This FTC brochure offers tips for compliance with the CAN-SPAM Act including “what if” scenarios and how to descipher whether your communication falls under the act.
This survey outlines a series of questions to help an organization better understand if employees are collecting and maintaining personally identifiable information within commercial products. The scope of this survey is limited to PII data that is collected, transmitted, or stored by the organization.
This excel workbook includes definitions of personally identifiable information in terms of applicable U.S. state laws, U.S. federal laws and national laws from countries across the globe.
This bulletin expands on the National Archives and Records Administration’s FAQ from February 2010 aimed at providing agencies with a basic overview of cloud computing. This bulletin includes a more detailed definition, federal agency examples of cloud computing, records management guidelines and contract language to consider when procuring cloud computing services.
This Cloud Security Alliance guidance seeks to establish a stable, secure baseline for cloud operations. This effort provides a practical, actionable road map to managers wanting to adopt the cloud paradigm safely and securely. Domains have been rewritten to emphasize security, stability and privacy, ensuring corporate privacy in a multi-tenant environment.
Practical Law is pleased to make its data protection multi-jurisdictional guide available, free of charge, to IAPP members. The guides will allow you to quickly compare key legal issues across jurisdictions. The guide aims to give a structured overview of the key practical issues including, for example, the main data protection rules and principles, rights of individuals, security requirements, processing of data by third parties, cookies and spam, international transfers of data and enforcement procedures and sanctions.
The purpose of this guidance from the Office of the Privacy Commissioner of Canada is to help organizations enhance the timeliness and content of communications during an emergency while giving people confidence that their personal information will be handled appropriately. It is aimed primarily at decision-makers in organizations that are subject to Canadian privacy laws, but the practices outlined here are largely applicable to organizations in other jurisdictions.
This whitepaper from Oracle aims to provide readers with insights on how to establish, expand and mature organizational data governance capabilities.
This webpage on the European Commission website tracks the Directive implementation status of EU member states with regard to the processing of personal data including links to specific legislative procedures.
The U.S. Office of the National Coordinator for Health Information Technology's (ONC) Office of the Chief Privacy Officer developed this game intended to raise awareness and increase understanding of common privacy and security issues related to health information technology.
The Australian Medical Association created this guidance for private-sector medical practitioners to provide assistance in understanding Australian privacy law.
This document reprises the NIST-established definition of cloud computing; describes cloud computing benefits and open issues; presents an overview of major classes of cloud technology, and provides guidelines and recommendations on how organizations should consider the relative opportunities and risks of cloud computing.
This NIST publication provides a catalog of security and privacy controls for federal information systems and organizations and a process for selecting controls to protect organizational operations (including mission, functions, image and reputation), organizational assets, individuals, other organizations, and the Nation from a diverse set of threats including hostile cyber attacks, natural disasters, structural failures and human errors (both intentional and unintentional).
Page 5 of 11 pages ‹ First < 3 4 5 6 7 > Last ›