SlideShare a Scribd company logo

Privacy & Data Security for InHouse Counsel

A
amprivacy
1 of 31
Download to read offline
WARNING TRACK Privacy & Data Security Issues for In-House Counsel Presented by Anthony Martin May 7, 2009 Copyright 2009, Husch Blackwell Sanders LLP
Cell Phones Stolen from Verizon Stores POST- ST. LOUIS POST-DISPATCH Tuesday, May 5, 2009 Burglars broke into three area Verizon Wireless stores overnight, stealing about 100 cell phones and two computers worth at least $42,000, police said.
• State & Local Police • Privacy Policies • US Attorneys Office • Data Breach Report • FBI • Service Provider • FTC Contracts • Public Relations • PCI-DSS • IT Department • Banks & CC • Risk Management • Customer Lists • Insurance Agents • State Breach Laws • Legal Team • Pick up the kids.
10,000 Customer Records $200 Per Record
$2,000,000 Problem
WARNING TRACK Privacy & Data Security Issues for In-House Counsel
Information Privacy: how we collect and use the “personal information” of others that we are authorized to have. Data Security: how we keep that personal information safe from unauthorized access or use.
Outline For Discussion • Labor & Employment • Litigation • Real Estate • Corporate Compliance • Corporate Transactions • Solutions
Labor & Employment • Reasonable Expectation of Privacy. • Access to Employee e-mail. e- • Location Awareness and Social Media. • Employee Handbooks and Policies.
The Stored Communications Act prohibits intentional access to an electronic communication while it is in electronic storage in such system. 18 U.S.C.A. § 2701
Litigation • Admissibility of Evidence. • Cross-Border Discovery Issues. • Protective Orders and Appeals.
The Member States shall provide that the transfer to a third country of personal data . . . may take place only if the third country in question ensures an adequate level of protection. Article 25, EU Privacy Directive
Real Estate • Mortgage Fraud and Identity Theft. • FACT Act “Red Flags” Regulations.
Corporate Compliance • Data Breach Incident Response Plan. • Sarbanes-Oxley and SEC Disclosures. • Increased Regulation and Oversight.
446 reported data breaches for 2007. 656 reported data breaches for 2008. 159 reported data breaches in 2009.
12,000 Laptops are “lost” in airports.
Every week.
Average incident costs are $6.65 million.
The most significant cost decrease was seen in activities relating to post-breach response. The U.S. Cost of a Data Breach Study Ponemon Institute
The CEO must certify that all the information in public reports is valid and accurate. The CEO sign off on the validity of the data without confirmation of the security of those systems and networks.
The CEO/CFO must attest to having proper "internal controls." These “internal controls” include controls over networked electronic systems, which can include anything that sits on the network or connects to the network.
Corporate Transactions • Service Provider Agreements. • Mergers & Acquisitions.
Third-party organizations accounted for more than 44 percent of all breaches. These are the most expensive form of data breaches due to additional investigation fees.
Solutions • Risk Assessments. • Plan with Privacy & Data Security in Mind. • Training. • Privacy Officer.
“You have zero privacy. . .” .” “Get over it.” it.” Scott McNealy CEO Sun Microsystems
“Every single datum about my life is private? silly.” That's silly.” Antonin Scalia US Supreme Court
15- 15-Page Dossier on Scalia . . . Including: home address and the value of his home, home phone number, movies he likes, food preferences, wife's personal e-mail address, and "photos of his lovely grandchildren."

