Some great tips for all employers to con September 4, 2012
Posted by Arieh M. Flemenbaum in Chicago Business.add a comment
Some great tips for all employers to consider before making a hiring decision: Avoid these #hiring pitfalls startups can easily fall into! http://t.co/rORRztzM via @B2Community RT @sparkhire
RT @wpinkerton: Fast-Growing Companies August 31, 2012
Posted by Arieh M. Flemenbaum in Chicago Business.add a comment
RT @wpinkerton: Fast-Growing Companies & Cities | http://t.co/1xeIUVZt http://t.co/gqiaApF7 | The real upside is that these cities aren’t clustered.
Redesigning the interior of your offices August 29, 2012
Posted by Arieh M. Flemenbaum in Chicago Business.add a comment
Redesigning the interior of your offices? Consider #Glass #Walls instead of Drywall. Jaime @foxvalleyglass1 http://t.co/JOnJbsXK
August’s Calendar of Chicago’s Business Technology Events August 1, 2011
Posted by Arieh M. Flemenbaum in Banking/Financial, Biz IT, Blog, Business, Business best practices, business check-up, Business Law, Business loans, Business philosophy, business planning, Business Start-ups, Business succession - exit, Business tax, Business Tech, Business Technology, Chicago Business, Corporate governance, e-commerce, Employer issues, Employment, Employment Benefits, Facebook, Information security, Insurance, Intellectual Property, Law, Legal Information, legal services, Licensing, Limited liability company, Marketing, On the Web, Online Communities, SBA loans, taxes, tech, Top 5 Business Tips, Twitter, Uncategorized, work life balance.Tags: Business, business planning, Business Start-ups, Chicago Business, e-commerce, information security, IT issues, small business, Tech, tech company
add a comment
For a comprehensive listing of business technology events around the Chicago area by date and group, see TechVenue.com‘s “Chicago Calendar of Business Technology Events” – click the link or go to:
___________________________________________________________
Griffith & Jacobson, LLC – We know business – Chicago’s Business Lawyers.
Businesses Must Take Information Security Seriously July 11, 2011
Posted by Arieh M. Flemenbaum in Biz IT, Business, Business Technology, Information security.Tags: Business, business plan, information security, IT issues, small business, trade secrets
2 comments
Several companies have suffered data breaches recently. The list includes tech-savy companies, like Sony and Apple and companies, and major financial giants whose data is closely regulated, like Citi Bank. However, no business is immune from a data breach, and the laws protecting the personal data apply to all companies, both big and small.
Does your business have a plan in place to protect the personal information of your customers? Do you know the legal obligation imposed on your business if a breach happened? Do you have a plan in place to handle a potential breach of your data/information and to make the necessary disclosures and/or notification of a breach?
The improper handling of a breach not only can be bad for business, it can also create legal issues for your business. There has been a significant increase in the enforcement (and fines issued) in connection with data breaches. Recently, WellPoint Inc. reached a settlement with the Indiana Attorney General over a delayed notification concerning a data breach – see http://www.healthcareinfosecurity.com/articles.php?art_id=3824&pg=1
WellPoint had a data breach that allowed the personal information of approximately 32,500 customers to be potentially accessible over the Internet. The exposed data included social security numbers, financial information and health records. WellPoint agreed to: pay $100,000 to the Indiana Attorney General’s Office; provide up to two years of credit monitoring and identity-theft protection services to Indiana consumers affected by the breach; and provide reimbursement of up to $50,000 (to each customer) for any losses that result from identity theft due to the breach.
There are at least two lessons that your business should learn from WellPoint’s case:
1. Act quickly to notify the affected parties and report a material data breach to the appropriate authorities. In WellPoint’s case, it took approximately 3 months to report its breach to the Indiana Attorney General. Data breaches happen, but when they happen be sure to comply with the applicable laws. Many local and federal laws require disclosure and/or notification of the breach “without an unreasonable delay.” Some statutes require a business to report a data breach within a specified time period. So, it is imperative that the party responsible for your business’ information security is familiar with the applicable laws and the requirements imposed on your business.
2. Investigate and Monitor your third-party vendors who handle any personal and protected information. In a statement, WellPoint indicated that the breach occurred during an update of its online application system and was told by its third party vendor that there were security measures in place – which they were not. To make matters worse, WellPoint apparently did not know about the data breaches for four months.
You company must take its information security responsibilities seriously. You must have a plan for protecting your data and information and a plan to handle a potential breach. Your business must also have a person who is responsible to implement and monitor these plans, watch any third-party vendors and put your plans into action if a data breach occurs.
Arieh M. Flemenbaum
Chicago Business bLAWg 