My notes from the EthicsPoint webinar on intake models and the value of web intake forms. The presenter was Erin Watkinson a business solutions consultant at EthicsPoint. A custom web intake form is a replacement for paper based forms. You can use the web to report on issues. Reporting should encourage employees to first go … Read more »
Category: IT Compliance
Public Hearing on Massachusetts Data Privacy Regulations
The Massachusetts Office of Consumer Affairs and Business has published a Notice of Public Hearing on 201 CMR 17.00, Standards for the Protection of Personal Information of Residents of the Commonwealth. (.pdf) The hearing is on Friday, January 16, 2009 at 2:00 pm in Room No. 5-6, Second Floor of the Transportation Building, 10 Park … Read more »
Computer System Requirements for New Massachusetts Privacy Regulations
As discussed in earlier alerts (Additional Guidance on the Massachusetts Privacy Regulations, Privacy and Security Alert: Massachusetts Has New Data Security Regulations and New Massachusetts Privacy Laws), starting on January 1, 2009, businesses will be held to a higher standard regarding the protection of Massachusetts residents’ personal information. The regulations set out in detail the … Read more »
Compliance and Cloud Computing
Sara Peters wrote an article on Security Provoked: How Can You Prove Compliance in the Cloud? Whether you’re in the midst of an audit or a forensic investigation, thorough logs are the key to proving compliance with security regulations. So how do you prove your organization is/was compliant when you aren’t able to maintain logs? … Read more »