Recommended

Digital law
Digital lawDigital law
Digital lawJennifer Carmack
 
Ecommerce legal exchange beijing
Ecommerce legal exchange beijingEcommerce legal exchange beijing
Ecommerce legal exchange beijingInternet Law Center
 
Digital law
Digital lawDigital law
Digital lawBrunsUSD15
 
Digital law
Digital lawDigital law
Digital lawBrunsUSD15
 
digital law
digital lawdigital law
digital law11tsk
 
Washington's Privacy Tango
Washington's Privacy TangoWashington's Privacy Tango
Washington's Privacy TangoInternet Law Center
 
Legal issues in technology
Legal issues in technologyLegal issues in technology
Legal issues in technologyWillislwhite12
 
Gagnier's Portion of TechWeek Chicago Presentation
Gagnier's Portion of TechWeek Chicago PresentationGagnier's Portion of TechWeek Chicago Presentation
Gagnier's Portion of TechWeek Chicago PresentationChristina Gagnier
 

Recommended

Digital law
Digital lawDigital law
Digital lawJennifer Carmack
 
Ecommerce legal exchange beijing
Ecommerce legal exchange beijingEcommerce legal exchange beijing
Ecommerce legal exchange beijingInternet Law Center
 
Digital law
Digital lawDigital law
Digital lawBrunsUSD15
 
Digital law
Digital lawDigital law
Digital lawBrunsUSD15
 
digital law
digital lawdigital law
digital law11tsk
 
Washington's Privacy Tango
Washington's Privacy TangoWashington's Privacy Tango
Washington's Privacy TangoInternet Law Center
 
Legal issues in technology
Legal issues in technologyLegal issues in technology
Legal issues in technologyWillislwhite12
 
Gagnier's Portion of TechWeek Chicago Presentation
Gagnier's Portion of TechWeek Chicago PresentationGagnier's Portion of TechWeek Chicago Presentation
Gagnier's Portion of TechWeek Chicago PresentationChristina Gagnier
 
Cyber Threat Overview for Euro IT counsel
Cyber Threat Overview for Euro IT counselCyber Threat Overview for Euro IT counsel
Cyber Threat Overview for Euro IT counselOCTF Industry Engagement
 
SOPA
SOPASOPA
SOPADivam Goyal
 
Assigment Idham
Assigment IdhamAssigment Idham
Assigment Idhambuu
 
social, legal and ethical issues of e-commerce..
social, legal and ethical issues of e-commerce..social, legal and ethical issues of e-commerce..
social, legal and ethical issues of e-commerce..home based
 
Cyber laws
Cyber lawsCyber laws
Cyber lawsSourabh Badve
 
Legal ethical issues E commerce
Legal ethical issues E commerceLegal ethical issues E commerce
Legal ethical issues E commerceWisnu Dewobroto
 
Privacy and E-Commerce
Privacy and E-CommercePrivacy and E-Commerce
Privacy and E-CommerceAleksandr Yampolskiy
 
Legal instrumentation in e commerce
Legal instrumentation in e commerceLegal instrumentation in e commerce
Legal instrumentation in e commerceUjjwal Joshi
 
Blog Wars at New Media Expo
Blog Wars at New Media ExpoBlog Wars at New Media Expo
Blog Wars at New Media ExpoInternet Law Center
 
Public policy legal issues to privacy
Public policy legal issues to privacyPublic policy legal issues to privacy
Public policy legal issues to privacyMuneeb Ahmed
 
iConference 2011: Reputation in the Cloud
iConference 2011: Reputation in the CloudiConference 2011: Reputation in the Cloud
iConference 2011: Reputation in the CloudJim Adler
 
Cyber crime:The Transformation Of Crime In The Information Age.
Cyber crime:The Transformation Of Crime In The Information Age.Cyber crime:The Transformation Of Crime In The Information Age.
Cyber crime:The Transformation Of Crime In The Information Age.Omkar Walavalkar
 
Legal & moral issues in e commerce
Legal & moral issues in e commerceLegal & moral issues in e commerce
Legal & moral issues in e commerceDamo Ward
 
Tech Week Chicago 2012: Law & Social Data
Tech Week Chicago 2012: Law & Social DataTech Week Chicago 2012: Law & Social Data
Tech Week Chicago 2012: Law & Social DataAdler Law Group
 
Chp 05 anonymity, security, privacy and civil liberties (shared)
Chp 05 anonymity, security, privacy and civil liberties (shared)Chp 05 anonymity, security, privacy and civil liberties (shared)
Chp 05 anonymity, security, privacy and civil liberties (shared)YUSRA FERNANDO
 
