1st Edition

The Privacy Papers Managing Technology, Consumer, Employee and Legislative Actions

By Rebecca Herold Copyright 2001
    708 Pages 40 B/W Illustrations
    by Auerbach Publications

    Today, more than ever, organizations have to cope with increased concerns regarding privacy issues. These concerns are not limited to consumer fears about how information collected by Web sites will be used or misused. They also involve broader issues, including data collected for direct response marketing, privacy of financial and health records, identity theft, and fraud. Employees are raising questions about acceptable use of phones, e-mail, the Web, and if and when employers can monitor use. Employers find that without policies governing use of these assets, they have no legal basis for action against employees.

    The Privacy Papers: Managing Technology, Consumer, Employee, and Legislative Actions is a book for C-level executives, IT managers, HR managers, security officers, privacy officers, and legal professionals. It covers all aspects of technology and legislation that enable privacy and also those that place it at risk. This how-to guide presents sample policies for employee training, awareness, and acceptable use; covers why companies must protect data and how to do it; describes the technology that makes information more private; and lists and summarizes major federal and international privacy legislation.

    Corporate espionage can put sensitive company information such as intellectual property, product development, marketing plans, and customer files at risk. With the ever-increasing legislation concerning privacy, it is important for executives to stay up to date. The Privacy Papers will ensure that any company conducting business domestically or internationally will understand how policies governing use of their assets will affect daily operations.

    Introduction

    BUSINESS ORGANIZATION ISSUES
    E-mail Policies
    Monitoring Policies
    Customer Web Privacy Policies
    Education and Awareness Training
    Keeping Personal Information Private
    Attorney-Client Privilege and Electronic Communications
    Corporate Spies
    Auditing and Privacy
    Computer Forensics
    Electronic Identifiers
    International Communications
    Anonymous Internet Activity
    E-Commerce and Confidentiality Issues
    Information Security and Privacy Officer Roles
    Health-Related Information
    Criminal Internet Activity
    Identity Theft
    Legal Primer for ISPs

    TOOLS AND RELATED TECHNOLOGY
    Encryption and Cryptography
    Steganography
    Cookies and Profiling
    Monitoring and Content Filtering
    Wireless Communications
    Data Mining and Customer Retention Management
    Third-Party Assurance Privacy and Security Certifications
    Confidentiality Agreements

    UNITED STATES OF AMERICA LAWS AND ISSUES
    Health Insurance Portability and Accountability Act of 1996 (HIPAA)
    Gramm-Leach-Bliley Act (GLB) (1999)
    Overviews of other U.S. Privacy-Related Laws and Regulations
    Bills Under Consideration
    Government Surveillance on the Internet

    INTERNATIONAL LAWS AND ISSUES
    European Union Data Protection Directive (1995)
    Safe Harbor
    Lists and Overviews of Other International Laws, Regulations, and Issues

    PRIVACY RESOURCES
    About the Editor
    Index

    Biography

    Herold\, Rebecca

    "…a timely and invaluable sourcebook on privacy issues from A to Z…crafted by Rebecca Herod, CISSP, CISA, and FLMI, a highly respected and experienced information security professional…Herod's contributors read like a Who's Who list of information security professionals…a rich, timely, and essential resource."
    Computer Security Alert, November 2001