The Federal Trade Commission, the Center on Law and Information Policy of Fordham Law School, the New York State Consumer Protection Board, and the New York City Department of Consumer Affairs will sponsor a free, full-day workshop in New York City on Wednesday, April 29, 2009. Other sponsors include the New York State Office of Cyber Security and Critical Infrastructure Coordination, the Better Business Bureau Serving Metropolitan New York, and the International Association of Privacy Professionals.
This workshop provides a comprehensive approach to help businesses prevent identity theft. Businesses must implement data security practices that deter identity thieves from obtaining personal information to open or access accounts. Businesses also must pay attention to telltale signs – or red flags – suggesting that thieves may be trying to use personal information that they already have acquired.
The workshop is free, and the public may attend the morning session, the afternoon session, or both. The workshop features business people, attorneys, government officials, privacy officers, and other experts, who will provide practical guidance for businesses of all sizes. The morning session, “Protecting Personal Information: Best Practices for Business,” focuses on how businesses can implement best practices for developing an appropriate data security program, and respond to data breaches and other privacy and security threats.
The FTC and the New York Consumer Protection Board will provide a brief overview of the business and legal reasons to address data security. Two panel discussions will follow:
- The first discussion addresses steps and strategies for developing a data security plan. Panelists include: Deborah Joslyn, Senior Manager, Privacy Team, Ernst & Young, LLP; Scott Lancaster, Director Information Security Group, Starwood Hotels & Resorts Worldwide, Inc.; JoAnn Stonier, Global Privacy and Data Usage Officer, MasterCard Worldwide; and Miriam Wugmeister, Morrison & Foerster.
- The second discussion addresses how to prepare for and respond to data breaches. Panelists include: James Jaeger, Director, Cyber Defense and Forensics, General Dynamics; Robert Novy, United States Secret Service, Electronic Crimes Task Force; Joel Reidenberg, Associate Chief Academic Officer and Associate Vice President for Academic Affairs, Fordham University; and Lisa Sotto, Hunton & Williams.
The afternoon session, “Fighting Fraud with the Red Flags Rule: Practical Guidance for Business,” addresses a new regulation that requires creditors and financial institutions to develop identity theft prevention programs for their covered accounts. The FTC will present a brief overview of the scope, structure, and requirements of the Red Flags Rule. The session’s panel will address the issues encountered by those who have developed a Red Flags Program. Panelists include: Michael Allen, Associate Counsel, Citizens Energy Group; Orrie Dinstein, Chief Privacy Leader and Senior IP Counsel, GE Capital; Laura Dishman, Privacy and AML Associate, Law & Compliance, TIAA-CREF; and Seth Gilbertson, Assistant Counsel, State University of New York.
Members of the New York Bar may earn five transitional or non-transitional professional practice New York State CLE credits for the event. Attendees seeking CLE credits must pay $75 for the five credits. A reduced rate of $55 is available for public interest attorneys and Fordham Law School alumni. The International Association of Privacy Professionals automatically will approve five Continuing Privacy Education credits for anyone in attendance who is a Certified Information Privacy Professional. Advance registration for the workshop and for CLE credits is available at http://law.fordham.edu/ftc.
Both sessions take place in Pope Auditorium on the Lincoln Center campus of Fordham University, 113 West 60th Street, New York, NY. On-site registration begins at 8:30 a.m. The first session starts at 9:30 a.m. The second session begins at 2:00 p.m.
As part of its business education program, the FTC has information to help businesses develop their own data security plans, including an online tutorial, a booklet, and a series of articles suitable for reprinting in print or electronic newsletters. All are available at www.ftc.gov/infosecurity. More information about data security, including New York State’s Business Privacy Guide, is available on the Consumer Protection Board’s Web site at www.nysconsumer.gov.
The FTC also has information about whether the Red Flags Rule applies to your business or organization, as well as practical tips on spotting the red flags of identity theft, and putting into place your written identity theft prevention program. Get more information at www.ftc.gov/redflagsrule.
The Federal Trade Commission works for consumers to prevent fraudulent, deceptive, and unfair business practices and to provide information to help spot, stop, and avoid them. To file a complaint in English or Spanish, visit the FTC’s online Complaint Assistant or call 1-877-FTC-HELP (1-877-382-4357). The FTC enters complaints into Consumer Sentinel, a secure, online database available to more than 1,500 civil and criminal law enforcement agencies in the U.S. and abroad. The FTC’s Web site provides free information on a variety of consumer topics.
(FYI data security)