Can we have compliancy around social networking as a business function?

Stuart R. Crawford

Bulletproof InfoTech

403.206.2233

stuart.crawford@bulletproofIT.ca

The new world

Right and Wrong Takes A Whole New Meaning

What are the risks today?

Are compliance officers embracing Social Media Social Media is here to

stay, the platforms are here to stay

Data and Privacy protection

data leaks, data breaches or reputational damage

What Is Really Private Online?

How do online privacy regulations apply? Beyond the courts Beyond the IT Pro

How are privacy regulations interpreted? By staff By managers By executives By shareholders

What Do Business Owners Need To Be Aware Of?

Government regulations PIPEDA HIPAA

Industry regulations EUB

Securities regulations Sarbanes-Oxley

How do these government and industry regulations impact the use of social media in today’s business?

But Really, What Can Happen?

Can employees share private patient information online?

Can your staff email confidential information to a competitor?

Can your press release be leaked and impact share price?

Threats have always been here!

What is so different today?

Does Social Media really cause concern?

What Happens When They Go Here?

Don’t Most Of Our Employees Have These?

Can We Really Enforce Corporate Policy Outside The Office

How Does Business Enforce Compliancy Today?

They block it!

Is this the correct move?

What do these actions cause?

Does it really stop the use?

What Can Business Really Do?

Google Alerts Monitor anything in the

public domain

Have employees register Blogs Twitter Facebook

Social networking acceptable use policy

Does It Really Work?

If someone wants to write about your business they will Mini-microsoft blog

Enforcement may not work

Passive monitoring, auditing and sampling may work

How do you control your corporate identity?

What Next?

Social Media is not going away

Business has faced these challenges in the past, but it wasn’t as easy

Electronic data is continuing to grow

Challenges around compliance will increase

“If you list your company's name

or write about what you do, it

affects the company.”

Doug Corneliuscompliance officer, ComplianceBuilding.com

Your Acceptable Social Networking Use Policy

All organizations must have a handbook with clear rules around social networking when the employee starts

Clear expectations Privacy Confidential

information Trade secrets

Sign off a must

Start Passive Monitoring Now

Use Google Alerts

RSS feeds

Email subscriptions

Random searches

Auditing of employee blogs, facebook and twitter accounts

Encourage and welcome formal and informal discussions with social media

Something To Understand

As Joe Rogan’s character on Newsradio once quite accurately quipped,

"Dude, you can’t take something off the Internet.. that’s like trying to take pee out

of a swimming pool."

Once your business data, IP, press releases, client information and other is out there, it is out there.

www.facebook.com/stuart.crawford.calgary.computer.service

www.linkedin.com/in/stuartcrawford

www.twitter.com/scrawforditmwww.twitter.com/bulletproofIT

www.twitter.com/calgarybusiness

Questions