Framework

Nevada Privacy Law Security Requirements

Nevada Privacy Law requiring a company that transfers customer personal information outside of its secure system through an electronic transmission to use encryption. This law is effective since October 1, 2008 and after several ammendments will be effective in January 1, 2010.

Encryption requirements:
A company that does not accept a payment card (a credit card, charge card, debit card or similar card) in connection with a sale of goods or services must use encryption

1. To transfer any personal information through an electronic, nonvoice transmission (other than a facsimile) outside the company's secure system or

Summary of Massachusetts Privacy Law Security Standards

Massachusetts Privacy Law Security Standards:
- Written information security program
- Passwords, encryption for laptops
- Risk assessments
- Security policies around records retention
- Policies and procedures to prevent terminated employees from gaining access
- Physical access control policies and procedures
- Security incident response policies
- Monitoring for unauthorized access
- Encryption of PII on laptops and other portable devices
- Encryption of PII data in transmission

Effective: 1 January 2009

IT SWOT Analysis and Resulting Strategy Templates

Download Free SWOT Analysis and Resulting Strategy Templates
SWOT Analysis and Resulting Strategy Templates

SWOT Analysis
- Strengths
- Management
- Practices
- Relationships with vendors, dealers, partners
- Design and engineering
- Lean cost structure
- Capacity

What is Gramm-Leach-Bliley Act (GLBA)

The Gramm-Leach-Bliley Act (GLBA) was enacted by the United States government in 1999. GLBA, also known as the Financial Services Modernization Act of 1999, protects the privacy and security of private financial information that financial institutions collect, hold, and process. The privacy component of this act requires financial institutions to provide customers with an annual notice of their privacy practices, and to provide them the option to direct financial institutions not to share such information.

The safeguards component of the regulation requires financial institutions to establish a comprehensive security program to

Risk Assessment Training Framework

Download Free Risk Assessment Training Framework
Download Free Risk Assessment Training Framework
Phase 1. Needs Assessment
Step 1. Characterize IT Environment

123next ›last »
Syndicate content

User login

Who's new

  • WISSEENFOWL
  • Eduviaradvigo
  • icexepire
  • Hassanitc
  • tattoo_mixa

Who's online

There are currently 0 users and 0 guests online.