blogs

Previous Next
Data Privacy Monitor
Increased Scrutiny on Notice and Choice for Use of AD Profiling, Especially Using Mobile Location Data
By Taylor A. Bloom, Alan L. Friel, Niloufar Massachi
March 20, 2019
Are you an app publisher or do you advertise via mobile apps or obtain marketing data that originates from them? If so, you need to beware that regulators and consumer protection authorities are taking action against companies with regard...
Read More ->
Data Privacy Monitor
Washington Privacy Act Clears Senate
By Shea M. Leitch
March 19, 2019
On March 6, SB 5376, the Washington Privacy Act, passed the Washington Senate in an overwhelming 46-1 vote (with two members excused). Prior to its passage, the Senate adopted important revisions and clarifications that would provide...
Read More ->
Data Privacy Monitor
EU Regulators Increase Focus on Cookie Practices
By Kyle R. Fath, Laura E. Jehl, Monique Matar, Jean H. Shin
March 14, 2019
In the absence of cookies-related guidance and enforcement by regulators against ordinary website publishers and operators, many e-commerce sites, online publishers and other website operators have taken a “wait and see” approach with...
Read More ->
Data Privacy Monitor
FTC Launches a New Task Force Dedicated to Monitoring the Tech Industry for Anti-Competitive Practices
By Janine Anthony Bowen, Alexandra Royal
March 13, 2019
The Federal Trade Commission announced the creation of a new task force that is dedicated to monitoring competition in the U.S. technology industry. This Technology Task Force will coordinate and consult with 17 staff attorneys throughout...
Read More ->
Data Privacy Monitor
Cybersecurity Firms Issue Annual Threat Reports
By Joseph L. Bruemmer
March 12, 2019
CrowdStrike, FireEye and IBM Security recently released their annual threat reports. These reports contain a wealth of information on recent trends in cybersecurity attacks and recommendations on the preventive measures companies can take...
Read More ->