The FTC recently released a business guide that summarizes compliance lessons learned from the more than 50 data security settlements to-date. Start with Security: A Guide for Business offers actionable data security tips based on real-life security incidents and subsequent law enforcement actions. Whether organizations are reading this brochure or are reading about a breach in the news, there are always “compliance nuggets,” as the FTC notes, that can be learned from.
The FTC has distilled 10 common-sense lessons from the settlements it has reached:
In addition to this guide, the FTC has amassed its growing resources on business security in a new microsite. This new landing page outlines case studies, reports, education, tutorials and up-to-date news as it relates to data security and FTC enforcement of data security incidents. As the FTC notes, its actions are based on the idea of “reasonableness,” where an organization’s data security measures must reasonably reflect the sensitivity and volume of data it holds, the size and complexity of its data operations, and the cost of available tools to improve security and reduce vulnerabilities.
At Absolute, we want to support your organization with technology solutions to make data protection easy. Solutions such as automated patch deployment with Absolute Manage and the persistent ability to monitor encryption status on the endpoint with Absolute Data & Device Security (DDS), are just some of the ways we can help. Learn more at Absolute.com