|By PR Newswire||
|August 21, 2014 04:57 PM EDT||
TAMPA, Fla., Aug. 21, 2014 /PRNewswire/ -- A legislative survey by 360 Advanced P.A. shows the U.S. Congress and some states are considering legislation that would require organizations managing databases of personal information to put in place safeguards against hacking – or face significant fines after a breach.
In its analysis of data assembled by the National Conference of State Legislatures (www.ncsl.org) and www.govtrack.us, 360 Advanced concluded that with ever-increasing numbers of data breaches, lawmakers are determined to hold accountable firms managing personal information.
"Our analysis of pending legislation requiring data security safeguards and stiff penalties for non-compliance sends a chill across an entire industry that is already moving swiftly toward voluntary compliance on numerous levels," said Dan Collins, President of 360 Advanced, P.A. (www.360advanced.com), a national, multi-service, licensed Certified Public Accountant (CPA) and Qualified Security Assessor (QSA) firm that specializes in integrated compliance solutions for service providers. "It is one thing for state and federal legislators to strengthen data breach reporting requirements, which is indeed appropriate, but it's another matter entirely when they consider legislation that would punish service providers for being hacked."
In the U.S. Congress, three pending bills, S1976, S2378 and HR4711 all outline the responsibilities of personal information database service organizations to take precautions to protect personal data from being hacked, and provide for severe penalties of up to $5 million for failure to comply.
The states of California, Florida, Iowa, Kentucky, Louisiana, Minnesota, and New Mexico are considering legislation mandating steps that must be taken to protect consumer information, with penalties for non-compliance, while 12 other states are toughening data breach reporting requirements. Visit http://www.ncsl.org/research/telecommunications-and-information-technology/overview-security-breaches.aspx for more information.
ABOUT 360 ADVANCED PA
360 Advanced's services are provided, but not limited to, the following industries: Hosted and Managed IT, Data Center and Colocation, Software as a Service (SAAS), Security and, Development, Healthcare, Financial Services, Insurance, HR | Payroll | PEO, Legal and Collections, Bulk Mail Printing and Distribution, and Business Process Outsourcing.
Services provided by 360 Advanced include SOC 1: SSAE 16 (SAS 70); SOC 2; SOC 3; PCI DSS, Experian E13PA; HIPAA Security/HITECH; ISO 27001, 2700; BITS shared Assessment; Microsoft Vendor Policy; Security Consulting.
SOURCE 360 Advanced P.A.
Dec. 28, 2014 07:00 PM EST Reads: 2,121
Dec. 28, 2014 07:00 PM EST Reads: 1,911
Dec. 28, 2014 07:00 PM EST Reads: 2,711
Dec. 28, 2014 06:45 PM EST Reads: 517
Dec. 28, 2014 06:00 PM EST Reads: 2,043
Dec. 28, 2014 05:45 PM EST Reads: 1,797
Dec. 28, 2014 05:00 PM EST Reads: 2,291
Dec. 28, 2014 05:00 PM EST Reads: 2,306
Dec. 28, 2014 04:00 PM EST Reads: 2,158
Dec. 28, 2014 03:30 PM EST Reads: 2,617
Dec. 28, 2014 03:00 PM EST Reads: 1,866
Dec. 28, 2014 03:00 PM EST Reads: 2,188
Dec. 28, 2014 02:00 PM EST Reads: 1,860
Dec. 28, 2014 12:30 PM EST Reads: 2,016
The 3rd International Internet of @ThingsExpo, co-located with the 16th International Cloud Expo - to be held June 9-11, 2015, at the Javits Center in New York City, NY - announces that its Call for Papers is now open. The Internet of Things (IoT) is the biggest idea since the creation of the Worldwide Web more than 20 years ago.
Dec. 28, 2014 12:00 PM EST Reads: 7,210