A Government Librarian S Guide To Information Governance And Data Privacy

This book provides a concise and usable overview of the practical implications of important public sector United States federal, state, and municipal laws and standards related to information governance, as they pertain to librarians, research staff, universities, corporate regulatory managers, and public-sector information governance professionals. It is the first in a series of two volumes addressing public sector information governance compliance matters from the perspective of our target audience. Topics addressed in the book include: the evolving role of librarians and the need for librarians and legal researchers to understand the principles of information governance, the importance of broad-based regulatory IG principles such as the Federal Records Act, the Paperwork Reduction Act of 1980 and 36 CFR Chapter XII, Subchapter B – Records Management, that have been promulgated by various federal government agencies in framing public-sector IG principles, a survey of interpretive surveys from the Office of Management and Budget (OMB) that further elucidate the core IG principles applicable to public sector stakeholders, case studies detailing the application of important IG principles by federal agencies and bodies, and a survey of important IG issues facing state and local governments.

With the expansion of technology and governance, the information governance industry has experienced dramatic and often, sudden changes. Among the most important shifts are the proliferation of data privacy rules and regulations, the exponential growth of data and the need for removing redundant, obsolete, and trivial information and the growing threat of litigation and regulatory fines based on a failure to properly keep records and manage data. At the same time, longstanding information governance standards and best practices exist, which transcend the sudden vicissitudes of the day. This volume focuses on these core IG principles, with an emphasis on how they apply to our target audience, which includes law librarians, legal and research staff and other individuals and departments in both the public and private sectors who engage deeply with regulatory compliance matters. Core topics that will be addressed include: the importance of implementing and maintaining cohesive records management workflows that implement the classic principles of capturing, checking, recording, consolidation, and review; the classic records management principles of Accountability, Transparency, Integrity, Protection, Compliance, Accessibility, Retention and Disposition; and archives Management and the two principles of Providence and Original Order.

This book was written to demystify critical standards related to information security, records management privacy information management for the modern librarian and archival professional. In the digital age, librarians and archival professionals play a crucial role in safeguarding the world's knowledge. A Librarian's Guide to ISO Standards for Information Governance, Privacy, and Security is a curated resource for librarians, presenting core ISO standards related to information governance, data privacy, and security. The book provides detailed summaries of these standards, along with case studies and advice on applying them in the modern digital age. It empowers library staff and patrons to prioritize data security and privacy, ensuring trust and confidentiality in their services. The purpose is to demystify critical standards related to information security, records management privacy information management for the modern librarian and archival professional. Inside, you will find detailed summaries of the core ISO standards, descriptions, and case studies illustrating how these standards can apply to librarians in the modern digital age, advice on how to cultivate a culture of data security, and privacy awareness among library staff and patrons.

This groundbreaking book considers how privacy issues can arise in a library context and what library and information professionals can do to protect the privacy of their users.

As more information is collected, shared, and mined, the need to understand and manage information privacy has become a necessity for information professionals. Governments across the globe have enacted information privacy laws. These laws continue to evolve and the information privacy protections that have been established differ by country. A basic understanding of privacy law, information privacy approaches, and information security controls is essential for information professionals to properly manage private/personally identifiable information (PII) in differing capacities in libraries, academic institutions, corporations, hospitals, and state and federal agencies. Understanding and knowledge of applicable privacy laws and the ability to write privacy policies and procedures for the proper handling of PII are crucial skills for librarians and other information managers. Information Privacy Fundamentals for Librarians and Information Professionals is tailored to the needs of librarians and information professionals. It introduces library and information professionals to information privacy, provides an overview of information privacy in the library and information science context, U.S. privacy laws by sector, information privacy policy, and key considerations when planning and creating a privacy program.

Since the year 2000, banks have been fined almost a third of a trillion dollars. Yet, every year billions more are imposed. Why? This book explains why banks break the law (it’s not just the money), explains the challenges facing Compliance functions, considers that the majority of financiers don’t want to do wrong, and puts forth a proposal to stop banks from harming customers. The lessons in this book are applicable to any business where profit motives can conflict with customer benefit–in short, every business. (And if you’re interested in cryptocurrency, this book’s for you too!)

Personal data in the online world as become a commodity. Coveted by criminals, demanded by governments, and used for unsavory purposes by marketers and advertisers, your private information is at risk everywhere. For libraries and librarians, this poses a professional threat as well as a personal one. How can we protect the privacy of library patrons and users who browse our online catalogs, borrow sensitive materials, and use our public computers and networks? User Privacy: A Practical Guide for Librarians answers that question. Through simple explanations and detailed, step-by-step guides, library professionals will learn how to strengthen privacy protections for: Library policies Wired and wireless networks Public computers Web browsers Mobile devices Apps Cloud computing Each chapter begins with a "threat assessment" that provides an overview of the biggest security risks – and the steps that can be taken to deal with them. Also covered are techniques for preserving online anonymity, protecting activists and at-risk groups, and the current state of data encryption.

Cyberattacks are more destructive than ever, but your C-suite can stop them. This book tells you how. Cyberattacks are worse now than ever before. To defeat cybercriminals, companies must focus on the low-hanging fruits of cybersecurity. It’s all about the basics. Companies laid low by ransomware failed to practice good cyber hygiene by recklessly allowing weak or reused passwords, not turning on multifactor authentication, or neglecting to install patches to known software vulnerabilities. Adding insult to grievous injury, many companies failed to mitigate cyber doom by not encrypting their devices, not implementing a data backup plan, or the mother of all blunders, not training their workforce on basic cyber hygiene. Worse still, hidden risks abound for the unwary. A devastating cyberattack is just moments away when C-suite leaders close their eyes to the hazards of shadow IT, data offshoring, mobile devices, and social media. Mobilizing the C-suite: Waging War Against Cyberattacks was written to galvanize C-suite leaders into deploying the basic cybersecurity controls vital to defeating cyberattacks, and to support frontline cybersecurity professionals with companywide cyber hygiene training. Most importantly, the book was written to introduce real-world cybersecurity principles to college students—if our future generation of company leaders enter the C-suite with cyber-savvy, then destructive cyberattacks are not a foregone conclusion.