Really great job. Thank you so much. I really love it. Thank you so much for all of your help.
1. Relate a real-world case study on the Payment Card Industry Data Security Standard (PCI DSS) standard noncompliance and its implications
2. Distinguish how the Payment Card Industry Data Security Standard (PCI DSS) is a standard and not a law, and how it defines requirements for information systems security controls and countermeasures.
3. Review a case study on a credit card transaction-processing companyâ€™s noncompliance with the Payment Card Industry Data Security Standard (PCI DSS) and identify the privacy data breach that occurred:
â€¢ History of the law
â€¢ ABCâ€™s responsibility under this law
â€¢ What is ABCâ€™s liability for failing to follow this law?
4. Recommend a PCI DSS-compliant mitigation remedies to prevent the same loss from occurring again at a similar organization.
Privacy Policies of Zuger Law Office, PLLC
This section of the Course Paper, which may be named whatever you like (
, â€œExecutive Summary,â€ â€œIntroduction,â€ â€œPreamble,â€ etc.), should only be a handful of sentences; certainly no more than a page. Here, your team will describe the nature of your business. You should explain what your firm does, who your customers are, and briefly mention any other key stakeholders in light of privacy concerns. This is also the place to list your team members. And, finally, in this section, you should explain to your audienceâ€”
, your companyâ€™s staffâ€”why privacy is important in your business. Essentially, this is where you â€œsellâ€ your audience on the fact that they must abide by your companyâ€™s privacy policies.
Policy Statement Section Overview
Policy Statements Contents
The contents of these policies should contain at least the following features:
The policy, itself, such as â€œReasonable Expectation of Privacy for Employees.â€
The laws, regulations, or standards that relate to the policy at issue.
An example, when applicable, that helps your audience understand the policy.
Directions on how to effect the policy. For example, if your company processes payments by credit or debit cards, and your policy is something like â€œAnyone who processes payments via payment cards must conform their actions to PCI DSS standards related to privacy.â€ then you may want to insert a link to those standards. Or, perhaps, incorporate examples as mentioned directly above.
This list is not exhaustive. Depending on the set of facts, you may need to include more.
Comprehensive Policy Statements
The Policy Statements must be a comprehensive body. Do not omit the discussion of laws that may apply to your business. This means that you must understand what your business does, and its privacy implications. Every company has employees, so employeesâ€™ privacy must be addressed. While it is debatable, I have discussed that any HRIS, or a companyâ€™s personnel records kept otherwise, has the propensity to contain medical information that we now know to refer to as â€œPHI.â€ Thus, you should have some policy that governs handling those data vis-Ã -vis privacy. Could your company be known as a â€œfinancial institution?â€ If so, you must discuss GLB Act privacy policies.
The point is that in three to five pages you must tell your employees everything they need to know about maintaining appropriate privacy while conducting your business.
Scoring the Course Paper
The Course Paper is worth 100 points. I will give up to ten points for the submission’s form and format. That includes its organization, page count and team size, and grammar and spelling. The form and format is important because if a policy document is disorganized, contains typographical errors, or is hard to read otherwise, employees will not respect or even use it as the guidance it is meant to be. Consider a numbering or another outline styled structure to identify policy clauses.
I will give up to ten additional points for the introductory section, and whether you included all of the required information.
I will give up to 80 points for the policy statements. Questions I will have in mind when reviewing your policy statements include, Did the team incorporate what we’ve learned about privacy? Can the document be read and understood by all levels of an organization? Are the policies concise, or vague and wordy?
Writing assistance is available by emailing a copy of your file to the International Academic Services office (yes, even if you are not an international student) at
. I highly recommend that you give the IAS Team at least two or three business days to review your work. Take into consideration the fact that you will likely need to respond to their efforts with some rewriting of your own, and you can start to calculate how much in advance of April 23 you should be planning on sending them a draft.
Cautionary Tales From Prior Submissions
Here are some of the ways that students have lost points in prior years:
Teams and pages. Do not submit as an individual; you must be part of a team. Do not exceed the page count. Only use Microsoft Word (.doc or .docx) or Adobe PDF format. Each team member must individually submit a copy of the teamâ€™s work. You cannot rely on one memberâ€™s submission. And, when two team members submit dissimilar work, it evinces a non-functioning team.
Donâ€™t skip the obvious. If you are an insurance company, and fail to draft a policy that addresses HIPAA privacy, thatâ€™s a big omission. If children may access your website, you better include some acknowledgement of COPPA and CIPAâ€™s privacy laws. See, Policy 1.3, above.
Get going now. While having up to five people working on this can make it very easy to accomplish, you cannot wait until the end of the course to start.
Perfect the writing. Spelling errors, syntax and grammar issues, and other poor English writing artifacts all take away from the credibility of your policies. When your company does not care enough to write well, your employees will not care enough about privacy to help you avoid risks.
This is a policy document. In some prior examples, valuable paper â€œreal estateâ€ was wasted on describing marketing plans, or a companyâ€™s history, or other immaterial data. The introductory section is important, but it is not the crux of this learning objective.
There are other ways that students have lost points, so please consider the entire body of instructions and requirements. These, in my opinion, came up often enough, or were easy enough to avoid, to include for your benefit.
Delivering a high-quality product at a reasonable price is not enough anymore.
That’s why we have developed 5 beneficial guarantees that will make your experience with our service enjoyable, easy, and safe.
You have to be 100% sure of the quality of your product to give a money-back guarantee. This describes us perfectly. Make sure that this guarantee is totally transparent.Read more
Each paper is composed from scratch, according to your instructions. It is then checked by our plagiarism-detection software. There is no gap where plagiarism could squeeze in.Read more
Thanks to our free revisions, there is no way for you to be unsatisfied. We will work on your paper until you are completely happy with the result.Read more
Your email is safe, as we store it according to international data protection rules. Your bank details are secure, as we use only reliable payment systems.Read more
By sending us your money, you buy the service we provide. Check out our terms and conditions if you prefer business talks to be laid out in official language.Read more