|| Print ||
|Articles - July/August 2013|
|Monday, July 08, 2013|
BY SHAWN M. LINDSAY
As a business, do you ever handle or use a client’s credit card number or social security number? How about a client’s financial documents, date of birth, driver’s license number, medical records or any other sensitive personal information? If none of these, maybe your website collects information from children under the age of 13, or maybe you have a smartphone app that uses location services? For most of you, the answer will be yes, and the manner in which you handle the information is serious business.
Information privacy and data security issues involve nearly every facet of a business. With the rapid development of digital and information technology, businesses of every size now collect, process and warehouse all sorts of personal information with a variety of technologies, from USB drives to tablets to the cloud. The laws and regulations that govern the handling of personal information are numerous, complex, vary by location and are constantly changing. If a business does not take appropriate care to protect against prohibited access to or loss of personal information, it can be subjected to significant fines and, more important, considerable damage to its reputation.
A few recent examples illustrate the exposure to risk. In February of this year, while on vacation in Hawaii, a hospital surgeon had his laptop — containing personal health information of approximately 4,000 patients — taken during a burglary. The hospital involved offered patients free identity theft monitoring, among other things. This past March, the online note-taking servicer Evernote was hacked, and all of its 50 million users needed to reset their passwords. And late this spring, the Utah Department of Technology Services revealed that 780,000 individuals were affected by the theft of Medicaid information, including social security numbers. Utah had to send a report to the U.S. Department of Health and Human Services to assess potential violations of HIPAA.
Big businesses are not the only ones experiencing technology breaches. Breaches have recently occurred with small dental and medical offices, grocery stores and online retail stores. As a business, what can you do to protect your clients’ confidential information and reduce your potential liability? You can promote prevention, detection and correction.
Interestingly, most data breaches are caused by mundane events like employees losing a USB drive or smartphone, or unwittingly misusing the Internet. One way you can promote prevention is by educating employees. Negligent employees are the top cause of loss. Privacy and security risk is no longer just an IT department problem; it is everyone’s problem. Empower employees to take responsibility for the security processes in place. You can do that yourself, or there are partners that can help you do it. For example, Swan Island Networks offers a solution, Cybero, which provides employees with real-time alerts about the latest social engineering exploits, social media activism and manufactured scams.
You can promote detection by evaluating your risks and improving your compliance. You can do this yourself, or you can partner with experts to assist. For example, ID Experts is a Portland company that can conduct a compliance assessment, a penetration test, a security-risk analysis and an incident response test. With this information, you can then promote correction by formulating a comprehensive remediation plan.
What’s most important is to have a privacy and security team in place. When dealing with privacy and security risks, there is no margin for error. So get that team in place and make sure privacy and security is a priority. It’s always better to build a fence on top of the hill then have an ambulance at the bottom of the hill.
Tuesday, August 18, 2015
BY JASON NORRIS | CFA
Earlier this month, the People’s Bank of China (PBoC) announced they were going to devalue their currency, the Renminbi. While the amount of the targeted change was to be roughly 2 percent, investors read a lot more into the move. The Renminbi had been gradually appreciating against the U.S. dollar (see chart) as to attempt to alleviate concerns of being labeled a currency manipulator.
Monday, October 05, 2015
VIDEO BY JESSE LARSON
Profiling some of the organizations featured in the 2015 list.
Wednesday, August 26, 2015
BY LINDA BAKER
A new co-working model disrupts office sharing, child care and work-life balance as we know it.
Thursday, October 01, 2015
PHOTOS BY JASON E. KAPLAN
Images from the big 2015 celebration of worker-friendly organizations that make a difference.
Wednesday, September 16, 2015
BY GREGG LEWIS | OP-ED
The issue of green-washing remains a significant challenge to those of us who would like to see the building sector in this country do more than make unverifiable claims of sustainability. Transparency about the impacts of a given material is the only way to allow designers to make intelligent choices when selecting building products.
Friday, October 02, 2015
BY KIM MOORE
Our intrepid (and expecting) research editor finds the child care search involves long waiting lists, costly fees and no certainty of securing a place before she goes back to work.
Monday, September 28, 2015
BY KIM MOORE
A conversation with Jonathan Bennett, managing partner at law firm Dunn Carney Allen Higgins & Tongue.
|The List: 100 Best Nonprofits to Work For in Oregon|
|Run, Nick, Run|
|100 Best Nonprofits: Working for equality inside and out|
|One Tough Mayor|
|Cream of the Crop|
|Keep Pendleton Weird|
|Hiring report disappoints|
|Phil Knight memoir: Coming spring 2016|
|2 out of 5 millennials pay for their news|
|Oregon's graying workforce|
|How much did Bernie Sanders raise in Q3?|
|Federal regulators OK Jordan Cove LNG terminal|
|Amazon to emulate parts of Uber's model|
Wage gaps and workforce shortages are threatening the quality of care and supports to Oregonians with intellectual and developmental disabilities. Who’s caring for those who care for our most vulnerable residents?
Engaging employees and customers along the way.
After first visiting as tourists, entrepreneurs relocate to Oregon and spur economic growth.
Over 300 attendees will gather to learn from 50+ regional leaders pushing the sustainability needle forward. GoGreen Portland offers a distinct platform of bringing people together across industries and sectors to build viable networks and cross-pollinate best practices throughout the regional business community.
Are you planning a meeting, party, gala, fundraiser, holiday party, golf tournament, retirement party, team building or birthday? You won’t want to miss this show to get hundreds of great ideas!
Promoting from within its own ranks, PacificSource Health Plans has tapped Tony Kopki to head its commercial lines of business in Oregon, Idaho and Montana. In his new role as Vice President of Commercial Programs, Kopki will provide strategic, product and market leadership for PacificSource’s commercial programs.