Cyber law
Cyber lawCyber law
Cyber lawAHSSAN AKHTAR
 
Presentation Ict
Presentation IctPresentation Ict
Presentation Ictsafa
 
Hacking Activities in Canada
Hacking Activities in CanadaHacking Activities in Canada
Hacking Activities in CanadaIrem Kaya
 
piiLabsSeattleWorkshop_ChristinaGagnier
piiLabsSeattleWorkshop_ChristinaGagnierpiiLabsSeattleWorkshop_ChristinaGagnier
piiLabsSeattleWorkshop_ChristinaGagnierpii2011
 
Social and ethical issues in commerce
Social and ethical issues in commerceSocial and ethical issues in commerce
Social and ethical issues in commerceUniversity of Central Punjab
 
Executive Overview of IT Strategy and Capability Maturity Framework
Executive Overview of IT Strategy and Capability Maturity FrameworkExecutive Overview of IT Strategy and Capability Maturity Framework
Executive Overview of IT Strategy and Capability Maturity FrameworkVishal Sharma
 
IT Strategy
IT StrategyIT Strategy
IT StrategyFlevy.com Best Practices
 

More Related Content

What's hot

Assigment Idham
Assigment IdhamAssigment Idham
Assigment Idhambuu
 
social, legal and ethical issues of e-commerce..
social, legal and ethical issues of e-commerce..social, legal and ethical issues of e-commerce..
social, legal and ethical issues of e-commerce..home based
 
Legal ethical issues E commerce
Legal ethical issues E commerceLegal ethical issues E commerce
Legal ethical issues E commerceWisnu Dewobroto
 
Legal instrumentation in e commerce
Legal instrumentation in e commerceLegal instrumentation in e commerce
Legal instrumentation in e commerceUjjwal Joshi
 
Public policy legal issues to privacy
Public policy legal issues to privacyPublic policy legal issues to privacy
Public policy legal issues to privacyMuneeb Ahmed
 
iConference 2011: Reputation in the Cloud
iConference 2011: Reputation in the CloudiConference 2011: Reputation in the Cloud
iConference 2011: Reputation in the CloudJim Adler
 
Cyber crime:The Transformation Of Crime In The Information Age.
Cyber crime:The Transformation Of Crime In The Information Age.Cyber crime:The Transformation Of Crime In The Information Age.
Cyber crime:The Transformation Of Crime In The Information Age.Omkar Walavalkar
 
Legal & moral issues in e commerce
Legal & moral issues in e commerceLegal & moral issues in e commerce
Legal & moral issues in e commerceDamo Ward
 
Tech Week Chicago 2012: Law & Social Data
Tech Week Chicago 2012: Law & Social DataTech Week Chicago 2012: Law & Social Data
Tech Week Chicago 2012: Law & Social DataAdler Law Group
 
Chp 05 anonymity, security, privacy and civil liberties (shared)
Chp 05 anonymity, security, privacy and civil liberties (shared)Chp 05 anonymity, security, privacy and civil liberties (shared)
Chp 05 anonymity, security, privacy and civil liberties (shared)YUSRA FERNANDO
 
Presentation Ict
Presentation IctPresentation Ict
Presentation Ictsafa
 
Hacking Activities in Canada
Hacking Activities in CanadaHacking Activities in Canada
Hacking Activities in CanadaIrem Kaya
 
piiLabsSeattleWorkshop_ChristinaGagnier
piiLabsSeattleWorkshop_ChristinaGagnierpiiLabsSeattleWorkshop_ChristinaGagnier
piiLabsSeattleWorkshop_ChristinaGagnierpii2011
 

What's hot (20)

Cyber Threat Overview for Euro IT counsel
Cyber Threat Overview for Euro IT counselCyber Threat Overview for Euro IT counsel
Cyber Threat Overview for Euro IT counsel
 
SOPA
SOPASOPA
SOPA
 
Assigment Idham
Assigment IdhamAssigment Idham
Assigment Idham
 
social, legal and ethical issues of e-commerce..
social, legal and ethical issues of e-commerce..social, legal and ethical issues of e-commerce..
social, legal and ethical issues of e-commerce..
 
