Article

Your Taxes: Is your data protected and secured?

Whether a conglomerate, mid-size enterprise or a small venture with a shoestring staff, if you’re in business, your data must be protected…but what sometimes gets lost in translation is the type of information that needs to be protected, specifically information mandated by federal and/or state statute.

Contact Us
< Back to Insights
Insights  <  Your Taxes: Is your data protected and secured?

Whether a conglomerate, mid-size enterprise or a small venture with a shoestring staff, if you’re in business, your data must be protected…but what sometimes gets lost in translation is the type of information that needs to be protected, specifically information mandated by federal and/or state statute.

This article was originally posted on The Patriot Ledger website and can be viewed here. 

Whether a conglomerate, mid-size enterprise or a small venture with a shoestring staff, if you’re in business, your data must be protected…but what sometimes gets lost in translation is the type of information that needs to be protected, specifically information mandated by federal and/or state statute.

So, what exactly is protected information? There exist a number of different standards and compliance regulations at the federal level, including HIPPA (Health Insurance Portability and Accountability Act), which requires the protection and confidential handling of protected health information, and the GLB (Gramm-Leach-Bliley) Act, which protects customers’ financial information. But even beyond these regulations, virtually every state has its own set of nuances relating to protected personal information, which can include an individual’s Social Security number, driver’s license number or state-issued identification card number, financial account number, credit or debit card number, passport, and military ID number, just to name a few. Other states are considering digital fingerprints, DNA, and retina scans in their definition of personal information as well.

For all businesses, understanding what protected information you hold within your company is critical. Many businesses don’t think they store any protected information, but upon closer look, they would realize that they do maintain some of these identifying factors.

Once you determine that you have this personal or protected information, it’s imperative to understand where it’s located, and who has access to it. Other important questions include how access is provided, and what controls have been put in place over that access, as well as who can copy or delete this info? Issues about access in particular are critical – for example, if someone in your business gets infected by malware, but they don’t have access to the protected information, this information will probably not be compromised and as a result you may not have been officially breached (another discussion for another day).

Continue the Conversation with Our Team
Get in touch with us.

Contact Us