A national data breach notification bill was passed in the U.S. House of Representatives on Tuesday, December 8, 2009. 
The Data Accountability and Trust Act (http://thomas.loc.gov/cgi-bin/bdquery/z?d111:h.r.02221:/)
would require any organization that experiences a breach of electronic data containing personal information to notify all U.S. individuals whose information is breached. The law requires that the Federal Trade Commission [...]

Developed by the AICPA but applicable to all types of businesses, GAPP is designed to assist firms in creating an effective privacy program that addresses their privacy obligations, risks, and business opportunities.
GAPP can be used by organizations for the following:  

Designing, implementing, and communicating privacy policy
Establishing and managing privacy programs
Monitoring and auditing privacy programs
Measuring performance and benchmarking

The [...]

Here in Massachusetts we are faced with a first in the nation Personal Data Privacy Protection regulation which is meant to motivate businesses to institute best practices with regard to protecting the personal information of residents of the Commonwealth.
 
The regulation outlines some specific things a business should do to become compliant with the law. Step [...]