Data Privacy And Protection Efforts Start With A Company Policy, But Don’t End There

If your company has a data privacy policy in place, make sure you live up to its provisions. Failure to do so makes it more likely that the Federal Trade Commission (“FTC”) will pursue an enforcement action against the company for engaging in a “deceptive practice” under Section 5 of the FTC Act.

What can you do to prevent this from happening? A recent article, referencing an FTC enforcement action, suggests the following:

• Conduct risk assessments

• Use “reasonable methods” to prevent/detect unauthorized access to personal information

• Train employees

• Employ proper response measures

If your business is a financial institution, or your company maintains personal health information, specific Federal laws (Graham-Leach-Bliley, HIPPA) directly impact your obligations with respect to data security and personal health information, respectively.

LOADING PDF: If there are any problems, click here to download the file.

Published In: Business Torts Updates, General Business Updates, Health Updates, Personal Injury Updates, Privacy Updates

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Robert Freedman - Partner at Tharpe & Howell, LLP | Attorney Advertising

Don't miss a thing! Build a custom news brief:

Read fresh new writing on compliance, cybersecurity, Dodd-Frank, whistleblowers, social media, hiring & firing, patent reform, the NLRB, Obamacare, the SEC…

…or whatever matters the most to you. Follow authors, firms, and topics on JD Supra.

Create your news brief now - it's free and easy »