Marketers Shift Away from Campaign-based Thinking

“What has been interesting for us has been to see the gradual change amongst marketers who are only now starting to recognize the need to shift away from campaign-based thinking to a more comprehensive mindset for content and customer engagement,” says Jamie Posnanski of Accenture. Read more on 2018 content marketing trends here .  Chimp Tools
Is your marketing strategy evolving towards content and customer engagement?

What’s all this talk about digital transformation?

Digital transformation: Some organizations see it as a scary idea, wreaking revolutionary, unsettling changes. Others are curious — just what does this buzzword mean and what are we transforming into? Regardless of your viewpoint, your enterprise seriously needs to understand and chart its course to becoming a digital ninja. Like it or not, your success depends on how quickly your organization captures, absorbs and uses digital information. Read moretwitter_digitaltransformation.png


North Korean WannaCry Ignites Government-Industry Collective Defense



In a Monday Wall Street Journal op-ed Thomas P. Bossert, Trump’s homeland security adviser, declared “[t]he [WannaCry] attack was widespread and cost billions, and North Korea is directly responsible.” The findings are based on evidence says Bossert, and he is backed up by UK and Microsoft.

A Washington Post Bossert quote ratchets up the call for closer government-industry cyberdefenses. “[S]ome say that defending cyberspace is impossible and that hackers are inevitable. I disagree. . . . Government and industry must work together, now more than ever, if we are serious.”

Today, US and UK officials suggested it was highly likely the Lazarus Group was backed by the North Korean government. Facebook deleted accounts associated with Lazarus last week “to make it harder for them to conduct their activities,” reports The Guardian,  Facebook announced it acted with Microsoft “and other members of the security community” to disrupt the group’s activities.

A few hours ago Axious reports that the Department of Homeland Security (DHS) plans on intervening in U.S. company cybersecurity issues when necessary.

“The Department of Homeland Security is now calling on all companies to commit to U.S. collective defense, per Jeanette Manfra, assistant secretary for the Office of Cybersecurity and Communications at DHS. But Bossert wouldn’t go so far as to say that an attack on a U.S. company constitutes an attack on the country.

DHS plans to move beyond offering voluntary assistance on cybersecurity issues and instead plans on intervening directly when necessary, per Manfra.”

Watch for much closer public-private actions to combat state-actor cyberattacks. 

Breaking News – Supreme Court to Rule on Microsoft EU Emails

A significant battle between Microsoft and law enforcement has made its way to the US Supreme Court. The DC Court of Appeals struck down lower courts’ decisions that Microsoft must give US law enforcement client emails  stored in Ireland in a drug trafficking case. The  upcoming Supreme Court ruling on this case will have far-reaching impact in our digital economy where data crisscrosses the global internet, coming to rest on a server in a particular country.

global internet

How far do US laws extend to data stored in foreign countries?

If Microsoft is forced to hand over the emails from their Ireland data center, how will EU data protection authorities react?  Especially, given that the General Data Protection Regulations, an overhaul of EU data privacy laws, massive financial penalties for non-compliance take effect in May 2018.

If Microsoft does not have to hand over the emails, will criminals hide their communications and data overseas so US law enforcement cannot access it?

Be sure to follow this case and watch for the Supreme Court ruling.

Data Protection is Everybody’s Job

Data protection is everybody’s job today. With the perfect storm of  a doubling of data every two years, juicy dark web profits for stolen personal info and crushing data breach business impacts, organizations simply have to build data protection values into the company’s culture.  Read this blog for practical tips on how to do this in your organization.


Groundbreaking Cybersecurity Regulation Kicks in Today for New York Financial Institutions

It’s the first of it’s kind, but  surely not the last. The groundbreaking New York Department of Financial Services cybersecurity regulation takes effect today, August 28, 2017.  All financial services organizations operating in New York must be in compliance, along with their law firms and accountants. This regulation is likely the forerunner of more state cybersecurity regulations, especially after the summer of WannaCry and Not Petya. Learn more about the regulation in  a blog I wrote, published by the information governance leader Iron Mountain.

Information Governance Refresh Checklist

Summer time can be the perfect time to refresh your information governance road map. Goaded by the explosive growth of digital content, devices and cloud storage, smart organizations are morphing traditional records management towards a more holistic information governance (IG) road map, accounting for digital information, security, compliance and information assets life cycles. The latest go-to road map for navigating this jagged journey — the Cohasset Associates and ARMA International Information Governance Benchmarking Survey — is once again available for fresh insights and best practices. In the ninth biennial web-based survey, nearly 1,000 industry professionals added their perspective.

