Samples, Tools and Templates    IT/Data Brokerage

How Small Businesses Can Protect and Secure Customer Information

Many businesses collect "sensitive"data or information from consumers for business purposes. Theft or misuse of this information can put your customers' financial information at risk and damage the reputation of the business. The U.S. Small Business Administration offers tips to help protect both your business records and your customers' sensitive data.

Seven Considerations for Crafting an Online Privacy Policy

The U.S. Small Business Administration offers general guidelines for creating a privacy policy, while acknowledging they must be tailored to fit each business’ needs.

NARA Bulletin: Guidance on Managing Records in Cloud Computing Environments

This bulletin expands on the National Archives and Records Administration’s FAQ from February 2010 aimed at providing agencies with a basic overview of cloud computing. This bulletin includes a more detailed definition, federal agency examples of cloud computing, records management guidelines and contract language to consider when procuring cloud computing services.

Security Guidance for Critical Areas of Focus in Cloud Computing

This Cloud Security Alliance guidance seeks to establish a stable, secure baseline for cloud operations. This effort provides a practical, actionable road map to managers wanting to adopt the cloud paradigm safely and securely. Domains have been rewritten to emphasize security, stability and privacy, ensuring corporate privacy in a multi-tenant environment.

Practical Law Data Protection Multi-jurisdictional Guide

Practical Law is pleased to make its data protection multi-jurisdictional guide available, free of charge, to IAPP members. The guides will allow you to quickly compare key legal issues across jurisdictions. The guide aims to give a structured overview of the key practical issues including, for example, the main data protection rules and principles, rights of individuals, security requirements, processing of data by third parties, cookies and spam, international transfers of data and enforcement procedures and sanctions.

Enterprise Information Management: Best Practices in Data Governance

This whitepaper from Oracle aims to provide readers with insights on how to establish, expand and mature organizational data governance capabilities.

Status of Implementation of Directive 95/46

This webpage on the European Commission website tracks the Directive implementation status of EU member states with regard to the processing of personal data including links to specific legislative procedures.

Privacy Program Guide

To support U.S. justice agencies in their efforts to implement privacy, civil rights and civil liberties policies and protections for the information they collect, store, maintain, access, share and disseminate, the U.S. Department of Justice’s Global has developed this Global Privacy Resources site as a road map to guide justice entities through the diverse privacy policy development and implementation products available today.

Cloud Computing Synopsis and Recommendations

This document reprises the NIST-established definition of cloud computing; describes cloud computing benefits and open issues; presents an overview of major classes of cloud technology, and provides guidelines and recommendations on how organizations should consider the relative opportunities and risks of cloud computing.

Security and Privacy Controls for Federal Information Systems and Organizations

This NIST publication provides a catalog of security and privacy controls for federal information systems and organizations and a process for selecting controls to protect organizational operations (including mission, functions, image and reputation), organizational assets, individuals, other organizations, and the Nation from a diverse set of threats including hostile cyber attacks, natural disasters, structural failures and human errors (both intentional and unintentional).

Guide to Protecting the Confidentiality of Personally Identifiable Information (PII)

This document by the National Institute of Standards and Technology provides guidelines for a risk-based approach to protecting the confidentiality of PII. Intended primarily for U.S. federal agencies, the guidance provides information that other organizations may find useful.

Guidelines on Security and Privacy in Public Cloud Computing

This publication by the National Institute of Standards and Technology provides an overview of the security and privacy challenges pertinent to public cloud computing and points out considerations organizations should take when outsourcing data, applications and infrastructure to a public cloud environment.

Privacy Management Program—At a Glance

This document from the Alberta, British Columbia and federal privacy commissioners lays out in chart format the building blocks that make up a privacy management program.

The Fine Print of Privacy

This “explainer” from the Zero Knowledge Privacy Foundation is aimed at consumers and offers information about company privacy policies, including why companies have policies, how they vary from one to the next, whether companies are required to have privacy policies and how they may change going forward.

Full Privacy Impact Assessment Report Template

This template from the Newfoundland and Labrador Centre for Health Information is used to evaluate the impact on privacy that results from change to a system, environment, or process. The template is offered in word format for easy customizing.

Page 5 of 10 pages ‹ First  < 3 4 5 6 7 >  Last ›