Privacy and Security of Employee Information: Requirements and An Effective Compliance Program (3 Sessions)

02-11 to 02-13-2024 1:00 PM EST.

Employers are required by federal and state law to protect the privacy and security of their employees' personal information. As several departments throughout the company require regular access to that information, it is an enterprise-wide responsibility. If companies fail to recognize the vulnerability this causes, they risk not only violating underlying consumer privacy and security laws and regulations but also facing serious data breaches, business disruptions, remedial actions, and potential penalties. An ounce of prevention is truly worth a pound of cure here. Employers who understand the legal and regulatory requirements and invest the time and effort to build an effective compliance program based on those requirements will be more successful in preventing breaches and responding quickly and effectively, thereby minimizing any damage if it does occur. In these companies, privacy and security policies dictate procedures for employee data collection, access, movement, storage, destruction, and, if necessary, responding to a breach.

As an experienced instructor and widely published author on data privacy and cybersecurity, Dr. Jim Castagnera, Esq., will review the relevant employee privacy and security laws and regulations during this webinar series. In addition, he will discuss the key elements of an effective employee privacy and security compliance program.

What You’ll Learn

During this highly informative webinar series, Dr. Castagnera will discuss:

Important federal employee privacy and security laws, including:

• HIPAA
• ADA
• GINA
• EEOC regulations, etc.

--State privacy, breach-notification, and data destruction requirements

--Identifying the users and departments in your organization that collect and process employee personal information

--Structuring your enterprise-wide compliance program to cover all bases: employee data collection, access, movement, storage, destruction, and, if necessary, responding to a breach

The elements of an effective and enterprise-wide employee privacy and security program:

• Implementing written policies and procedures
• Designating a compliance officer and compliance committee
• Conducting effective training and education
• Developing effective lines of communication
• Conducting internal monitoring and auditing
• Enforcing standards through well-publicized disciplinary guidelines
• Responding promptly to detected problems and undertaking corrective actions

--Fast-tracking the recommendations of the compliance officer and committee to senior management

--Review of best practices and case studies