https://www.cippguide.org Your Guide to the CIPP Sat, 05 Nov 2011 07:06:57 +0000 hourly 1 http://wordpress.org/?v=3.3.1 https://www.cippguide.org/2011/04/12/implementing-the-eu-e-privacy-directive-the-cookie-problem/comment-page-1/#comment-1344 Information Secuity Sat, 05 Nov 2011 07:06:57 +0000 https://www.cippguide.org/?p=2400#comment-1344 India has called for global coordination to ensure that internet continues to thrive without the fear of its misuse at the London Internatinal Cyber Conference that give the nature of the task and the fact that IT networks can be attacked from anywhere in the world. India has called for global coordination to ensure that internet continues to thrive without the fear of its misuse at the London Internatinal Cyber Conference that give the nature of the task and the fact that IT networks can be attacked from anywhere in the world.

]]> https://www.cippguide.org/2011/05/17/protecting-trade-secrets-the-sarbanes-oxley-act/comment-page-1/#comment-1327 Michael Cole Wed, 12 Oct 2011 12:22:50 +0000 https://www.cippguide.org/?p=2563#comment-1327 Extraordinarily educational bless you, I reckon your readers may very well want a great deal more stories like that maintain the excellent effort. Extraordinarily educational bless you, I reckon your readers may very well want a great deal more stories like that maintain the excellent effort.

]]> https://www.cippguide.org/2010/06/24/privacy-legislation-in-quebec/comment-page-1/#comment-1319 Otis Powers Thu, 29 Sep 2011 16:50:59 +0000 http://www.cippguide.com/?p=1907#comment-1319 I am responsible for EHS activities in a Quebec manufacturing site. Our corporate policy requires that any injury occuring at work be immediately reported to the direct supervisor and a report generated as to the injury incident with Human Resources for the purpose of determing a recordable or nonrecordable injury. The reports are kept confidential in the employees file to protect the employee and maintain a record in the event that future treatment may be need later on for an agravated type of injury, say a back problem. So then, the direct supervisor, who is responsible for the employee at work, will have knowledge only of the injury incident, his direct leader will have the same knowledge, the Human resource person will have knowedge of the injury incident as well as medical treatment beyond first aid and if the injury is recordable or not. HR and the injured employee will be the only ones having knowledge of medical treatment beyond first aid. Will this practice violate the privacy act? Thank you a quick response. Otis Powers I am responsible for EHS activities in a Quebec manufacturing site. Our corporate policy requires that any injury occuring at work be immediately reported to the direct supervisor and a report generated as to the injury incident with Human Resources for the purpose of determing a recordable or nonrecordable injury. The reports are kept confidential in the employees file to protect the employee and maintain a record in the event that future treatment may be need later on for an agravated type of injury, say a back problem.
So then, the direct supervisor, who is responsible for the employee at work, will have knowledge only of the injury incident, his direct leader will have the same knowledge, the Human resource person will have knowedge of the injury incident as well as medical treatment beyond first aid and if the injury is recordable or not. HR and the injured employee will be the only ones having knowledge of medical treatment beyond first aid. Will this practice violate the privacy act?
Thank you a quick response.
Otis Powers

]]> https://www.cippguide.org/2011/03/01/resisting-online-tracking-new-features-tools/comment-page-1/#comment-1253 Ash Mon, 20 Jun 2011 20:49:26 +0000 https://www.cippguide.org/?p=2449#comment-1253 Nice summary. I'm glad to see Abine up there; I use it for PrivacySuite. I'm a Firefox user myself, but because there was a lot of focus on Chrome in this article, they also make an anti-tracking extension called ChromeBlock: http://www.abine.com/more/chromeblock.php Nice summary. I’m glad to see Abine up there; I use it for PrivacySuite. I’m a Firefox user myself, but because there was a lot of focus on Chrome in this article, they also make an anti-tracking extension called ChromeBlock: http://www.abine.com/more/chromeblock.php

]]> https://www.cippguide.org/2010/12/28/the-red-flag-rule-delayed-enforcement-and-amendments/comment-page-1/#comment-1188 IDTheftReview Tue, 12 Apr 2011 08:00:57 +0000 https://www.cippguide.org/?p=2405#comment-1188 Prevention of identity theft should be a team work from individuals, companies as well as the government. Providing policies like this can be very useful especially in providing the public with information that may help them recognize and terminate possible identity theft. In that way, identity theft may shrink in terms of incidences. Prevention of identity theft should be a team work from individuals, companies as well as the government. Providing policies like this can be very useful especially in providing the public with information that may help them recognize and terminate possible identity theft. In that way, identity theft may shrink in terms of incidences.

]]> https://www.cippguide.org/2010/04/20/recommendations-for-identity-theft-related-data-breach-notification/comment-page-1/#comment-1187 IDTheftReview Tue, 12 Apr 2011 08:00:06 +0000 http://www.cippguide.org/?p=1443#comment-1187 Once breach of data occurs in a particular agency or company, it is imperative to implement necessary actions that will reduce the possibility of identity theft on their clients. Beforehand, any agency that has a collection of client’s personal information should be ready enough to face possible data breach. Since it can happen unexpectedly, the agency should be kind enough to assist their clients at risk in monitoring signs that may indicate identity theft. Once breach of data occurs in a particular agency or company, it is imperative to implement necessary actions that will reduce the possibility of identity theft on their clients. Beforehand, any agency that has a collection of client’s personal information should be ready enough to face possible data breach. Since it can happen unexpectedly, the agency should be kind enough to assist their clients at risk in monitoring signs that may indicate identity theft.

