Subject: | |
From: | |
Reply To: | |
Date: | Mon, 26 Oct 2009 12:26:12 -0400 |
Content-Type: | text/plain |
Parts/Attachments: |
|
|
Hi Everyone,
Our company is currently updating our security policies. We have three
areas within our organization that oversee security policies:
Facilities, IT Security and the Privacy Officer.
We have a policy for facility security, but the policy is limited to
protecting the buildings and people. We have an information security
policy, but the policy is limited to protecting electronic information.
I would like to broaden the language in one of these policies to ensure
we are complying with the Mass. Data Security Breach law, but neither
one of these areas feels that they should have ownership. We could also
create a new policy and have all three areas take ownership. All three
of these areas think that the RIM Program should take ownership.
It would be helpful if you all could share your thoughts.
Thank you,
Donna
Donna Malzone | Records and Information Consultant
Records and Information Management Program
Blue Cross and Blue Shield of Massachusetts, Inc.
401 Park Drive
Boston, MA 02215
P 617 246-3534 | C 781 760-5754
[log in to unmask]
This message is a PRIVATE communication. If you are not the intended recipient,
please do not read, copy or use it and do not disclose it to others. Please notify
the sender of the delivery error by replying to this message and then delete from
your system. Thank you.
List archives at http://lists.ufl.edu/archives/recmgmt-l.html
Contact [log in to unmask] for assistance
To unsubscribe from this list, click the below link. If not already present, place UNSUBSCRIBE RECMGMT-L or UNSUB RECMGMT-L in the body of the message.
mailto:[log in to unmask]
|
|
|