Subscribe to Entrepreneur for $5
Subscribe

Security Breach?

New laws could change how you handle customer info.

By
This story appears in the October 2005 issue of Entrepreneur. Subscribe »

Data security is a high-profile topic these days. After big-name breaches involving companies like Bank of America, Choice-Point, LexisNexis and MasterCard, a new push has begun for legislation on both the state and federal levels to deal with the issue. Dorsey Morrow, general counsel for the International Information Systems Security Certification Consortium, says businesses large and small should take heed. "The proposed federal laws will apply to anyone who collects confidential or personal information from consumers," says Morrow.

Morrow sees a confluence of events that have brought the issue of data security to the fore, including a lack of adequate security, a lack of industry standards and increased interest from criminals. Besides a slew of different bills winding their way through Congress, many states have bills of their own either enacted or under consideration. Most take after the seminal 2003 California data security law, which requires California customers to be notified if their unencrypted personal information is compromised.

Continue reading this article -- and everything on Entrepreneur!

Become a member to get unlimited access and support the voices you want to hear more from. Get full access to Entrepreneur for just $5!

3 months free with code ZENDESK

Presented by zendesk

3 months free with code ZENDESK