Security Basics mailing list archives

RE: PII SSN question

From: "Jay" <jay.tomas () infosecguru com>
Date: Wed, 15 Aug 2007 16:46:39 -0400

Would need to know the industry and locale of the company in question to provide any viable feedback.

e.g. California has tighter rules as a state in US. Japan and Switzerland have tighter rules on the international front.

e.g. Banks and Financial Instiutions regulations are different then aother industries.

Jay


----- Original Message -----
From: Jax Lion [mailto:jv4l1n4 () gmail com]
To: security-basics () securityfocus com
Sent: Wed, 15 Aug 2007 12:38:47 -0400
Subject: PII SSN question

A question for those who have worked on PII and Social Security Number (SSN).

What are the storage and transmission security requirements for SSN?
Are we allowed to store SSN?  What are the rules and/or regulation
that apply?  What does IT have to do to protect it?

Any feedback is appreciated.

Current thread:

PII SSN question Jax Lion (Aug 15)
- <Possible follow-ups>
- Re: PII SSN question levinson_k (Aug 16)
  - Re: PII SSN question Jax Lion (Aug 16)
- Re: PII SSN question levinson_k (Aug 16)
- RE: PII SSN question Jay (Aug 16)