Brian D. George, Esq., is compliance manager of the Verisk Analytics iiX unit, a premier provider of motor vehicle reports (MVRs) and preemployment screening services. His areas of specialty include FCRA, DPPA, HIPAA, COPPA and GLB legislation; information security and privacy (NIST, SOC, FISMA, ISO); and consumer reports and background checks. He holds CIPM and CIPP/US certifications from the IAPP and is also NAPBS FCRA certified. He has a bachelor’s degree in political science from Texas A&M University and received his law degree from Thurgood Marshall School of Law.
You have a lot on your plate to manage a business and a workforce that span multiple states, each with its own set of compliance rules and procedures. Add to that a constant stream of changes to those rules, and the job becomes even harder.
The recent Equifax data breach has potentially compromised the personal data of some 143 million Americans–or half the U.S. adult population. In what is thought to be the largest-recorded cyber breach ever, the names, birth dates, addresses, and Social Security and driver’s license numbers of consumers were compromised by unauthorized individuals. Some credit card information may also have been breached.
When it comes to FCRA (Fair Credit Reporting Act) compliance, sometimes the devil is in the details. You’ve been diligent about following the rules regarding your employee background screenings and think you’re in compliance, but that may not be the case.
