Privacy and Data Breach: Small Business Particularly Vulnerable

Olshan counsel Jonathan I. Ezor recently published an opinion piece in Long Island Business News regarding online privacy and small business. In the piece, Ezor discussed the new Consumer Privacy Bill of Rights published by the Obama Administration, and how small and mid-sized businesses may face greater risks, with fewer resources to address them, with regard to consumer data, as discussed in this excerpt:

While much of the attention over data collection and breach issues goes to huge, multinational companies, the requirements, and risks, apply to organizations of all sizes. Often, smaller companies find it more difficult to comply with privacy rules and best practices than their larger counterparts, both because the smaller firms lack dedicated information technology and personnel resources, but also due to a lack of knowledge about what they must do with the consumer information they collect.

Large media sites may know it is illegal to collect personal information online from children under 13 without their parents' prior consent, but local ice cream parlors may be communicating directly with kids on their websites. The FTC repeatedly delayed enforcing its Red Flags Rule requiring certain companies to identify and fix possible identity theft risks because it knew many businesses had no idea they were subject to its requirements. Smaller IT firms aren't aware that they, not just the (equally unknowing) doctors whose computers they maintain, are liable under HIPAA. These risks are not just from legal enforcement; lax data practices (real or imagined) will scare away customers who fear identity theft and "Big Brother"-type monitoring.

The attorneys in Olshan's Advertising, Marketing and Promotions Law practice group regularly work with clients on implementing best practices and managing privacy risks.

Add a comment

Type the following characters: romeo, six, hotel, six

* Indicates a required field.

Subscribe

Recent Posts

Contributors

Archives

Jump to Page

Necessary Cookies

Necessary cookies enable core functionality such as security, network management, and accessibility. You may disable these by changing your browser settings, but this may affect how the website functions.

Analytical Cookies

Analytical cookies help us improve our website by collecting and reporting information on its usage. We access and process information from these cookies at an aggregate level.