Home > Information Security Magazine > Features > Going Global
EMAIL THIS LICENSING & REPRINTS
Information Security Magazine

  CURRENT ISSUE  
  FEATURES  
  COLUMNS  
  HOT PICK & PRODUCT REVIEWS  
  ARCHIVES  
  SUBSCRIBE/RENEW  
  

Going Global
by Jody R. Westby
Issue: Feb 2007
printer-friendly
licensing & reprints
< PREV PAGE   |   1  |   2  |   3  |   4  |   5  |   6  |   7  |   NEXT PAGE  >

Global Complications
A splintered regulatory framework has developed alongside skyrocketing Internet use around the world.
  • Everyone's Connected
    • 240 countries and 1.1 billion people online, with growth from developing countries, according to Internet World Stats
  • Fractured Frameworks
    • 51 countries with privacy laws (including 27 EU countries)
    • 8 U.S. agencies with privacy regulations, enforcement authority
    • 34 states with security breach notification laws
    • EU proposal on security breach notification to regulators
  • Competing Models
    • EU, U.S., APEC each have overlapping privacy mandates
  • Multilateral Actions Various efforts from the EU, G8, APEC, Council of Europe (CoE)
    • CoE Convention on Data Protection
    • CoE Convention on Cybercrime
    • G8 24/7 High-Tech Crimes Points-of-Contact Network
--Jody R. Westby

Know Before Your Data Goes
Organizations need to understand their privacy and security compliance obligations prior to sending data across borders. In today's global operating environment, that is no simple task. Consider that nearly 50 countries have some form of data protection law and many of them conflict or require specific security measures. Other countries have no privacy laws at all.

In the U.S., more than 30 states have enacted security breach notification laws, and several similar laws are pending at the federal level. The European Union's (EU) Data Protection Directive (DP Directive) governs the privacy of personally identifiable information (PII) in its 27 member countries, and it has influenced the development of similar legislation in other countries. In addition, the DP Directive restricts cross-border data flows, requires the registration of databases, and establishes privacy supervisory authorities in every member country.

Looking broadly across the various privacy laws around the globe, there are essentially three types of legal frameworks at play: the EU's regulatory model, the U.S.'s self-regulatory approach, and a hybrid approach set forth in the Asia-Pacific Economic Cooperation (APEC) forum's Privacy Framework.

< PREV PAGE   |   1  |   2  |   3  |   4  |   5  |   6  |   7  |   NEXT PAGE  >





TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




All Rights Reserved, Copyright 2003 - 2008, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts