TRUSTe has issued a new set of data security guidelines to help companies evaluate new or existing data security policies. The security guidelines lead companies through a comprehensive list of data-security issues, recommending policies based on factors such as company size and the type of data handled. They are designed for TRUSTe members and other organizations committed to responsible handling of private information.

The expanded guidelines now include best practices and other resources for security-breach response planning, such as examples of effective consumer-breach notices and links to state breach-notification laws. The new version also extends the guidelines to address wireless/mobile technologies and Web applications.

These new guidelines reflect TRUSTe’s response to several factors since the first version was released in April 2005, including new legislative efforts and contributions from experts such as California’s Office of Privacy Protection, Ernst & Young, ChoicePoint, Watchfire, and the Ponemon Institute.

The full guidelines are available, at no charge, at www.truste.org/about/securityguidelines.php.

 

Wiley Rein LLP