Privacy Compliance Consulting provides the following core services.
1. Design and implementation of Information Security Programs.
ISPs are designed to comply with state and federal data safeguarding requirements, including the FTC's Red Flags rule, and any unique issues raised by contractual language governing your business. The components of the process are described under Design Process, including the level of your involvement in each step.
2. Consulting Services.
PCC provides consulting services on privacy and state and federal data safeguarding issues on an hourly basis or by project quote. These services can assist you in determining the extent of your business exposure to data safeguarding risks and other privacy requirements. Services available include all functions performed by a Chief Privacy Officer, including compliance assessment of existing data safeguards. PCC does not provide legal advice, which must be obtained from an attorney licensed in your state of residence.
PCC is prepared to provide training on a wide variety of privacy topics, such as identity theft, data safeguarding, password management, encryption and data breach. Training can be conducted in person or via electronic means utilizing adobe-based presentations.
4. Annual Audits
Changes in business practices, such as the addition of new programs and processes, and changes in state and federal laws and regulations, may make your existing ISP out of date and expose your business to additional legal risk.
5. Speaking Engagements
I am available to speak to groups interested in privacy and data safeguarding issues.