One of the biggest challenges in managing privacy programs in North America is recognizing and reconciling the significant data implications between the United States and Canada that apply to otherwise similar products and services. Attendees will learn key differences, helpful similarities, and strategies for managing a comprehensive approach to privacy, including what to do with a cross-border data breach.
Lessons learned from devising programs to reduce products liability can point the way to creating effective information security policies.
This article explains and demystifies cybersecurity for senior management and directors by identifying the steps global companies must take to address, mitigate, and respond to the risks associated with data security.
This is a sample supplier security requirements and expectations.
This is a sample intel enhanced data security assessment form.
This program will focus on effective information security and data privacy assessment programs for third-party vendors—including practical tips for effectively assessing information security practices and procedures of third-party vendors, such as law firms and other professional consultants — from the pros and cons of using industry-standard questionnaires to determining when onsite reviews are appropriate and how to handle subcontractors. We will also highlight key, and common, sticking points in negotiating data privacy and information security terms in vendor agreements and provide options and sample language for successfully resolving them, distinguishing as applicable between US negotiations and negotiations where either the customer or the vendor has substantial operations in Europe or Asia.
This an outline for the AM16 session entitled "Getting the Board on Board: Explaining Privacy and Security Risks to the Board (When the “If” Becomes “When”)"
This resource discusses cyber-risk, the threat that data breaches can hold and what Directors should do to protect their companies in the United States. This is resource is part of the National Association of Corporate Directors (NACD) Handbook Series.
This is a checklist of the ten things you should know about debunking EU data protection reform.
The right to be forgotten, Weltimmo, Safe Harbor, the General Data Protection Regulation. These are just some of the landmark privacy developments that came out of the EU in the past year. These rulings fundamentally affect the way businesses collect and use individuals' personal data, not just in the EU but worldwide. In this session, leading privacy experts will discuss how European privacy regulation has evolved and the key actions businesses need to take now to ensure they stay on the right side of the law and avoid attracting the huge fines that Europe will soon introduce. A must-see session for anyone grappling with EU data protection rules!