IT

Order by:Group by:

Asia-Pacific

Privacy Guide - Asia and the Pacific (2007)
Asia-Pacific Region at the Privacy Crossroads (2008)
APEC Privacy Framework (2005)

European Union

European Commission: Proposed revision of the Directive on electronic data protection (2007)
European Parliament: Webpage on the legislative procedure on the Directive on electronic data protection
DIRECTIVE 2006/24/EC OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 15 March 2006 on the retention of data generated or processed in connection with the provision of publicly available electronic communications services or of public ... (EU, 2006)
EU, Commission decisions on the adequacy of the protection of personal data in third countries

United States, European Union

EU, Promoting data protection by privacy-enhancing technologies (PETS)

Japan

Japan: Personal information privacy update (2007)
GRC-XML Work Group: December 16, 2008 Meeting

United Kingdom

New UK E-Privacy Regulations (2003)
UK, Data Protection Act 1998
UK, 2008 information security breaches survey: technical report (BERR, 2008)
UK, Information security: business assurance guidelines (BERR / DTI)
UK, Incident Management Guidelines (BERR)
UK, Retention of personnel and other related records (CIPD, 2008)
United Kingdom Data Retention Electronic Communications Regulations 2007
UK, A consultation paper: Transposition of Directive 2006/24/EC (Home Office, 2008)
Email archiving UK law, regulations and implications for business (2007)

United States

Seeing the Future of Search in E-Discovery (2008)
NIST, An Introductory Resource Guide For Implementing the Health Insurance Portability and Accountability (HIPAA) Security Rule (2008)
NIST, Information Security Handbook: A Guide for Managers (2006)
NIST, Performance Measurement Guide for Information Security (2008)
NIST, Computer Security Division, Computer Security Resource Center, Special Publications
Retail IT Budget Benchmarking Study (2007)
ARTS Data Model Committee: Retail Data Model Scope (March 31, 2005 Release 5.0)
Landmark Federal Discovery Rules Amendments Have Become Effective. Are You Ready? (2006)
Standard of Good Practice for Information Security, The (ISF)
Governing for Enterprise Security Implementation Guide (GES)
What the Board Needs to Know About IT: Phase II Findings (Deloitte, 2007)
NIST, Risk Management Framework
Architectural Risk Analysis (2005)
Enterprise Risk Management for CIOs (2007)
Five Steps to Building Information Risk Management Frameworks (August 2007)
Assessing, Managing Enterprise Risk: What it takes to manage virtual servers (2007)
IT Control Objectives for Sarbanes-Oxley 2nd Edition (September 2006)
NIST, Federal Information Security Management Act (FISMA) Implementation Project
Creating a Computer Security Incident Response Team: A Process for Getting Started (2002, Last Updated 2006)
Eight easy ways to protect your company data - and reputation (2008)
Early Warning Signs of IT Project Failure: The Dominant Dozen (2006)
Security Matters, Software Engineering Institute, Carnegie Mellon University
IT Sentinel (UK)
Federal Information Security Management Act of 2002
Government of Canada Publications: IT Security Guidance (ITSG)
Information Security Forum
ISO Catalog Page: Information technology
IT Security Portal
Information Security and Data Breach Notification Safeguards (CRS, Rev January 28, 2010)
DOC, Safe Harbor
NIST, ITL Security Bulletins
Storage Technology News: New privacy rules may complicate records management (2007)
Data quality -- the forgotten privacy principle (2007)
Insider Threat (2007)
Compliance Provides Benefits Beyond The Obvious (2007)
Portable security: Full-disk encryption can take a lot of risk out of mobile computing (2007)
Daily Tech
Guide to NIST Information Security Documents
Computer Technology Review
State Security Breach Notification Laws
Id Governance - Identity Privacy and Access Policy Marketing Requirements Document Use Cases Version: 1.0 (2007)
Identity Governance Framework (2006)
DOJ, Searching and Seizing Computers and Obtaining Electronic Evidence in Criminal Investigations (2002, with updates)
Leveraging Content Management Systems for e-Discovery (August 2007)
Understanding The World Of E-mail: How It Can Significantly Increase Or Decrease The Costs Of Electronic Discovery - Part I (2007)
Understanding The World Of E-mail: How It Can Significantly Increase Or Decrease The Costs Of Electronic Discovery - Part II (2007)
Collecting Personal Data for E-Discovery (October 2007)
FAQ: Changes to the Federal Rules of Civil Procedure Affect Storage Plans (2007)
States Launching E-Discovery Rules (2007)
New E-Discovery Burden, The (2007)
Examining E-Discovery Chain of Custody (2007)
Group creates standard to ease e-discovery data transfer (2007)
E-Discovery Requests: Know Your Limits (2007)
Develop Effective Archive Policies Before FRCP Compliance Becomes a Problem (2008)
Instant Messages: An E-Discovery Nightmare? (2007)
Authenticity and Management of Electronic Records (2007)
E-discovery product purchase considerations (2008)
Digital Docs Raise Compliance Issues (2007)
Keeping Up With EDD Blogs and Tools (2007)
Judicial Council proposes new electronic discovery rules (2008)
What to Do About Data in the EU? (2008)
E-Discovery Mistakes Might Kill Your Case (2008)
E-Discovery Tips From the Bench (2008)
EDD Update
Law Technology News
California, Electronic Discovery: Legislation and Rules (2008)
Re-Thinking Your Disaster Recovery Strategy (2007)
Integrate Archiving with Disaster-Recovery Plan (2007)
Disaster recovery, backup, and restore: Big challenges for small businesses (2008)
Managing risk in the information age (2007)
How Vulnerable Is Your Information Technology? (2006)
Practical Disaster Recovery Planning: A Step-by-Step Guide
Survival of the Fittest: Disaster Recovery Design for the Data Center (2008)
GAO/NSAA, Management Planning Guide for Information Systems Security Auditing (2001)
Chief Information Officers Council (CIO)
Best Practices: Ten Time-Saving Compliance Research Resources
Auditing System Conversions (IIA)
Information Technology Process Institute (ITPI) Reading Room
State of IT Auditing in 2007, The
Compliance Without Tears: Preparation can ease IT's compliance concerns (2007)
Guide 6: Managing and Auditing IT Vulnerabilities (IIA, 2007)
Related communities
Record Retention & Data Management