in

This Blog

Syndication

Tags

News

AlertBoot offers a cloud-based full disk encryption and mobile device security service for companies of any size who want a scalable and easy-to-deploy solution. Centrally managed through a web based console, AlertBoot offers mobile device management, mobile antivirus, remote wipe & lock, device auditing, USB drive and hard disk encryption managed services.

Archives

AlertBoot Endpoint Security

AlertBoot offers a cloud-based full disk encryption and mobile device security service for companies of any size who want a scalable and easy-to-deploy solution. Centrally managed through a web based console, AlertBoot offers mobile device management, mobile antivirus, remote wipe & lock, device auditing, USB drive and hard disk encryption managed services.

Cost Of A Data Breach? How About 20 Years Of FTC Supervision?

The holidays finally gave me the chance to read the Rite Aid decision and court order.  If you'll recall, Rite Aid had settled with the FTC on charges that it had failed to protect sensitive financial, medical, and health information.

After a public comment period, the settlement was approved.  Nothing out of the ordinary, really.  Essentially, Rite Aid promises to protect the data it previously failed to do so.  Plus, it promises to create and document security procedures, educate employees, find someone accountable for information security, send progress and updated reports to the FTC, etc.

Again, nothing out of the ordinary.  Except for this:

This order will terminate on November 12, 2030, or twenty (20) years from the most recent date that the United States or the Federal Trade Commission files a complaint (with or without an accompanying consent decree) in federal court alleging any violation of the order, whichever comes later. [my emphasis]

This could very well be the ultimate cost of a data breach: having the FTC breathing down your neck for 20 years.

(As always, I've got to let you know I'm not a lawyer, so I may be swinging blindly here.)


Related Articles and Sites:
http://www.ftc.gov/os/caselist/0723121/101122riteaiddo.pdf

 
<Previous Next>

Data Encryption On Tapes And Other Media When FedEx'ing Stuff: If They Can Lose Radioactive Rods...

Data Encryption Ransomware Making The Rounds, Asking for $120

Comments

No Comments

About sang_lee

Sang Lee is a Senior Account Manager and Security Analyst with AlertBoot, Inc., the leading provider of managed endpoint security services, based in Las Vegas, NV. Mr. Lee helps with the deployment and ongoing support of the AlertBoot disk encryption managed service. Prior to working at AlertBoot, Mr. Lee served in the South Korean Navy. He holds both a B.S. and an M.S. from Tufts University in Medford, Massachusetts, U.S.A.