-
ITRC Forecasts Black Ice Ahead in 2011
Posted on December 18th, 2010 No commentsIdentity theft is not going away. It’s escalating and transforming so quickly the Identity Theft Resource Center can only make educated predictions on the course of identity theft for 2011.
More here:
ITRC Forecasts Black Ice Ahead in 2011 -
HHS Data Breach Notification Harm Threshold Requires Risk Assessment
Posted on October 9th, 2009 No commentsThe companies bear the burden of proving that there’s no significant risk of harm. It’s not like they can just decide, “Oh, it’s not going to hurt anyone
More here:
HHS Data Breach Notification Harm Threshold Requires Risk Assessment -
PCI Service Provider Contracting
Posted on June 11th, 2009 No commentsAs an attorney focusing on information security and privacy issues, I often get called in to assist companies to understand their legal liability risk around the PCI (self) regulatory system. One of the key areas I get involved in is service provider relationships, and in particular section 12.8 of PCI and service provider contracts. There are many aspects of 12.8 (and its subsections) that are potentially ambiguous and open to interpretation, but this particular article is not going to focus on those
Continue reading here:
PCI Service Provider Contracting
Recent Comments