  |
 |
|
Research and retrieval of news articles by: SPECIAL NOTE TO ALL VISITORS: | ||
 |
|
POOR SECURITY MEANS LOSS OF TRADE SECRETSSource: Security Wire DigestPosted on May 9, 2002 When people think of losses resulting from poor security practices, most think of damages relating to unauthorized access of their systems. However, poor security practices can result in a loss of trade secret protection for a business's most valuable information -- a devastating prospect for most companies. Though entitled to strong protection under the law, trade secrets can be lost if a business fails to make reasonable efforts to protect the secrecy of its information. Common examples of trade secrets include customer lists, formulas and software. Recently in Arkansas, a business unsuccessfully sued a competitor for unauthorized use of its customer and vendor lists, pricing information, software and marketing plans--all of which the business claimed were its trade secrets. The business lost the litigation because it didn't require its employees and customers to sign appropriate software licensing or confidentiality agreements, and allowed customers to transfer software freely from one computer to another. Additionally, technicians failed to change default passwords and promptly fix a software vulnerability, which allowed customers to use the software without a password. Though some points may seem obvious, any good security policy should address these issues: 1. Have each employee sign appropriate confidentiality, intellectual property ownership and non-compete agreements. 2. Educate employees about trade secrets and inform them of their obligations to protect such information, including specific instructions informing them that they continue to be legally bound by their confidentiality agreements, even after leaving the company. 3. Require customers to sign license and/or non-disclosure agreements to limit their use of proprietary information. 4. Require employees to change default passwords and to promptly remedy security bugs in software. Carefully document efforts to resolve security bugs--it can be used to help establish that the business acted reasonably in addressing security flaws in its products. 5. Don't post trade secret information in publicly accessible places like the Internet, unless every visitor is required to agree to terms and conditions regarding their use. Unless access is subject to the acceptance of an online license or non-disclosure agreement, trade secret protection may be lost. By employing these simple procedures, businesses can substantially increase the likelihood that their trade secrets will remain protected. Failing to do so may result in loss of protection for what may very well be the most important assets of the business.
E-Commerce Alerts are issued by Bennett Gold LLP, Chartered Professional Accountants as situations develop. Bookmark this site and check back often. Our e-mail address is: info@BennettGold.ca In accordance with United States Code, Title 17, Section 107 and Article 10 of The Berne Convention on Literary and Artistic Works, the news clippings on this web site are made available without profit for research and educational purposes. |
|
ALERT  WebTrust Is Your Best Defense Against Privacy Breaches. Get WebTrust Working For Your Site. |