Log inskip to content

Archive for January 3rd, 2008

IT and the Changing Privacy Landscape: Eight Areas to Watch in ‘08

Thursday, January 3rd, 2008

From: www.cio.com – Brian Tretick, executive director, Privacy Risk Advisory Services at Ernst & Young, CIO

December 28, 2007 

 

In the waning days of the 20th century, privacy was more a marketing hook than an obligation, focused on customer preference and features to help companies earn a competitive edge. Privacy today is a concept more closely associated with the potential for abuse and the very real threat of inappropriate access or exposure, identity theft and fraud—with the responsibility resting squarely on the shoulders of any organization handling personal information for consumers, customers, employees or business partners.

 
MORE Predictions
10 Virtualization Vendors to Watch in 2008
Five Key Technology Trends for 2008
Six Enterprise Application Trends to Watch in 2008

The privacy landscape, particularly relative to IT, is becoming increasingly complex, shaped not just by the tenets of good business but by the demands of a regulatory environment with newly stringent standards. Faced with a plethora of national privacy and data protection laws, labor laws, and trade union and works council agreements, organizations are in a constant exercise to protect the information they hold and the privacy of their workforce. Also weighing in are C-suite leaders and stakeholders who expect more from their IT function than securing personal information. In fact, meeting privacy standards has become inextricably linked with meeting strategic business initiatives as IT professionals find themselves in more demand and with more on their plates.

As all eyes begin to focus on IT, these are some of the areas that deserve close scrutiny and may warrant immediate action.

Information Is Power: Keeping Data Classification up to Date

While many organizations have data classification policies in place, they may fall short if they’re outdated, overly broad and limited to high-level categories, or inaccurate in designating risk thresholds among specific data elements. Along with addressing records management requirements, IT can raise issues and develop solutions related to accurate and complete data classification, privacy, information security and intellectual property protection across all systems, databases and repositories. IT reviews must be conducted periodically to ensure that data classification policies are keeping pace with relevant privacy regulations and risks.   READ MORE

Posted in General | No Comments »


« Dec iCalendar Feb »
January 2008
M T W T F S S
 123456
78910111213
14151617181920
21222324252627
28293031EC

Upcoming Events

  • No events.

Just as with the Y2K crisis of seven years ago, IT workers are being called upon to don superhero suits and save the enterprise from impending technology trouble. But this time, IT will be sifting through the complexities of the federal Sarbanes-Oxley Act of 2002

Public Companies over 75 million already need to comply by 12/15/2007...

Will your SMB be Ready?

Monthly Archives

Google
Email Newsletter icon, E-mail Newsletter icon, Email List icon, E-mail List icon Sign up for our Email Newsletter