Cyber laws
Cyber lawsCyber laws
Cyber laws
 
Legal ethical issues E commerce
Legal ethical issues E commerceLegal ethical issues E commerce
Legal ethical issues E commerce
 
Privacy and E-Commerce
Privacy and E-CommercePrivacy and E-Commerce
Privacy and E-Commerce
 
Legal instrumentation in e commerce
Legal instrumentation in e commerceLegal instrumentation in e commerce
Legal instrumentation in e commerce
 
Blog Wars at New Media Expo
Blog Wars at New Media ExpoBlog Wars at New Media Expo
Blog Wars at New Media Expo
 
Public policy legal issues to privacy
Public policy legal issues to privacyPublic policy legal issues to privacy
Public policy legal issues to privacy
 
iConference 2011: Reputation in the Cloud
iConference 2011: Reputation in the CloudiConference 2011: Reputation in the Cloud
iConference 2011: Reputation in the Cloud
 
Cyber crime:The Transformation Of Crime In The Information Age.
Cyber crime:The Transformation Of Crime In The Information Age.Cyber crime:The Transformation Of Crime In The Information Age.
Cyber crime:The Transformation Of Crime In The Information Age.
 
Legal & moral issues in e commerce
Legal & moral issues in e commerceLegal & moral issues in e commerce
Legal & moral issues in e commerce
 
Tech Week Chicago 2012: Law & Social Data
Tech Week Chicago 2012: Law & Social DataTech Week Chicago 2012: Law & Social Data
Tech Week Chicago 2012: Law & Social Data
 
Chp 05 anonymity, security, privacy and civil liberties (shared)
Chp 05 anonymity, security, privacy and civil liberties (shared)Chp 05 anonymity, security, privacy and civil liberties (shared)
Chp 05 anonymity, security, privacy and civil liberties (shared)
 
Cyber law
Cyber lawCyber law
Cyber law
 
Presentation Ict
Presentation IctPresentation Ict
Presentation Ict
 
Hacking Activities in Canada
Hacking Activities in CanadaHacking Activities in Canada
Hacking Activities in Canada
 
piiLabsSeattleWorkshop_ChristinaGagnier
piiLabsSeattleWorkshop_ChristinaGagnierpiiLabsSeattleWorkshop_ChristinaGagnier
piiLabsSeattleWorkshop_ChristinaGagnier
 
Social and ethical issues in commerce
Social and ethical issues in commerceSocial and ethical issues in commerce
Social and ethical issues in commerce
 

Viewers also liked

Executive Overview of IT Strategy and Capability Maturity Framework
Executive Overview of IT Strategy and Capability Maturity FrameworkExecutive Overview of IT Strategy and Capability Maturity Framework
Executive Overview of IT Strategy and Capability Maturity FrameworkVishal Sharma
 
IT Strategy & Planning
IT Strategy & PlanningIT Strategy & Planning
IT Strategy & Planningchakraj
 
ICT Strategic Planning
ICT Strategic PlanningICT Strategic Planning
ICT Strategic PlanningSuzie Vesper
 
SEO: Getting Personal
SEO: Getting PersonalSEO: Getting Personal
SEO: Getting PersonalKirsty Hulse
 
Lightning Talk #9: How UX and Data Storytelling Can Shape Policy by Mika Aldaba
Lightning Talk #9: How UX and Data Storytelling Can Shape Policy by Mika AldabaLightning Talk #9: How UX and Data Storytelling Can Shape Policy by Mika Aldaba
Lightning Talk #9: How UX and Data Storytelling Can Shape Policy by Mika Aldabaux singapore
 

Viewers also liked (7)

