Data privacy issues and compliance
- February 13, 2009
Law now taking effect Jan. 1, 2010 would require any business collecting information on Massachusetts residents to encrypt sensitive data, protecting it from data leakage.
- February 05, 2009
The benefits of complete PCI and the necessity of full compliance are now being widely questioned, says Eric Ogren, principal analyst, The Ogren Group.
- February 03, 2009
A Massachusetts law taking effect in May requires encryption and could have organizations implementing the mandates across the board nationwide as the path of least resistance.
- January 22, 2009
The struggling economy has many retailers easing return policies to attract nervous shoppers, but as they increase data collection to combat fraudulent returns, one data privacy expert says the tools and processes must be in place to protect ...
- January 19, 2009
Good information security requires...good information. That's why logs are so important and why so many regulatory and industry directives require companies to not only gather but monitor, read and ...
- December 09, 2008
Start-up DataGuise enters the data masking market fueled by regulatory compliance pressures. One analyst says companies prefer masking over other techniques.
- September 15, 2008
Former QSA turned Forrester analyst John Kindervag calls PCI a "communicable disease." Anything introduced to the network is in PCI scope if credit card systems aren't segmented.
- September 09, 2008
The Center for Internet Security has released eight security metrics companies can use to measure their security programs and it plans to expand its list over the next year.
- September 05, 2008
Protecting customer data, corporate intellectual property and other sensitive internal data, remains a priority in many corporate board rooms, a Forrester Research survey finds.
- August 26, 2008
More data breaches have been reported so far this year than in all of 2007, according to a report released by a nonprofit group that works to prevent fraud.
- August 19, 2008
Version 1.2 of PCI DSS, due out in October, requires 802.1x for wireless protection and antivirus for all operating systems, according to a summary of the changes issued Tuesday.
- July 17, 2008
The dawn of the age of IT compliance has had any number of consequences for IT staffs in general, and security teams specifically. Now, instead of simply worrying about whether the network is ...
- April 29, 2008
PCI assessment firm, Trustwave says the report debunks some popular perceptions but others cite flaws in the study.
- April 10, 2008
SAN FRANCISCO -- Companies need to embark on data classification projects to gain more control over its movement and minimize data leakage, but it's difficult to find a company successfully carrying out a project. Rena Mears, Deloitte's global and ...
- April 10, 2008
PCI Security Standards Council GM Bob Russo says tweaks and clarifications are expected in the areas of wireless and application security.