Like this article? PLEASE +1 it!

Are You in Compliance?

Article Overview: It sometimes seems as though we spend way too many non-productive work day hours, protecting ourselves from new government rules and regulations. As frustrating as this may be, I encourage you to comply with government "do and don't" directives. And, as with most distasteful tasks, I suggest you tackle these directives in bite-sized pieces.

Free Download - What's An Opinion, Anyway? By Marijo McCarthy

Are You in Compliance?

It sometimes seems as though we spend way too many non-productive work day hours, protecting ourselves from new government rules and regulations.

As frustrating as this may be, I encourage you to comply with government "do and don't" directives. And, as with most distasteful tasks, I suggest you tackle these directives in bite-sized pieces.

These days, for example, I ask every client and colleague how they are doing on their WISP … that's right, their government-mandated Written Information Security Program which all business owners are required to have, effective March 1, 2010.

If you are still working on yours (or haven't even begun), don't despair … yet. Go about it one step at a time and, before you know it, you will have a completed WISP.

Start with these four simple but important steps:

Determine if your company obtains Personal Information during the course of doing business with employees, customers or vendors. Remember that here in the Commonwealth of Massachusetts, the definition of Personal Information is a resident's name (first and last name or first initial and last name) combined with one or more of the following:
1. a social security number; or
2. a driver's license or state-issued ID card number; or
3. a financial account number, or credit or debit card number.
If your answer is "No," say "Good Night Gracie" and sleep well! If your answer is "Yes," read on…

Choose someone (that might be you in a small business) to maintain the Security Program.

Identify and assess the inside and outside risks to data security. Do an actual physical walk through of your office or plant with a clipboard in hand and locate where Personal Information is currently kept. Who has access? How centralized is the information? What format is it in? You will be amazed at what you discover when you begin the physical survey!

Evaluate and improve the current security and security policies on your premises. For example, when an employee leaves, do you immediately cut off that departing employee's physical and on-line access to your computers? Do you send Personal Information over the internet and, if so, is it encrypted? Is there a lock on the filing cabinet which contains employee personnel files?

When it comes to your WISP, identify the risks; assess the possibility of damage based upon those risks; evaluate your current protection; and design and implement a WISP that provides the protection you need.

And remember, as with most things, small business owners can and should keep it simple, reasonable and practical!

Related Articles

SME's - a link between funding and a compliance model

RISKY BUSINESS

SME's - a solution for Africa

Compliance smells like money.

SME's - regulatory compliance - is it an issue

Talent

Health Benefits for Dependent Children

Governance in the SME Sector (including NFPs) – A Waste of Time?

Compliance Issues Threaten Internships

P3 Compliance and Constructing Policies That Hold Up in Court

ICE Launches Workplace Immigration Crackdown

Be a No Bully Manager

Training Employees in a Tight Economy

Are you anxious about using social media in your business?

The Role of the Franchise Compliance Coordinator

OFCCP and EEOC Compliance

Compliance: Why Does Your Website Need a Phone Number?

Risk Management for Law Firms

Proactive risk management & compliance

Strict compliance in letters of credit transactions

Home > Legal > Marijo McCarthy > Are You in Compliance > Google +

Article Tags: compliance, data security, government rules, personal information

About the Author: Marijo McCarthy
RSS for Marijo's articles - Visit Marijo's website

Marijo McCarthy is principal of Widett and McCarthy, a Boston-area law firm that helps small business owners grow their businesses with pragmatic legal advice, mentoring and a solid team of professional advisors.

Click here to visit Marijo's website

More from Marijo McCarthy

Contracts Contracts Contracts Read Em Well

Myths and Mysteries I Thought I Couldnt be Sued Personally if I Formed a Corporation

Whats An Opinion Anyway

Handle With Care Employee Personnel Records

Contract War Stories from the Trenches

Related Forum Posts

Recommended Article for You close

SME's - a link between funding and a compliance model

Share this article with your friends. Fund someone's dream.

Leave a comment below or share on the left and you'll help support entrepreneurs in Africa through our partnership with Kiva. Over $50,000 raised and counting - Please keep sharing! Learn more.

Featured Article

Starting From Scratch: 10 Steps To Launch A Content Marketing Strategy

by: Jeff Ogden, B2B Lead Generation Strategies

Trending Articles

Build Your List with Joint Venture Giveaway Events

May 2012 Top 100 Social Media Experts to Follow on Twitter

What to measure to be phenomenally successful in business

10 mistakes of media relations

Making Money Blogging Can Be Tons Of Fun

Newsletter

Get advice & tips from famous business
owners, new articles by entrepreneur
experts, my latest website updates, &
special sneak peaks at what's to come!

Popular Articles

Executives and Elevators Perfecting That Pitch

What I Really Want Is...

Maximum Impact Restaurant Greening

Suggestions

Email us your ideas on how to make our
website more valuable! Thank you Sharon
from Toronto Salsa Lessons / Classes for
your suggestions to make the newsletter
look like the website and profile younger
entrepreneurs like Jennifer Lopez.


Name:
Email: