Newsletters Welcome, Guest Log In | Register
Blogs:

Lora Bentley

Governance and Risk

From regulatory compliance to corporate governance structure, everyone is involved

About this Blogger RSS

< Previous | Next >

Subscribe

Sign up now and get the best business technology insights direct to your inbox.

  • Daily Edge
  • CTO Edge Update
  • Business Tools & Templates
  • Aligning IT & Business Goals
  • Maximizing IT Investments

0

Data Protection, on an International Scale

Posted by Lora Bentley Jul 27, 2009 5:00:48 PM

Data protection in the U.S. is different from data protection in the UK.  And because every government does things differently, it should not come as a surprise that data protection in other countries, like Germany, looks different than in either the UK or the U.S. But as law.com pointed out on Friday, it's where those different laws overlap and contradict each other that a lot of global companies trip up. (I've made similar observations before in the e-discovery context.)

 

Writer Erik Sherman says determining a "common denominator" that will keep all of the regulators happy is not easy to do. Though Lyndon Group's Ruth Horazcko says the first step to data protection is deciding where the data resides, and thus, which law applies, the answer is not always evident. Hunton & Williams privacy and information management practice head Lisa Sotto points out that even countries in the same region will have different requirements. According to law.com, "They can differ on what can count as user permission to use data, what security requirements are necessary and even how long the information can be retained."

 

The same is true in the U.S. Outside of the data breach notification law that is part of the HITECH portion of the American Recovery and Reinvestment Act, there are no broad federal data protection laws, but various states have taken stabs at legislating the issue. And each of the state laws is a little bit different.

 

So how should companies go about crafting a data protection compliance plan? Adam Smith, deputy legal counsel at IT infrastructure services provider Terremark Worldwide says, "I don't think anyone in the IT department is thinking, 'We're in Amsterdam and have capacity in Germany, so let's move this over there and move some to the U.S.' [and then consider the legal issues]."

 

And if the companies don't want government authorities breathing down their necks, so to speak, to enforce data protection requirements, Smith says the legal department has to "insert [itself] in a risk management role."

 

I'm not sure IT will appreciate legal "inserting itself" into IT processes if it's not handled properly, but if it's done in a spirit of cooperation and teamwork... After all, legal and IT are gettng better at working together, it seems.

Related Content

Add a comment Leave a comment on this blog post.

There are no comments on this post

Related Content

Browse

Topic: Data Management

Data management involves a variety of tasks involved with the full data lifecycle

Blog: Dismantling of Regulations Hurts IT Governance

Article: The Cloud Is Your Friend: Answers to Misconceptions of Cloud Computing

White Paper: Data Privacy Best Practices: Time to Take Action!

Related Topics

Business Communications, Business Culture, Global Markets, Legislation and Regulation

Featured White Papers

Browse

Lowering Your IT Costs with Oracle Database 11g Release 2

This white paper identifies the key capabilities a database management solution needs to successfully deliver more information with higher quality of service, make more efficient use of IT budgets, and reduce the risk of change in data centers.

Oracle Database 11g for Data Warehousing and Business Intelligence

Want to learn how to get more from your data warehousing investment? This white paper discusses the key features and technologies by which this innovative business intelligence and data warehouse system can integrate information, perform fast queries, and scale to very large data volumes, all with best-of-breed data analytics.

Resource Centers

Browse

Data Deduplication

Data manipulation strategies that make data stores more manageable and reduce the need for storage capacity and its associated costs.

Featured Whitepapers

Minimizing the Impact of Economic Difficulties by Migrating from DAS to Networked Storage

Data Warehousing for Business Intelligence

Comprehensive storage solutions for better data access and retrieval, leading to better-informed business decisions.

Featured Whitepapers

Maximizing Operational Efficiency with Oracle Business Intelligence (BI) Applications

Data Management

Data management tips and techniques that insure ease of access, comprehensive security and absolute privacy for your invaluable company information.

Featured Whitepapers

Lowering Your IT Costs with Oracle Database 11g Release 2

Information Management

Tools, tips and solutions to help you manage your data more efficiently to tackle today's challenging economic environment.

Featured Whitepapers

From Business Intelligence to Business Optimization

Premium Tools

Browse

All About Reducing Your IT Costs

Looking to cut costs? Use this research-driven Excel tool to pinpoint which IT cost reduction measures best fit your needs.

Learn more >

The IT Service Catalog Management Toolkit

Bridge the it-business gap once and for all! A well documented IT services catalog is the conduit for IT services to the rest of the company.

Learn more >