Executive Overview of IT Strategy and Capability Maturity Framework
Executive Overview of IT Strategy and Capability Maturity FrameworkExecutive Overview of IT Strategy and Capability Maturity Framework
Executive Overview of IT Strategy and Capability Maturity Framework
 
IT Strategy
IT StrategyIT Strategy
IT Strategy
 
IT Strategy & Planning
IT Strategy & PlanningIT Strategy & Planning
IT Strategy & Planning
 
ICT Strategic Planning
ICT Strategic PlanningICT Strategic Planning
ICT Strategic Planning
 
SEO: Getting Personal
SEO: Getting PersonalSEO: Getting Personal
SEO: Getting Personal
 
Lightning Talk #9: How UX and Data Storytelling Can Shape Policy by Mika Aldaba
Lightning Talk #9: How UX and Data Storytelling Can Shape Policy by Mika AldabaLightning Talk #9: How UX and Data Storytelling Can Shape Policy by Mika Aldaba
Lightning Talk #9: How UX and Data Storytelling Can Shape Policy by Mika Aldaba
 
Succession “Losers”: What Happens to Executives Passed Over for the CEO Job?
Succession “Losers”: What Happens to Executives Passed Over for the CEO Job? Succession “Losers”: What Happens to Executives Passed Over for the CEO Job?
Succession “Losers”: What Happens to Executives Passed Over for the CEO Job?
 

Similar to Privacy & Data Security for InHouse Counsel

Axxera End Point Security Protection
Axxera End Point Security ProtectionAxxera End Point Security Protection
Axxera End Point Security ProtectionShawn Crimson
 
BYOD - Bringing Technology to work | Sending Data Everywhere
BYOD - Bringing Technology to work | Sending Data EverywhereBYOD - Bringing Technology to work | Sending Data Everywhere
BYOD - Bringing Technology to work | Sending Data EverywhereJim Brashear
 
How your nonprofit can avoid data breaches and ensure privacy
How your nonprofit can avoid data breaches and ensure privacyHow your nonprofit can avoid data breaches and ensure privacy
How your nonprofit can avoid data breaches and ensure privacyTechSoup Canada
 
74 x9019 bea legal slides short form ged12.12.16
74 x9019 bea legal slides short form ged12.12.1674 x9019 bea legal slides short form ged12.12.16
74 x9019 bea legal slides short form ged12.12.16Glenn E. Davis
 
E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...
E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...
E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...Cengage Learning
 
Working with law enforcement
Working with law enforcementWorking with law enforcement
Working with law enforcementMeg Weber
 
Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...
Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...
Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...Shawn Tuma
 
Sept 2012 data security & cyber liability
Sept 2012 data security & cyber liabilitySept 2012 data security & cyber liability
Sept 2012 data security & cyber liabilityDFickett
 
CULCT Cybersecurity Workshop 2.10.15
CULCT Cybersecurity Workshop 2.10.15CULCT Cybersecurity Workshop 2.10.15
CULCT Cybersecurity Workshop 2.10.15E Andrew Keeney
 
Internet Law 2014 - Presentation at CalBar IP Institute
Internet Law 2014 - Presentation at CalBar IP InstituteInternet Law 2014 - Presentation at CalBar IP Institute
Internet Law 2014 - Presentation at CalBar IP InstituteInternet Law Center
 
Cyber & Privacy Liability for Health Care Industry
Cyber & Privacy Liability for Health Care IndustryCyber & Privacy Liability for Health Care Industry
Cyber & Privacy Liability for Health Care IndustryFerrariT1
 
Protecting Client Data 11.09.11
Protecting Client Data 11.09.11Protecting Client Data 11.09.11
Protecting Client Data 11.09.11pdewitte
 
What i learned at the infosecurity isaca north america expo and conference 2019
What i learned at the infosecurity isaca north america expo and conference 2019What i learned at the infosecurity isaca north america expo and conference 2019
What i learned at the infosecurity isaca north america expo and conference 2019Ulf Mattsson
 
