Kaliber Data Security Compliance Blog

Posted by Ken Leeser in Compliance, Encryption, IT Security, Process Improvement

August

Perimeter e-Security has recently added a new feature to the popular MailSafe™ email encryption service. MailSafe™ clients can receive secure responses directly into their Outlook Inbox without having to login to their Mailsafe™ account. Recipients, however, will continue to retrieve their secure messages in the Mailsafe portal.
Perimeter’s MailSafe™ service allows every outgoing [...]

Post Comments

Free USB Drive Encryption Tool

Posted by Ken Leeser in Compliance, Data Loss Prevention, Encryption, IT Security, Massachusetts Data Privacy

January

Need a solution to encrypt your current USB flash drives? With the new Massachusetts Data Privacy regulations just around the corner you may want to look at a FREE application from Rohos (www.rohos.com). Rohos Mini Drive creates a hidden, encrypted partition on USB flash drive memory devices. This free, portable encryption tool allows [...]

Post Comments

From GAAP to GAPP: Generally Accepted PRIVACY Principles

Posted by Ken Leeser in Compliance, IT Security, Information Security Plan

November

Developed by the AICPA but applicable to all types of businesses, GAPP is designed to assist firms in creating an effective privacy program that addresses their privacy obligations, risks, and business opportunities.
GAPP can be used by organizations for the following:

Designing, implementing, and communicating privacy policy
Establishing and managing privacy programs
Monitoring and auditing privacy programs
Measuring performance and benchmarking

The [...]

Post Comments

Making Your Written Information Security Plan (“WISP”) Useful

Posted by Ken Leeser in Compliance, Information Security Plan, Policies

September

Here in Massachusetts we are faced with a first in the nation Personal Data Privacy Protection regulation which is meant to motivate businesses to institute best practices with regard to protecting the personal information of residents of the Commonwealth.

The regulation outlines some specific things a business should do to become compliant with the law. Step [...]

Post Comments(1)

The Business Value of Preventing Data Loss

Posted by Ken Leeser in Compliance, Data Loss Prevention, IT Security, Process Improvement

September

To many, data security is seen as merely an effort to protect against data loss or exposure. Consequently, this perspective unfairly positions data security as a cost for which the benefit is: “So far as we know, nothing happened.”

A better approach would be to associate the value of the data with the business process it [...]

Post Comments

Kaliber’s View on Passwords

Posted by Ken Leeser in Compliance, Password strength, Policies

July

On the Kaliber Web Site I recently linked to an article from the New York Times technolgy feed which discussed how Twitter’s coporate email accounts on Google Apps were hacked: http://www.kaliberdatasecurity.com/newsdetails.php?id=11
So what simple things can be done to protect our information with so much of our lives and data being stored on the web?
The first [...]

Post Comments(1)

Many Employers Subject to HIPAA

Posted by Ken Leeser in Compliance

July

The requirements of HIPAA to protect employees’ medical privacy rights extend to employers who offer health plans which have self-insurance components or who act as intermediaries between employees and providers.

Post Comments