Home
Topics
Data Storage Management
Data storage compliance and archiving
Is encryption required for compliance with current privacy and security laws?

Is encryption required for compliance with current privacy and security laws?

I'll give you the customary analyst/lawyer answer, it depends. Some of the regulations, like HIPAA and Graham Leach Bliley, require you to perform a risk analysis on your environment. So, you may or may not conclude

Requires Free Membership to View

Login

By submitting you agree to receive email communications from
TechTarget and its partners. Privacy Policy Terms of Use.

that encryption is necessary based on your findings.

Some of the state breach notification laws, like California's SB 1386, say that unencrypted personal information falls within the scope of notification. So, if a breach occurs, or is suspected to have occurred, and everything is encrypted, you may not have to report the incident to the information owners. But, if it's unencrypted, that's when you'll have to worry about it. It varies from state to state, so you've definitely got to do some research in this area. Even with SOX, it could be argued that financial controls may include storage encryption.

So, it all depends on the particular scenario, the size of the organization, whether or not you are a credit card merchant for PCI, etc. There needs to be someone in every organization that can look at these laws and say what's what and put you on the right track.

Check out the entire Storage Encryption FAQ guide.

More News and Tutorials

Articles

Related glossary terms

Terms for Whatis.com - the technology online dictionary
- discoverability
- litigation hold (preservation orders or hold orders)

This was first published in October 2007

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

More from Related TechTarget Sites

Solid State Storage
Virtual Storage
Cloud Storage
Disaster Recovery
Data Backup
Storage UK
Storage Channel

searchSolidStateStorage
- Law firm uses NexGen hybrid array to keep cases moving
  
  Ohio law firm uses a NexGen solid-state, HDD hybrid storage array to provide the IOPS needed to keep its litigation and e-discovery practices moving.
- The top three use cases for PCIe SSD
  
  Learn more about the most common applications of PCIe solid-state cards today in this Expert Answer from independent storage expert Marc Staimer.
- Laptop SSD applications and monitoring
  
  Learn what applications benefit from laptop SSDs and what tools are available to monitor wear on these drives in this Expert Answer from Marc Staimer.
Virtual Storage
- Startup CloudFounders builds open storage for VMs
  
  CloudFounders promises an open storage version of software-defined storage that supports OpenStack, Amazon S3 and VMware.
- 10 ways to improve virtual server storage
  
  Virtual server storage operations can have a profound effect on the storage network. Here are 10 ways to help ensure that your storage yields its best I/O for the VMs it supports.
- VMware market share is high in a small pool of virtualization
  
  Storage expert Jon Toigo explains how VMware is the market leader, and why virtualization growth statistics seem more impactful than they truly are.
CloudStorage
- Data durability guarantees shouldn't be big concern with cloud storage
  
  Data durability guarantees of cloud storage providers shouldn't be a big point of concern for customers; they're too tough to measure and enforce.
- TwinStrata bumps up CloudArray DR capabilities
  
  A new version of the TwinStrata CloudArray gateway can recover data and applications off the cloud for DR without having to rebuild servers.
- Hitachi Data Systems launches HCP Anywhere for online file sharing
  
  Hitachi Data Systems addresses online file sharing through HCP Anywhere as part of its Hitachi Content Platform (HCP) object cloud storage system.
searchDisasterRecovery
- Your data protection plan must consider latency in WAN-based replication
  
  In this Storage Decisions video, Jon Toigo highlights issues IT pros must address in their data protection plan when using WAN-based replication.
- Improving business continuity plan exercises
  
  Planning and conducting business continuity (BC) drills is one of the most important activities in a business continuity program.
- Evaluating BC/DR program performance
  
  Business continuity and disaster recovery are not "set-it-and-forget-it" activities. Paul Kirvan outlines how to evaluate a BC/DR program in this tip.
searchDataBackup
- The pros and cons of integrated backup appliances
  
  Find out whether integrated backup appliances with backup software, server and storage offer any benefits beyond ease of installation.
- Quantum vmPRO adds LTFS tape support, DXi V-Series gains capacity
  
  Quantum upgrades its vmPRO virtual machine backup appliance, supporting 24 TB of pre-deduped data and LTFS tape in a virtual appliance.
- Veeam Software adds WAN acceleration, tape support for VM backup
  
  Veeam upgrades its virtual machine backup software, building WAN acceleration and native tape support into Backup & Recovery v7.
searchStorageUK
- Dell cloud storage plans remain hazy
  
  News of a Nirvanix partnership filled in some details about Dell's cloud storage strategy, but the company still treats its cloud plans as a secret.
- Storage Radio: Riverbed Whitewater appliance chases enterprise
  
  In our latest Storage Radio podcast, SearchStorage.com editors discuss the Riverbed Whitewater cloud data backup appliance for enterprise backups.
- Finding data deduplication solutions for DR
  
  Deduplication is an important strategy for disaster recovery. Learn more about data dedupe solutions in this expert tip by Paul Kirvan.
searchStorageChannel
- Hitachi Data Systems Partner Program Checklist
  
  Learn the benefits of becoming a Hitachi Data Systems reseller partner with our Partner Program Checklist.
- Yosemite Technologies Partner Program Checklist
  
  Learn the benefits of becoming a Yosemite Technologies reseller partner with our Partner Program Checklist.
- CommVault, Inc. Partner Program
  
  Learn about data management software vendor CommVault, Inc.'s partner program in this standardized checklist.

All Rights Reserved,Copyright 2000 - 2013, TechTarget