Cybersecurity & Computer Fraud - The Convergence
Cybersecurity & Computer Fraud - The ConvergenceCybersecurity & Computer Fraud - The Convergence
Cybersecurity & Computer Fraud - The ConvergenceShawn Tuma
 
Legal vectors - Survey of Law, Regulation and Technology Risk
Legal vectors - Survey of Law, Regulation and Technology RiskLegal vectors - Survey of Law, Regulation and Technology Risk
Legal vectors - Survey of Law, Regulation and Technology RiskWilliam Gamble
 

Similar to Privacy & Data Security for InHouse Counsel (20)

Axxera End Point Security Protection
Axxera End Point Security ProtectionAxxera End Point Security Protection
Axxera End Point Security Protection
 
BYOD - Bringing Technology to work | Sending Data Everywhere
BYOD - Bringing Technology to work | Sending Data EverywhereBYOD - Bringing Technology to work | Sending Data Everywhere
BYOD - Bringing Technology to work | Sending Data Everywhere
 
How your nonprofit can avoid data breaches and ensure privacy
How your nonprofit can avoid data breaches and ensure privacyHow your nonprofit can avoid data breaches and ensure privacy
How your nonprofit can avoid data breaches and ensure privacy
 
74 x9019 bea legal slides short form ged12.12.16
74 x9019 bea legal slides short form ged12.12.1674 x9019 bea legal slides short form ged12.12.16
74 x9019 bea legal slides short form ged12.12.16
 
E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...
E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...
E-Discovery: How do Litigation Hold, BYOD, and Privacy Affect You? - Course T...
 
Working with law enforcement
Working with law enforcementWorking with law enforcement
Working with law enforcement
 
Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...
Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...
Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...
 
Sept 2012 data security & cyber liability
Sept 2012 data security & cyber liabilitySept 2012 data security & cyber liability
Sept 2012 data security & cyber liability
 
Data Privacy
Data PrivacyData Privacy
Data Privacy
 
CULCT Cybersecurity Workshop 2.10.15
CULCT Cybersecurity Workshop 2.10.15CULCT Cybersecurity Workshop 2.10.15
CULCT Cybersecurity Workshop 2.10.15
 
Cybersecurity Workshop
Cybersecurity Workshop Cybersecurity Workshop
Cybersecurity Workshop
 
AIIM 2015 - Data Privacy
AIIM 2015 - Data PrivacyAIIM 2015 - Data Privacy
AIIM 2015 - Data Privacy
 
Internet Law 2014 - Presentation at CalBar IP Institute
Internet Law 2014 - Presentation at CalBar IP InstituteInternet Law 2014 - Presentation at CalBar IP Institute
Internet Law 2014 - Presentation at CalBar IP Institute
 
Cyber & Privacy Liability for Health Care Industry
Cyber & Privacy Liability for Health Care IndustryCyber & Privacy Liability for Health Care Industry
Cyber & Privacy Liability for Health Care Industry
 
Protecting Client Data 11.09.11
Protecting Client Data 11.09.11Protecting Client Data 11.09.11
Protecting Client Data 11.09.11
 
What i learned at the infosecurity isaca north america expo and conference 2019
What i learned at the infosecurity isaca north america expo and conference 2019What i learned at the infosecurity isaca north america expo and conference 2019
What i learned at the infosecurity isaca north america expo and conference 2019
 
Cybersecurity & Computer Fraud - The Convergence
Cybersecurity & Computer Fraud - The ConvergenceCybersecurity & Computer Fraud - The Convergence
Cybersecurity & Computer Fraud - The Convergence
 
Legal vectors - Survey of Law, Regulation and Technology Risk
Legal vectors - Survey of Law, Regulation and Technology RiskLegal vectors - Survey of Law, Regulation and Technology Risk
Legal vectors - Survey of Law, Regulation and Technology Risk
 
IDT Red Flags White Paper By Wrf
IDT Red Flags White Paper By WrfIDT Red Flags White Paper By Wrf
IDT Red Flags White Paper By Wrf
 
