PRO+ Premium Content/Information Security

Thank you for joining!
Access your Pro+ Content below.
February 2007

Going Global

U.S. companies doing business overseas face a quagmire of global regulations for keeping data private and secure. Take Verispan, a provider of health care information and services to the pharmaceutical industry. Gathering information on physicians around the world can be a time-consuming and cumbersome process due to regulatory requirements, says Scot Ganow, Verispan's corporate privacy and ethics officer. Not only does the company need to follow European Union privacy rules, which include providing clear notice to and obtaining verifiable consent from the physicians, but it must research and comply with any specific requirements of individual EU member countries. Even with consent, Verispan uses either EU-approved model contract clauses or Safe Harbor self-certification as extra compliance protection when transferring European personally identifiable data to the U.S. "It's very layered, very involved," Ganow says of the compliance process. As the number of online users has skyrocketed worldwide, governments have enacted a maze ...

Access this PRO+ Content for Free!

Features in this issue

  • Going Global

    Organizations sending data abroad must be prepared to comply with a slew of privacy and security regulations.

Columns in this issue