December 2nd, 2014
Six Essential Steps for Data Security
Here's a holiday gift for anyone whose business depends on keeping customer or client data secure: the Frankfurt Kurnit Technology Group's list of six essential steps for data security.
Transfer data securely. When transferring personal data, secure it using encryption and password protection. If you are sending a file via email, do not include the password in the same message. Consider not even sending the password by message at all: make a phone call to deliver the password.
Do not store information longer than necessary. One of the core concepts of privacy and data security is the data lifecycle. You should dispose of customers' personally identifiable information, and particularly payment information, as soon as you no longer need it for a legitimate business purpose. Do not just store information to store it.
Dispose of information as completely as possible. When you dispose of personally identifiable information, you must destroy it as completely as possible. If a "dumpster diver" or hacker can resurrect your data, then you have not properly disposed of it. Use a secure method to wipe your file system clean. Just clicking and dragging data files into a "recycle bin" or the "trash" on your computer screen is not enough.
- Make a breach plan. Creating a privacy and data security team along with a breach plan is a critical step in any comprehensive privacy and data security program. Company executives should know whom to call and what to do in the event of an incident. Your company should have access to legal counsel, a forensic data security company, and thorough internal policies. Making a breach plan after a breach has occurred is too late.
Data breaches and "hacks" occur daily. For more information on data security preparedness or any other technology, data privacy and security law issues, please contact Greg Boyd at (212) 826 5581 or firstname.lastname@example.org, Sean Kane at (212) 705 4845 or email@example.com, Jessica Smith at (212) 705 4876 or firstname.lastname@example.org, or any other member of the Frankfurt Kurnit Technology, Digital Media, & Privacy Group.
Are You Ready for New York’s New Anti-Harassment Rules?
Many New York employers are days away from a number of important compliance deadlines relating to the recently enacted New York State anti-sexual harassment laws (a link to our prior alert on these laws is here). We have provided a summary of what covered employers need to do.
October 1 2018
California Supreme Court Holds that Conflict Invalidates Firm’s Engagement Letter But Says Firm Still May be Able to Get Paid
Last week, the California Supreme Court issued its decision in Sheppard, Mullin, Richter & Hampton, LLP v. J-M Manufacturing Co., Inc., a decision which lawyers and law firms anxiously awaited for months.
September 4 2018
IRS Final Regulations Clarify Charitable Contribution Substantiation Requirements
Tax deductions for charitable contributions require the satisfaction of certain substantiation requirements.
August 28 2018