Read full article here. 

Foreign Corrupt Practices Act “Pilot Program” Still Alive and Kicking

In April 2016, the Department of Justice (DOJ) launched the foreign corrupt practices act (FCPA) Pilot Program. The program puts into effect several policies introduced in the famous “Yates Memo,” outlining guidance on voluntary self-disclosure of FCPA transgressions, investigation cooperation, individual accountability and even how cooperation  can result in non-prosecution. Despite expected regulatory rollbacks and ironically, the highly public firing of the Yates Memo author Acting US Attorney General Sally Yates, the Trump administration shows no signs of let up in FCPA enforcement or the Pilot Program.

Last month, Acting Assistant Attorney General Kenneth A. Blanco announced that the DOJ will evaluate the Pilot Program for extension and any revisions when it expires in April 2017. In the meantime, Blanco advises that the program remains in full force and effect.  Here’s an article to learn more about how the Pilot Program works.


It’s 2016 Data Protection Day!

2016 DP Day.jpg

Did you know January 28th is Data Protection Day? The Council of Europe started this annual celebration in 2006 to grow European’s awareness of their rights around how their personal data is collected and processed in the digital economy. For 20 years, Europe has led the world in developing comprehensive protection for individuals’ privacy rights, from the ground breaking 1995 data protection rules to the recent massive update to make them “fit for the digital age.” Europe has inspired other nations to build data protection safeguards, and Data Privacy Days too.

There is a passion for safeguarding citizen’s privacy in Europe, like nowhere else. It is a fundamental right, guaranteed in the European Union Charter.

Upholding fundamental rights to privacy is “not something Europe should be ashamed of.”
Koen Lenaerts, the Harvard trained European Court of Justice judge after invalidating Safe Harbor data transfers due to data protection concerns with US surveillance programs.

In 2008 the US and Canada extended Europe’s celebration by establishing a January 28th Data Privacy Day.

Oh Canada! The Office of the Privacy Commissioner of Canada offers new resources to mark the Day.

Pacific Northwest. The Better Business Bureau of Alaska, Oregon and Western Washington celebrates the Day with a warning to think twice before you take that Facebook quiz to find your spirit animal. All kidding aside, they offer some excellent data protection tips.

Mississippi. The Mississippi Department of Information Technology suggests citizens check out this data privacy day video that recommends treating your information like money – value it and protect it!

Stay Safe Online, powered by the National Cyber Security Alliance, has a wonderful infographic on how privacy is good for business.

United States. In the US, the Federal Trade Commission has responsibility for consumers’ data privacy and security. The FTC’s privacy work goals remain: “to protect consumers’ personal information and ensure that consumers have the confidence to take advantage of the many benefits offered in the marketplace.” The US participated in the celebrations with a live FTC Twitter chat to promote privacy awareness and respect, and posted Tweets with some good practical data protection tips.

I wonder when the US will have a Data Privacy Commission.

Microsoft joins in the party too. But perhaps more enlightening is a read of Brad Smith’s Blog in which he chronicles global data security issues including the minefield of data privacy issues his company faces. Though self-serving for their cloud business, Brad’s blog is like a treatise on the privacy issues of our day.

“Microsoft needs to go beyond standing up for the rights of businesses and governments; we need to be a voice for people.”
Brad Smith, President and Chief Legal Officer, Microsoft

Mexico used Data Protection Day to mark the Mexican Federal District Data Protection Authority’s endorsement of the signing of 13 principles on limiting surveillance.

Data Protection Day is not yet celebrated in all corners of the world. But with the vast amounts of digital information seeping across the internet, data protection continues to grow.

Brazil has a Draft Bill of Law on Personal Data Protection.

Hong Kong’s Office of the Privacy Commissioner for Personal Data Protection recently announced they plan to update their privacy laws to keep up with developments, citing the recent EU reforms. Hong Kong saw an upward trend in privacy complaints in 2015.

In South Korea, recent changes to the personal information protection legislation takes effect this month. The Korean Government  Personal Information Protection Commission develops policies and plans for data protections.

So let us celebrate all these global efforts supporting the protection of personal information. And, let us welcome the continued debates on privacy, digital commerce and national security that we face as a global community.

Happy 2016 Data Protection Day!