Privacy & Security Matters Mintz Levin : Data Compliance & Security, Employee Privacy Lawyer & Attorney

Nude Photos and National Cyber Security Awareness Month

Posted in Cloud Computing, Cybersecurity

October is National Cyber Security Awareness Month.    This is an opportunity to remind employees (and yourselves) about how to keep corporate networks and their own cyber lives secure.   All month, we will post articles that might be useful for distribution as “reminders….” along with tips and reminders.

Recent articles regarding the highly publicized hacking of nude photos of Jennifer Lawrence and other celebrities make a good case for being very careful with how we use the cloud as well as the need to be vigilant about data security.  A posting last month by Bloomberg on this topic included the following:

  • “iCloud’s terms of service:  You are solely responsible for maintaining the confidentiality and security of your Account and for all activities that occur on or through your Account, and you agree to immediately notify Apple of any security breach of your Account. You further acknowledge and agree that the Service is designed and intended for personal use on an individual basis and you should not share your Account and/or password details with another individual. Provided we have exercised reasonable skill and due care, Apple shall not be responsible for any losses arising out of the unauthorized use of your Account resulting from you not following these rules.
  • Google Drive’s terms of service include a similar formula: “You are responsible for the activity that happens on or through your Google Account.” 
  • Amazon’s wording is different, but its meaning is the same: “You are responsible for maintaining appropriate security and protection of your files.” “

October happens to be National Cyber Security Awareness Month – http://www.dhs.gov/national-cyber-security-awareness-month-2014

REMINDER:  Your company should have a policy against using consumer-grade cloud file sharing solutions for proprietary/sensitive data.  Sensitive information should only be stored on the company’s systems where it can be safeguarded, controlled, and protected.   October is a good time to take stock.