Starting with California Senate Bill 1386 (SB
1386), several states have passed notification statutes in response
to information compromises. These statutes generally require any organization
or person operating an electronic database that stores personally identifiable
information (PII) for a state resident to immediately notify all persons
in the event of a security breach.
Contact Us
Select any of the services below for more information.
To design a more comprehensive compliance solution for your business,
contact VeriSign at 650-426-5310 or enterprise_security@verisign.com.
Requirements
VeriSign services help address California SB
1386 requirements.
Key Controls |
Applies To |
How VeriSign Helps |
Requires notification
plan and incident response process to respond to breaches. |
All companies that have California-based
customers as well as other states |
Security
Policy and Program Services |
Best Practices
These solutions address industry best practices
that can augment the above required controls.
Best Practice |
Applies To |
How VeriSign Helps |
Encrypt data |
All personally identifiable information (PII)
in storage and in transmission |
|
Assessment of encryption, intrusion
detection, response, and notification capabilities. |
All systems storing, transmitting or processing
PII |
Enterprise
Consulting Assessments |
Log file monitoring to help identify
and isolate compromised records |
PII applications, servers, databases, and network
devices |
Log
Management Service |
Ability to monitor networks for
intrusion detection |
All network segments and systems storing, transmitting
or processing PII |
Intrusion
Detection Management Service (IDS) |
Worldwide Sites
