Get Adobe Flash player

Privacy Management

Innovative-CSi assists organizations in the development and implementation of an environment where both privacy and security can be achieved and integrated in your business culture. Our consultants focus on protecting the Personal Identifiable Information (PII) of the customers, business partners and employees. The Privacy Management service identifies your current practices around privacy of sensitive data to reduce the risk and establish safeguards that address your overall privacy plan. Innovative-CSi addresses the compliance of privacy by ensuring you are maintaining the right controls around how sensitive data is collected, how the data is used, who has access, how it is maintained, and the protection when it is transmitted and stored.


Innovative-CSi's consultants are certified in Privacy, holding the Certified Information Privacy Professional (CIPP) credential, to ensure the success of your compliance. Along with the CIPP credential, Innovative-CSi relies on its expertise in our other core security services to assist in the privacy compliance in Information Security Risk Management Services which covers organizations in risk assessments, testing, planning & development, training and employee awareness, and continuous improvement of your security plan.

Privacy Development - Data Privacy & Security

Innovative-CSi consultants assist organizations on the development and implementation of a Security Plan that addresses privacy of data that controls methods of accessing, collecting, storing, using, transmitting and protecting personal identifiable information (PII). Our purpose is to ensure your organization is protecting the confidentiality of sensitive data, integrity and availability.  Innovtive-CSi addresses the security of privacy by developing overall security plans to combat both internal and external risks that organizations face in their industry.


How Innovative-CSi Attacks Privacy and Security


Administrative
 Technical
 Physical
  • Addressing the non-technical issues
  • Impact analysis and Continuous Assessments
  • Establishing privacy controls on PII & classification of data
  • Establishing a security culture from the top-down
  • Addressing:
    • Identity Theft
    • Data Security
    • Data Privacy
    • Consumer Privacy
    • Outsourcing Protections
  • Testing of your devices, technology and applications from Data Leakage
  • Controls on remote access, password, authentication, wireless, network vulnerabilities, encryption, etc.
  • Fraudulent Attacks both internal & external
  • Selection of the right technology with cost-benefits to make the technology work for your environment
  • Protection of your physical environment from social engineering
  • Addressing your security from the perimeter to the network
  • Physical Data Leakage in your organization and satellite office environment

Privacy Management Program


Establishing Trust, Ethics & Security

  • Privacy Assessment
    • Identify the privacy gaps, business impacts, threats for both internal and external, risks, assets and scope to develop an overall privacy plan.  
  • Privacy Planning and Development
    • Development of the privacy scope, establish privacy controls on both technical and non-technical.
  • Implementation of Privacy Plan
    • Creating effective technical, physical and administrative plans that address the legal requirements of state and federal regulations.
  • Continuous Improvement
    • Review of the privacy plan on privacy through auditing and assessments both the technology and non-technical.
    • Privacy monitoring, whenever change occurs or threats emerge to consistently protect the confidentiality, integrity and availability of your data.
  • Privacy Training
    • Continuous Awareness session to build the privacy culture and address all owners, employees, and contractors ensuring awareness and protection in your business environment.

Addressing Privacy Regulations in:
 
  • Gramm-Leach Bliley
  • HIPAA
  • Family Educational Rights and Privacy (FERPA)
  • Sarbanes-Oxley Act (SOX)
  • Cross Border Compliance
  • Payment Card Industry (PCI)
  • State Breach Notification Laws
  • Federal Trade Comm. Act (FTC)
    • FACTA
    • COPPA
    • Red Flag Rules

Designed by Innovative Corporate Solutions, Inc. (c) 2011 All rights reserved.