Скачать презентацию The New New Thing in Privacy — Five Скачать презентацию The New New Thing in Privacy — Five

c15cb2a54c2a674fafe47c6fabdd1508.ppt

  • Количество слайдов: 17

The New, New Thing in Privacy -- Five Things You Should Consider Now* Practitioner The New, New Thing in Privacy -- Five Things You Should Consider Now* Practitioner Roundtable at the Harvard Privacy Summer Symposium August 20, 2008 *connectedthinking Pw. C

Panelists Lael Bellamy, Chief Counsel - IT, IP & Privacy ING Americas (formerly with Panelists Lael Bellamy, Chief Counsel - IT, IP & Privacy ING Americas (formerly with The Home Depot) Ann Waldo, PLLC Pw. C Ann Waldo, Esq. , Principal, Ann Waldo PLLC (formerly with Lenovo and Hoffmann-La Roche) James Koenig, CIPP, Practice Leader, Privacy & Identity Theft, Pricewaterhouse. Coopers LLP, Former General Counsel, International Association of Privacy Professionals (Moderator) C Pricewaterhouse. Coopers 2

Agenda The New, New Thing in Privacy -- Five Things You Should Consider Now Agenda The New, New Thing in Privacy -- Five Things You Should Consider Now Pricewaterhouse. Coopers 3

Countdown Pricewaterhouse. Coopers 4 Countdown Pricewaterhouse. Coopers 4

Countdown 5. Impact on Privacy Associated with a Slowdown in the Economy Pricewaterhouse. Coopers Countdown 5. Impact on Privacy Associated with a Slowdown in the Economy Pricewaterhouse. Coopers 5

What Directs and Trends in Down Economy • Are Privacy and Business at a What Directs and Trends in Down Economy • Are Privacy and Business at a crossroad? • Business goals versus maintenance of privacy. Pricewaterhouse. Coopers 6

Countdown 5. Impact on Privacy Associated with a Slowdown in the Economy 4. Global Countdown 5. Impact on Privacy Associated with a Slowdown in the Economy 4. Global Expansion for New Markets, Operating Models Pricewaterhouse. Coopers 7

Global Expansion for Business, New Markets & Operations Key Countries with Privacy Laws Argentina, Global Expansion for Business, New Markets & Operations Key Countries with Privacy Laws Argentina, Armenia, Australia, Austria, Bahrain, Belgium, Botswana, Brazil, Bulgaria, Cameroon, Canada - Northwest Territories and Nunavut, Chile, Cote d'Ivoire, Croatia, Cyprus, Czech Republic, Denmark, Dubai, Egypt, Ethiopia, Finland, France, Germany, Ghana, Greece, Hong Kong, Hungary, Iceland, Ireland, Israel, Italy, Japan, Jordan, Kazakhstan, Kenya, Kuwait, Lebanon, Lithuania, Mauritius, Mexico, Morocco, Netherlands, New Zealand, Nigeria, Norway, Peru, Poland, Portugal, Qatar, Romania, Russia, Saudi Arabia, Singapore, South Africa, South Korea, Spain, Sweden, Switzerland, Taiwan, Tanzania, Thailand, Tunisia, Turkey, Uganda, Ukraine, United Arab Emirates, United Kingdom, • Increasing in Number. The number and United States, Uzbekistan, Zambia diversity of subject matters and approaches has been increasing worldwide. © 2008 Pricewaterhouse. Coopers 8

Countdown 5. Impact on Privacy Associated with a Slowdown in the Economy 4. Global Countdown 5. Impact on Privacy Associated with a Slowdown in the Economy 4. Global Expansion for New Markets, Operating Models 3. New ID Theft Techniques Pricewaterhouse. Coopers 9

Identity Theft Has Become a Major Concern § Number one complaint to US FTC Identity Theft Has Become a Major Concern § Number one complaint to US FTC § Impacts 4. 6% of US per year § 2006 survey, companies reported ID Theft: § 10% globally § 9% in US § 19% in India § $50+ billion in global annual losses § 68. 2% obtained off-line § 50+% conducted by employees and contractors § Part-time and temporary workers three times more likely to commit Impact. Higher theft risks: SSN, Driver's License Number, Credit Card Number, Health Insurance ID Number Sources: (Javelin/BBB 1/06; Gartner 7/03; Experian-Gallup 8/05; FDIC 2/06; FTC 1/06; SMU 8/04) Pricewaterhouse. Coopers 10

Medical Identity Theft Victims -- In 2005, an estimated 250, 000 Americans were victims Medical Identity Theft Victims -- In 2005, an estimated 250, 000 Americans were victims of medical ID theft, a 334% increase over 2001 (versus a 297% increase for all identity theft). Profiles of Medical Identity Thieves • Individual desperately needing medical care • Health care professionals aiming to pad their income by filing fraudulent claims/diagnosis • Organized crime rings stealing medical records and doctor billing codes Monetizing Medical Identity Theft • Scheme. Medical ID numbers are exploited to fraudulently obtain health services or prescription drugs • Value of a Record. Health records fetch $20 to $60 on the black market (versus $50 to $100 for bank account records or 7 cents for stolen résumés) Pricewaterhouse. Coopers 11

Countdown 5. Impact on Privacy Associated with a Slowdown in the Economy 4. Global Countdown 5. Impact on Privacy Associated with a Slowdown in the Economy 4. Global Expansion for New Markets, Operating Models 3. New ID Theft Techniques 2. Health Care Information Breach Notifications and Issues of Mismanagement to Rise Pricewaterhouse. Coopers 12

Health Information – New Laws Driving Disclosures & Other Risks US State Security Breach Health Information – New Laws Driving Disclosures & Other Risks US State Security Breach Statutes. State laws in US require notifying consumers in the event of a breach or mishandling of personal data (i. e. , where an unauthorized third party is reasonably believed to have acquired unencrypted personal information). § More than 40 states and territories in the US passed laws through 2008. § California and Arkansas include health information. Privacy Laws Overview – Genetic Information Nondiscrimination Act (GINA) • Genetic Information is defined as: Results of genetic tests (individual and his/her family members) that provides information about an individual's family medical history (Family members include: Dependents, any first through fourthdegree relative of individual or individual's dependents, spouses, adopted children. • Key Provisions • Prohibits Discrimination • Restricts Acquisition (e. g. , request, require, or purchase) • Requires Confidentiality (e. g. , safeguards must be in place to ensure proper collection/maintenance as well as to protect files from unauthorized access). Pricewaterhouse. Coopers 13

Countdown 5. Impact on Privacy Associated with a Slowdown in the Economy 4. Global Countdown 5. Impact on Privacy Associated with a Slowdown in the Economy 4. Global Expansion for New Markets, Operating Models 3. New ID Theft Techniques 2. Health Care Information Breach Notifications and Issues of Mismanagement to Rise • Class Actions and Litigation in Privacy Pricewaterhouse. Coopers 14

Privacy Class Actions and Litigation (and Enforcements) Increased Regulator Focus on Data Protection Controls Privacy Class Actions and Litigation (and Enforcements) Increased Regulator Focus on Data Protection Controls • Damages Paid. In the last 3 years, over $375 million paid by companies in fines, penalties and class-action summaries. • Expensive Class Actions. Plaintiffs bar has used privacy as a new, fruitful area: - Recent settlements include: • More than $60 million paid by a Fortune 500 retailer for inappropriately sharing customer information. • $128 million reserved by another retailer in connection with a breach. • What is next? Pricewaterhouse. Coopers 15

Questions? Pricewaterhouse. Coopers 16 Questions? Pricewaterhouse. Coopers 16

© 2008 Pricewaterhouse. Coopers LLP. All rights reserved. © 2008 Pricewaterhouse. Coopers LLP. All rights reserved. "Pricewaterhouse. Coopers" refers to Pricewaterhouse. Coopers LLP (a Delaware limited liability partnership) or, as the context requires, other member firms of Pricewaterhouse. Coopers International Ltd. , each of which is a separate and independent legal entity. *connectedthinking is a trademark of Pricewaterhouse. Coopers LLP. Pw. C