You trust your bank with your money. And your information. How do you respond when the bank starts giving one of them away?
“U.S. Probes Allegations Of Leaks At HSBC,” Wall Street Journal, November 26, 2014 C1. Allegations that employees at the bank leaked confidential client information to a hedge fund.
How would the bank’s other clients respond? How important is this to the company whose information was leaked? What about market integrity? How does the bank restore its reputation?
Thankfully, the bank found the leak and self-reported it to authorities. During the course of another criminal investigation. Oops.
Filed under Business Case, Compliance, Controls, Culture, Governance, Information, Internal controls, Management, Oversight, Ownership, Protect, Protect assets, Risk, Third parties, Uncategorized, Use, Value
When you post your creative works online. Creative Commons offers an assortment of licenses to select; some prohibit commercial use, and some don’t. Some people read those licenses; some don’t.
“Fight Over Flickr’s Use of Photos,” Wall Street Journal, November 25, 2014 B3. Flickr, owned by Yahoo, is selling pictures that others posted online with a license that permits commercial use, as long as the original creator is credited; Flickr doesn’t share the profits. Some say this is unfair.
If you license your work, know what the license says and, more importantly, what it means.
Two articles on content controls.
“When Is Free Speech Illegal?,” Wall Street Journal. November 24, 2014 B5. Can your posts on Facebook be legally actionable, and, if so, who can take action?
“Polygraph Critic Faces Federal Criminal Charges,” Wall Street Journal. November 24, 2014 B5. Man who coaches people on how to “beat” a polygraph indicted. [But if the tests can be beat, how does this obstruct law enforcement? They’re either reliable, and can’t be beat, or they aren’t reliable, so who cares?]
What controls does your company put on the content you write? How do you know what those controls are? Hint: read your Code of Conduct.
Filed under Board, Business Case, Compliance, Compliance, Content, Controls, Governance, Internal controls, Legal, Oversight, Oversight, Policy, Risk
What’s it worth to get information a few minutes before the rest of the market? A lot.
“Startups Tip Investors to Hidden Data Pearls,” Wall Street Journal, November 21, 2014 C1. Turning obscure data into a trading indicator by mining Twitter’s overall flow (a half-billion tweets per day), and buying and reviewing satellite photos to provide independent information on country economic growth.
This goes to both information access and information use. What information do you access and use to make decisions?
Most consulting contracts have a confidentiality and non-use provision, which prohibit the contractor from talking about the consulting assignment or using the company’s information gained during that assignment for some other purpose.
“Fallout From Gruber’s Remarks Spreads,” Wall Street Journal, November 20, 2014 A4. Jonathan Gruber and his remarks about the Obamacare process and the intelligence of American voters (or legislators).
Could this happen in your company? Do you have controls to prevent it and mitigations to take if a contractor speaks his or her mind after the assignment? Who owns this problem?
Filed under Board, Business Case, Controls, Governance, Information, Internal controls, Management, Oversight, Oversight, Ownership, Protect, Protect assets, Protect information assets, Risk, Third parties, Value
It was a full Journal this morning. Rather than picking one, I present several.
- “Apple, Others Encrypt Phones, Fueling Government Standoff,” Wall Street Journal, November 19, 2014 A1. Government upset at Apple and others for encrypting their phones without providing the government a back door in. File under Protection, and Access.
- “Senate Blocks NSA Data Collection Measure,” Wall Street Journal, November 19, 2014 A5. Congress fails to pass overhaul of NSA information collection practices. File under Protection, and Access.
- “Nielsen to Measure Netflix Viewing,” Wall Street Journal, November 19, 2014 B1. Netflix to share what shows its users are watching. And you thought it was your information. Access.
- “AT&T Joins Fray On Location Data,” Wall Street Journal, November 19, 2014 B3. AT&T pushes back on government requests (without a warrant) for where you were when you got or made a phone call. No content; just location. Protection, Access.
- “Breach Plagues Home Depot, Wall Street Journal, November 19, 2014 B3. The company will spend $34 million in 2014 for costs related to the breach earlier this year. Protection.
- “China Propaganda Loses Its Appeal,” Wall Street Journal, November 19, 2014 B4. China state-run TV loses viewers to (gutsy) competitors.
- Protection, Access.
- “Settlement On Natural Food Claims,” Wall Street Journal, November 19, 2014 B4. The other GM revises its ad claims. Use. Compliance.
- “YouTube Music Strikes Discord,” Wall Street Journal, November 19, 2014 B6. Fight over royalties, a la Spotify. People not Happy.
- “Doubts Spread at Sony About Music Streaming,” Wall Street Journal, November 19, 2014 B6. Another Spotify-like response. Use.
- “Key BNP Officials at Center of Probe,” Wall Street Journal, November 19, 2014 C2. Insider trading. Compliance. Duty.
- “Goldman Ousts Trader Connected to Probe,” Wall Street Journal, November 19, 2014 C3. Currency price-rigging pre-Goldman (but they hired him anyway). Compliance. Culture.
Filed under Board, Business Case, Collect, Compliance, Compliance, Controls, Culture, Culture, Governance, Information, Internal controls, IT, Management, Oversight, Oversight, Privacy, Protect, Risk, Security, Use, Value
Are corporate titles “information”?
“Our New Pastime: Job-Title Inflation,” Wall Street Journal, November 18, 2014 D6. Baseball teams build a title infrastructure above the General Manager. Not sure who’s ego is being catered to.
And I was struck by a similar quandary that came up in a recent episode of “Madam Secretary,” where the Secretary of State’s staff was struggling with the appropriate form of address for the head of a small nation (who also ran a bait shop).
Do titles fit the definition of corporate information, within the context of information governance? I think so. It is information used in the course of the company’s business, and as a legal matter a corporation does own the main titles, like president and probably vice-president. Does the title have value? Yes, both internally and externally. Should the corporate exercise control over it? Yes, and it does.
The point is two-fold. Information is sometimes not immediately identified as such. And I was struggling for a topic and this was the last page of today’s Journal.
“Financial Firms Boost Cybersecurity Funds,” Wall Street Journal, November 17, 2014 C3. Spending to protect from hackers to increase from $4.1 billion in 2014 to $6 billion in 2014.
A fifty percent increase over two years.
Talk about a growth industry.
Filed under Business Case, Controls, Governance, Information, Internal controls, IT, Management, Protect, Protect assets, Protect information assets, Risk, Security, Third parties, Value
Sure, you would put a microchip ID in your dog in case he got lost. But would you pay money to know whether your dog is exercising enough?
“Dog Gone? Pooch Pooped Out? Fitness Trackers Let Pet Owners Know,” Wall Street Journal, November 15-16, 2014, A1. For some, that information has money. Selling fitness trackers for dogs.
Information value? Is this meeting a heretofore unmet need?
How do you get people to pay for something that for an entire generation they’ve gotten for free? “Time to Pay Piper for Digital Music?” Wall Street Journal, November 13, 2012 B1. Spotify and others try to charge for information (content) while giving it away for free. Good luck. Also, “YouTube Readies Paid Music Service,” Wall Street Journal, November 13, 2014 B4. The headline says it all. $8/month. Music, and the rights to play it/hear it are information, aren’t they?
But that’s not today’s story. That’s “Firms, Farmers in Deal On Handling Crop Data,”Wall Street Journal, November 13, 2014 B8. The big ag companies (Monsanto, John Deere, DuPont, Dow Chemical) agree that the farmers own the data arising from their farming activities. The farmers need to approve any use or disclosure of that data by Big Ag.
Next thing you know, Google or Amazon or Twitter or the NSA will ask you before it sells or leases your data to someone else. Gotta love it.