Risks of Using Social Media and Web 2.0 Data Leakage Incoming Threats Compliance & eDiscovery User BehaviorPersonal SEC, FINRA EmployeeInformation Malware, Spyware Productivity HIPAA, FISMAIntellectual Property Viruses, Trojans Bandwidth SOX, PCI, FSACredit Card, Explosion InappropriateSSN FRCP- eDiscovery Content Every employee isClient Records FERC, NERC the face of business
Web 2.0 & Social Networks Regulation & Compliance Regulation Social Network and Web 2.0 Impact Obliged to store records and make accessible. Public correspondence requiresSEC and FINRA approval, review and retention. Extended to social media. http://www.finra.org/Industry/Issues/Advertising/p006118 Protect information, monitor for sensitive content, and ensure not sent overGramm-Leach-Bliley Act (GLBA) public channels (e.g., Twitter) Ensuring cardholder data is not sent over unsecured channels AND PROVINGPCI IT Prevent identity theft. Protect IM and Web 2.0 from malware and phishingRed Flag Rules when users are more likely to drop their guard. Email and IM are ESI. Posts to social media sites must be preserved ifFRCP (eDiscovery) reasonably determined to be discoverable. http://blog.twitter.com/Sarbanes-Oxley (SOX) Businesses must preserve information relevant to the company reporting.