Developing Effective Information Security Programs

For many years, financial institutions and other entities that collect personal information focused on privacy as an emerging legal doctrine presenting compliance challenges and an array of business implications. These issues, while still important and subject to ongoing debate and tinkering, have become, for many financial institutions, an automatic component of ongoing business activities. Now, with all of the attention focused on security of customer information driven by the recent flood of news stories concerning security breaches in numerous industries, privacy's ugly stepchild — the security of consumer information — has moved to the forefront of concern, both for financial institutions and the various entities that regulate and oversee them. News stories reporting security breaches are an almost daily occurrence. New legislation is being introduced almost constantly, at both the state and national level. While financial institutions already face a raft of security-related compliance obligations, including the Gramm-Leach-Bliley Act and others, financial institutions and their important business partners have been a focus of many of the most highly publicized breaches.

39 minute readSeptember 20, 2005 at 05:20 PM
By
Kirk J. Nahra
Developing Effective Information Security Programs

For many years, financial institutions and other entities that collect personal information focused on privacy as an emerging legal doctrine presenting compliance challenges and an array of business implications. These

This premium content is locked for LawJournalNewsletters subscribers only

ENJOY UNLIMITED ACCESS TO THE SINGLE SOURCE OF OBJECTIVE LEGAL ANALYSIS, PRACTICAL INSIGHTS, AND NEWS IN LawJournalNewsletters

  • Stay current on the latest information, rulings, regulations, and trends
  • Includes practical, must-have information on copyrights, royalties, AI, and more
  • Tap into expert guidance from top entertainment lawyers and experts
Subscribe Now

Already have an account? Sign In Now

For enterprise-wide or corporate access, please contact Customer Service at [email protected] or call 1-877-256-2473.

NOT FOR REPRINT

© 2026 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.

Continue Reading

Landlord & Tenant Law

Letter Agreement Between Landlord and Tenant Did Not Extinguish GuarantyTreble Damage Award Upheld; Landlord Failed to Establish Overcharge Was Not WillfulDenying Access to Landlord Constituted Breach Entitling Landlord to PossessionTenant Entitled to Yellowstone Injunction With Respect to Taxes and Sewer Charges

March 01, 2026

New York’s New AI Laws for Posthumous Right of Publicity and for Advertising Transparency

New York is one of the first states to adopt laws to regulate artificial intelligence use in advertising and to strengthen post-mortem publicity rights regarding AI-generated replicas and “synthetic performers.” Given the state’s role as a bellwether for consumer-protection and advertising regulation, these new laws, combined with the state’s broader AI legislative framework, represent a shift toward transparency, consent and accountability.

March 01, 2026

State Age Verification Mandates Could Redefine COPPA Risk for General Audience Apps

State app store age verification regimes do more than reallocate responsibility between platforms and developers. They create a new data supply chain for age knowledge, one that can move COPPA questions from “do we ask age?” to “what do we do when the platform tells us?” The teams that handle this best will treat platform age signals as sensitive compliance inputs: minimize them, tightly control where they flow, and design product behavior so that minors do not trigger unnecessary collection or disclosure.

March 01, 2026

The Power of One: How Leading Firms Are Rethinking Revenue Operations

The firms leading right now chose to ask what would become possible if they managed the entire revenue lifecycle — from invoice generation to cash receipt — in one place, and what AI could actually accomplish with complete data instead of partial feeds. That is the Power of One.

March 01, 2026

Using AI Without Waiving Privilege: Lessons from United States v. Heppner

A recent decision from the U.S. District Court for the Southern District of New York (SDNY), United States v. Heppner, has generated outsized commentary suggesting that the use of generative AI tools may jeopardize attorney-client privilege. A closer reading shows something far less dramatic.

March 01, 2026