Information Risk

Employee Data Security Complaint Supports Whistleblower Retaliation Claim

By Joseph J. Lazzarotti & Jason C. Gavejian on March 17, 2010

Posted in Identity Theft, Information Risk, Workplace Privacy

Employees’ increasing sensitivity to data privacy and security, and widely accepted public policy to protect personal data maintained by businesses, require employers to respond meaningfully to employee data privacy and security complaints or risk whistle blower claims of retaliation.

The U.S. District Court for the District of New Jersey recently held that an employee who voiced concerns regarding his employer’s handling of data security before he was fired may proceed to trial under the New Jersey Conscientious Employee Protection Act (“CEPA”) on the ground that he was engaged in protected whistle blowing activity under CEPA. This is one of the first decisions linking a NJ CEPA or similar claim and data security concerns, and is in line with increased efforts by both the federal and state governments to protect employee data.Continue Reading Employee Data Security Complaint Supports Whistleblower Retaliation Claim

WISPs Beyond Massachusetts

By Joseph J. Lazzarotti on March 17, 2010

Posted in Data Security, Information Risk, Written Information Security Program

Over the past few months, many businesses, particularly in the Northeast Region, have been focusing on creating a written information security program (WISP) to comply with Massachusetts identity theft regulations that went into effect March 1, 2010. For many, this has been a significant effort, reaching most, if not all, parts of their organizations. However…

“Cyber-Insurance” – Pushing Businesses to Protect Against the Next Data Breach?

By Joseph J. Lazzarotti on February 13, 2010

Posted in Information Risk, Written Information Security Program

It’s been around for a while, but could new products in the “cyber-insurance” market help companies focus on this emerging threat known as “information risk”?

The National Journal reports that for many companies online security is not a priority. Tom Risen’s article cites to a Verizon study conducted between 2004 and 2008 (pdf) that determined…

Data Breach Affects Climate Change Debate

By Joseph J. Lazzarotti on November 24, 2009

Posted in Data Security, Information Risk, Written Information Security Program

Based on recent events, the University of East Anglia likely will agree that data privacy and security requires a comprehensive approach, as data breaches are not limited to incidents involving personal information and identity theft. In fact, the effects of a breach to an organization’s information systems involving confidential company information can be far worse on the…

Workplace Privacy, Data Management & Security Report

Information Risk

Employee Data Security Complaint Supports Whistleblower Retaliation Claim

“Cyber-Insurance” – Pushing Businesses to Protect Against the Next Data Breach?

Data Breach Affects Climate Change Debate

Jackson Lewis

About Jackson Lewis