New incident response plan available for free download.Most organizations have some kind of crisis communications Crisis communications are generally considered a sub-specialty of the public relations profession that is designed to protect and defend an individual, company, or organization facing a public challenge to its reputation. plan that addresses natural or man-made disasters man-made disaster Technological disaster Public health An event in which a significant number of people are injured or die as a result of human devices or activities, unrelated to conflicts, and attributed to operator error–eg, Exxon Valdez , but these plans may not completely speak to more sensitive, personal issues like identity theft and information security. If a break of personal information occulted oc·cult adj. 1. Of, relating to, or dealing with supernatural influences, agencies, or phenomena. 2. Beyond the realm of human comprehension; inscrutable. 3. in your organization, are you equipped to effectively handle damage control for your clients and customers? Maintaining the privacy and protection of customers' and employees' personal information is a risk management issue for all organizations-and a responsibility that all CPA (Computer Press Association, Landing, NJ) An earlier membership organization founded in 1983 that promoted excellence in computer journalism. Its annual awards honored outstanding examples in print, broadcast and electronic media. The CPA disbanded in 2000. practitioners must share in the business marketplace. To help members manage this process, the AICPA AICPA See American Institute of Certified Public Accountants (AICPA). developed an Incident Response Plan available for download at www.aicpa.org/innovation/baas/ewp/incident_responseplan.asp. The plan can be used to help design, develop or adapt your own plan and better prepare you for handling a breach of personal information within your organization. Research continues to show that consumers have widespread distrust of many organizational business practices, including how companies collect, use and retain personal information. In the online community, for example, a Consumer WebWatch telephone survey of 1,500 U.S. Internet users Internet user n → internauta m/f Internet user Internet n → internaute m/f featured on Privacy & American Business (www.pandab.org) reported that less than one third (29%) of participants trusted Web sites that sell products or services. And, just 33% trust Web sites that provide advice about such purchases or services. The Incident Response Plan is a practical template and guide that illustrates what a plan may contain. It is designed to be customized by the user to maximize effectiveness. Consistent with this effort, the AICPA and the Canadian Institute of Chartered Accountants The Canadian Institute of Chartered Accountants (CICA) is the umbrella body for the Chartered Accountant profession in Canada and Bermuda. Membership of the CICA totals 70,000 Chartered Accountants and 8,500 students. recently introduced the AICPA/CICA Privacy Framework for protecting personal information. The framework can be used by CPAs/CAs (in industry and public practice) to guide and assist the organizations they serve in implementing good privacy programs. It incorporates concepts from significant domestic and international privacy laws, regulations and guidelines. You can download the framework at www.aicpa.org/privacy. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion