Information Systems homework help
Copyright © 2014 by Jones & Bartlett Learning, LLC, an Ascend Learning Company. All rights reserved. www.jblearning.com Student Lab Manual
Lab #6 – Assessment Worksheet
Identifying the Scope of Your State’s Data and Security Breach Notification Law Course Name and Number: _____________________________________________________ Student Name: ________________________________________________________________ Instructor Name: ______________________________________________________________ Lab Due Date: ________________________________________________________________
Overview
In this lab, you reviewed the data security breach notification laws for your state and you assessed the scope and depth of the privacy protection rights of a citizen in your state.
Lab Assessment Questions & Answers
1. Were you successful in finding your state’s data and security breach notification law? Specify the name of the law. If you were unable to download your state’s law, use the state of Virginia to complete the question.
2. What is the purpose of state governments imposing a breach notification law on organizations to protect their citizens?
3. Explain how state government data security breach notification laws relate to individual privacy.
48 | LAB #6 Identifying the Scope of Your State’s Data and Security Breach Notification Law
4. Assess the scope and depth of privacy protection rights that a citizen has by being a resident of a state. Write down the name of your state, and then identify the following for your state’s breach notification law: • Who or what does the law in your state protect? • Does the law include both for profit and nonprofit organizations? • Does the law have a financial penalty assessed to the negligent party if proven guilty? • Does your state require the organization to publicly announce a breach to the media? • Does your state notification law take into account encrypted data or doesn’t it matter whether
the data is encrypted or not encrypted? • Does your state’s law define the amount of time an organization has to publicly announce that
a breach has occurred? If yes, specify the time. If no, describe how your state handles this.
5. True or false: If you are a citizen in one state but the company that had a data and security breach with your privacy data resides in another, the company must adhere to the data and security breach notification law of your home state.
6. Because most states have data and security breach notification laws related to their citizens’ privacy, what is the number one reason for having these laws from a citizen protection perspective?
7. Some states define a data and security breach as the loss and exposure of citizen privacy data in an unencrypted manner. If a state encountered a data and security breach, but no citizen’s privacy data was compromised given that it was encrypted in a steady-state within a database, does the company or organization have to abide by the data and security breach notification law?
8. True or false: Unauthorized access to a system must occur for the data and security breach notification law to take precedence.
- Course Name and Number:
- Student Name:
- Instructor Name:
- Lab Due Date:
- Question1:
- Question2:
- Question3:
- Question4:
- Question5:
- Question6:
- Question7:
- Question8:
Needs help with similar assignment?
We are available 24x7 to deliver the best services and assignment ready within 3-4 hours? Order a custom-written, plagiarism-free paper
Get Answer Over WhatsApp Order Paper Now