Cloud Security Law Issues--an Overview
Cloud Security Law Issues--an OverviewCloud Security Law Issues--an Overview
Cloud Security Law Issues--an Overview
 

Privacy & Data Security for InHouse Counsel

  • 1. WARNING TRACK Privacy & Data Security Issues for In-House Counsel Presented by Anthony Martin May 7, 2009 Copyright 2009, Husch Blackwell Sanders LLP
  • 2.
  • 3.
  • 4. Cell Phones Stolen from Verizon Stores POST- ST. LOUIS POST-DISPATCH Tuesday, May 5, 2009 Burglars broke into three area Verizon Wireless stores overnight, stealing about 100 cell phones and two computers worth at least $42,000, police said.
  • 5. • State & Local Police • Privacy Policies • US Attorneys Office • Data Breach Report • FBI • Service Provider • FTC Contracts • Public Relations • PCI-DSS • IT Department • Banks & CC • Risk Management • Customer Lists • Insurance Agents • State Breach Laws • Legal Team • Pick up the kids.
  • 6. 10,000 Customer Records $200 Per Record
  • 8. WARNING TRACK Privacy & Data Security Issues for In-House Counsel
  • 9. Information Privacy: how we collect and use the “personal information” of others that we are authorized to have. Data Security: how we keep that personal information safe from unauthorized access or use.
  • 10. Outline For Discussion • Labor & Employment • Litigation • Real Estate • Corporate Compliance • Corporate Transactions • Solutions
  • 11. Labor & Employment • Reasonable Expectation of Privacy. • Access to Employee e-mail. e- • Location Awareness and Social Media. • Employee Handbooks and Policies.
  • 12. The Stored Communications Act prohibits intentional access to an electronic communication while it is in electronic storage in such system. 18 U.S.C.A. § 2701
  • 13. Litigation • Admissibility of Evidence. • Cross-Border Discovery Issues. • Protective Orders and Appeals.
  • 14. The Member States shall provide that the transfer to a third country of personal data . . . may take place only if the third country in question ensures an adequate level of protection. Article 25, EU Privacy Directive
  • 15.
  • 16. Real Estate • Mortgage Fraud and Identity Theft. • FACT Act “Red Flags” Regulations.
  • 17. Corporate Compliance • Data Breach Incident Response Plan. • Sarbanes-Oxley and SEC Disclosures. • Increased Regulation and Oversight.
  • 18. 446 reported data breaches for 2007. 656 reported data breaches for 2008. 159 reported data breaches in 2009.
  • 19.
  • 20. 12,000 Laptops are “lost” in airports.
  • 22. Average incident costs are $6.65 million.
  • 23. The most significant cost decrease was seen in activities relating to post-breach response. The U.S. Cost of a Data Breach Study Ponemon Institute
  • 24. The CEO must certify that all the information in public reports is valid and accurate. The CEO sign off on the validity of the data without confirmation of the security of those systems and networks.
  • 25. The CEO/CFO must attest to having proper "internal controls." These “internal controls” include controls over networked electronic systems, which can include anything that sits on the network or connects to the network.
  • 26. Corporate Transactions • Service Provider Agreements. • Mergers & Acquisitions.
  • 27. Third-party organizations accounted for more than 44 percent of all breaches. These are the most expensive form of data breaches due to additional investigation fees.
  • 28. Solutions • Risk Assessments. • Plan with Privacy & Data Security in Mind. • Training. • Privacy Officer.
  • 29. “You have zero privacy. . .” .” “Get over it.” it.” Scott McNealy CEO Sun Microsystems
  • 30. “Every single datum about my life is private? silly.” That's silly.” Antonin Scalia US Supreme Court
  • 31. 15- 15-Page Dossier on Scalia . . . Including: home address and the value of his home, home phone number, movies he likes, food preferences, wife's personal e-mail address, and "photos of his lovely grandchildren."