IT Compliance and Controls

Converging Business, Information, and Controls

IT Compliance and Controls header image 2

Sensitive Information includes Internet Addresses, EU Data Privacy Group

January 25th, 2008 · No Comments

Personally Identifiable Information is defined differently by each industry, country, and region. Companies must have information intelligence practices in place that account for these types of information, and means of classifying and protecting. Such information in the U.S. varies by jurisdiction, but can include medical records, financial information, and now perhaps in the EU your Internet Protocol address (or IP Address). That is statement made in Belgium by the data privacy regulators of the European Union. The European laws differ in the degree of classification of information, but for the most part are consistent on the type of safeguards that are necessary for sensitive information.

This statement has been reported and published in the New York Times, and several others (though most seem to simply duplicate the same general facts). Take care and read the article at the New York Times, and be sure to include this update in your companies information intelligence efforts.

In addition to the inclusion of government mandates an important addition to the organization’s control practices is to identify and coordinate business intellectual property (IP). As not all information classification and safeguards should be dependent upon government mandates to ensure business agility and longevity.

Best regards,

James DeLuccia

Tags: Human Resources · Monitoring and Performance Reviews · Policy and Procedures · Risk Awareness · Technology Intelligence

0 responses so far ↓

  • There are no comments yet...Kick things off by filling out the form below.

Leave a Comment