Online Privacy Risks and Predictions for 2012

  Photo courtesy of intellicorpintouch.comWith 2012 now well on its way, online privacy related risks will become an important issue to information security and risk management team members in today’s global village of organizational inter-relationship activities, as well as, for the growing number of consumers who are relying more and more on online communication tools and applications to conduct their day to day purchases. As online businesses grew in 2011 – through innovative technologies in advertising, cloud services and mobile apps – the call for improved levels of online … [Read more...]

Privacy Enforcement Actions on the Rise

In February this year, federal agencies and the Financial Industry Regulatory Authority (FINRA) announced significant privacy enforcement actions that have resulted in millions of dollars in fines.  Could a potential privacy enforcement storm be brewing? In the past, this website has consistently listed privacy violation findings as a risk management issue that could become a financial threat capable of “closing the doors” of a business. Our staff continues to stress privacy concerns, information security and the potential threats from cybersecurity dynamics as critical components every … [Read more...]

Online Privacy Policies Called for by FTC

One of our staff writers called our attention to an information security and privacy related article recently posted on the HealthCareInfoSecurity website.   In this article, entitled “FTC Calls for Online Privacy Policies”, it states that a new Federal Trade Commission report on privacy endorses implementation of a "do not track" mechanism so that consumers can choose whether to allow the collection of data regarding their online searching and browsing activities. From the comments received on this website, and the perceived need to do a better job of protecting individual and organizational … [Read more...]

Red Flags Rule Enforcement Date Delayed Yet Again

The following was announced today on the HealthCareInfoSecurity website – “Reacting to requests from several members of Congress, the Federal Trade Commission (FTC) has yet again delayed enforcement of the Identity Theft Red Flags Rule until Dec. 31, 2010. The law had been slated to be enforced June 1.” Under the Red Flags Rule, which became effective Jan. 1, 2008, organizations that extend credit to their clients must develop and implement written identity theft prevention programs that help identify, detect and respond to patterns, practices or specific activities, known as "red flags," … [Read more...]

Identity Theft "Red Flag" Rules Enforcement Date Extended to June 1, 2010

An action has been taken -- at the request of Members of Congress --  by the Federal Trade Commission (FTC) to officially announce a delay of the enforcement of the "Red Flags" Rule until June 1, 2010.  This ruling affects all financial institutions and creditors subject to enforcement by the FTC. For more details and information regarding this Identity Theft "Red Flag"  Rule announcement CLICK HERE. … [Read more...]

"Red Flag Rules": Exemption Ruling Announced

By an overwhelming vote of 400-0, the U.S. House approved legislation on October 20, 2009, that exempt certain businesses from the Federal Trade Commission's Red Flag Rules.  As part of that legislation, the FTC is also required to issue new regulation setting out the exemption processes that allow any business to apply for an exemption. With November 1, 2009 as an announced Red Flag Rule compliance deadline, it is very likely that this new ruling will cause the FTC to at least consider the announcement of another delay for this compliance deadline. Under the current ruling, health care, … [Read more...]