]]> https://www.cippguide.org/2010/01/25/health-information-portability-and-accountability-act-hipaa/comment-page-1/#comment-1183 Keep It In House Mon, 14 Mar 2011 00:24:22 +0000 http://www.cippguide.org/?p=1198#comment-1183 The care system is flawed like all systems. This situation would be best handled by following your administrative chain of command. Do report this error in judgment to a lawyer. That will only result in backfiring in your face. HR and Risk Management would be crawling down your back as short as your career there would probably be after that. I know whistle blowers protections are discreet but you get my point. The lawsuit would only create a worse situation for other employees as well as patients. The lawsuit would be huge and the funds would have to be compensated. Do you get my point? Report the issue to the next level in the chain of command if it still goes unnoticed every risk management program has discreet reporting available. If it is a small clinic your next step is the medical director. If that is who did the issue your next step the administration director. If that still is not working you can implement a strategic intervention with multiple employees. The care system is flawed like all systems. This situation would be best handled by following your administrative chain of command. Do report this error in judgment to a lawyer. That will only result in backfiring in your face. HR and Risk Management would be crawling down your back as short as your career there would probably be after that. I know whistle blowers protections are discreet but you get my point. The lawsuit would only create a worse situation for other employees as well as patients. The lawsuit would be huge and the funds would have to be compensated. Do you get my point? Report the issue to the next level in the chain of command if it still goes unnoticed every risk management program has discreet reporting available. If it is a small clinic your next step is the medical director. If that is who did the issue your next step the administration director. If that still is not working you can implement a strategic intervention with multiple employees.

]]> https://www.cippguide.org/2011/01/20/facebook%e2%80%99s-data-sharing-mistake/comment-page-1/#comment-1179 Monex Sun, 13 Feb 2011 11:46:19 +0000 https://www.cippguide.org/?p=2430#comment-1179 Please note that these permissions only provide access to a users address and mobile phone number not their friends addresses or mobile phone numbers the Sydney Morning Herald quoted Facebooks Jeff Bowen as saying.However Sophos security expert Cluley has raised doubts over the move.You have to ask yourself - is Facebook putting the safety of its 500 million users as a top priority with this move? he said.It wont take long for scammers to take advantage of this new facility to use for their own criminal ends.Cluley advised that users should take personal info such as home addresses and mobile numbers off their pages.You can imagine for instance that bad guys could set up a rogue app that collects mobile phone numbers and then uses that information for the purposes of SMS spamming or sells on the data to cold-calling companies he said. Please note that these permissions only provide access to a users address and mobile phone number not their friends addresses or mobile phone numbers the Sydney Morning Herald quoted Facebooks Jeff Bowen as saying.However Sophos security expert Cluley has raised doubts over the move.You have to ask yourself – is Facebook putting the safety of its 500 million users as a top priority with this move? he said.It wont take long for scammers to take advantage of this new facility to use for their own criminal ends.Cluley advised that users should take personal info such as home addresses and mobile numbers off their pages.You can imagine for instance that bad guys could set up a rogue app that collects mobile phone numbers and then uses that information for the purposes of SMS spamming or sells on the data to cold-calling companies he said.

]]> https://www.cippguide.org/2010/07/21/case-studies-now-available-in-the-gold-subscribers-section/comment-page-1/#comment-1104 System Admin Mon, 20 Sep 2010 18:27:36 +0000 http://www.cippguide.org/?p=2193#comment-1104 On the exams, there is only one "best" answer. On some of our older tests, we still have more than one answer as a philosophical "learning" experience. All of the newer exams are one answer, and we're updating the older ones as able. Btw, the printable tests are a little slower to update than the new engine exams... On the exams, there is only one “best” answer. On some of our older tests, we still have more than one answer as a philosophical “learning” experience. All of the newer exams are one answer, and we’re updating the older ones as able. Btw, the printable tests are a little slower to update than the new engine exams…

]]> https://www.cippguide.org/2010/07/21/case-studies-now-available-in-the-gold-subscribers-section/comment-page-1/#comment-1103 risaac Mon, 20 Sep 2010 17:33:27 +0000 http://www.cippguide.org/?p=2193#comment-1103 I just downloaded CIPP/G test prep CBK#1 and noticed in several instances that there appears to be two answers for questions that ask "Which is the best way...?" Can more than one answer be possible when the question infers one is most appropriate? Do some questions have more than one "right" answer?...ie #1, 2, 5,7,10, etc I just downloaded CIPP/G test prep CBK#1 and noticed in several instances that there appears to be two answers for questions that ask “Which is the best way…?” Can more than one answer be possible when the question infers one is most appropriate? Do some questions have more than one “right” answer?…ie #1, 2, 5,7,10, etc

]]>