October 2, 2006

Outsourcing, Data Protection and Enforcement: The IAPP Offers Solutions For Managing Risks In Domestic, International Data Flows

YORK, Maine -- October 2, 2006 - Recognizing the global importance of outsourcing to businesses, the International Association of Privacy Professionals (IAPP) is devoting nearly seven hours of programming, with the help of 13 expert speakers, to trans-border data flows during the IAPP Privacy Academy 2006, Oct. 17-20, at Toronto's Westin Harbour Castle.

The urgency of the issue is evident by the demand from privacy pros to register for "Outsourcing and Trans-Border data Flows: Privacy and Public Policy in Transition," a five-hour session on Oct. 17. The session is divided into a 4-part series from 1-6 p.m. on Defining the Issues; How to Build Responses; Cross-Border Privacy Rules; and The Need for Government Cooperation.

Outsourcing, technology and competition are driving organizations to move data across borders. This session will explore the different approaches that organizations are using when outsourcing sensitive data. Other topics that will be covered include managing compliance, limiting liability and the steps enforcement agencies are taking to protect consumers.

Additionally, on Oct. 19, a 1½-hour workshop will be held on outsourcing. The panelists will provide practical strategies for managing data security and privacy risks in domestic and international outsourcing, including ways to deal with the conflict between Canadian privacy law and the USA Patriot Act.

India's National Association of Software Services Companies (NASSCOM) said last week that India's outsourcing industry is poised to process as much as 30 percent of U.S. banking transactions by 2010. However, the group said that stricter data security standards are essential for the industry to reach that potential. Presently, India outsourcing centers process about 8 percent of U.S. bank transactions.

Concerns about data security in the wake of security breaches involving outsourcing employees have prompted NASSCOM to beef up security standards. One effort involves creating a self-regulatory group comprised of outsourcing company representatives to enforce privacy and data security standards.

Outsourcing is one issue dominating corporate agendas today. Privacy pros predictably turn to the IAPP for education on the most urgent privacy and security issues, including outsourcing. Registration for the Academy is available at