With so many companies now involved with multi-state, and multi-nation commerce, there exists now more than ever, a need to integrate a legal opinion input to any decisions regarding data protection, privacy and security laws and risk managment policies and strategies within those organizations.  Having an appropriate strategy and privacy policy within your organization will help reduce your risks from not only potential  legal actions against your company but also against ultimately any attack on the business continuity capability of your organzization over time.

Please read this article by Lora Bentley as posted recently on an ITBusinessEdge blog for more information.

In a recent article by Randy George, of Information Week, there is a focus on the growth of Data Loss Prevention (DLP) within the IT departments of organizations.

One of the largest motivations for increased support for DLP within organizations is to ensure and satisfy regulatory compliance requirements by that organization.  And, meeting these requirements remains an important element of every organization’s business continuity plan.

Some of the results from recent studies on this topic are well represented in graphical formats in this article.

Is your organization in line with this continuing trend by IT security professionals?

The U.S. healthcare industry is facing one of its biggest challenges in decades.  The new HIPAA 5010 and ICD-10 regulations have a target date for compliance by Jan 2012 and Oct 2013 respectively.  To comply, processes and IT systems will need to be aligned with the new regulation requirements and of course much training and retraining will have to be given to people responsible for the implementation of these new regulations to ensure not only business continuity but to also maintain the privacy rights of everyone involved so that penalties can be avoided.

Read more about these changes.