Eze Castle Integration, a leading provider of IT services, consulting and technology to hedge funds and investment firms, today launched its Eze Privacy Compliance Consulting service to help firms satisfy privacy regulations mandated by state and federal bodies.
Eze Privacy Compliance will help firms identify technical and operational risks, define new policies and execute safeguards to ensure compliance.
High-profile data and security breaches are resulting in new regulations on how investor and employee personal information is managed and maintained. Building on the federal Gramm-Leach-Bliley Act, local state governments are instituting stricter regulations to protect personal information. Massachusetts state law 201 CMR 17.00, which goes into effect January 1, 2010, requires any company that maintains personal information about a Massachusetts resident implement a comprehensive Written Information Security Program (WISP).
The Eze Privacy Compliance service is delivered by Eze Castle's security and compliance consultants who utilize a proven methodology from assessment through implementation. Key elements include:
- Operational and Technical Risk Assessment
- Recommended Policies and Procedures
- Execute Safeguards
- Train and Maintain Program
"Hedge funds and investment firms rely on Eze Castle Integration as a trusted advisor to help them closely monitor regulatory changes and stay on top of their compliance efforts by managing their underlying technology and operational infrastructures," said Bob Guilbert, managing director, Eze Castle Integration. "Eze Privacy Compliance is especially valuable to firms facing more stringent state regulations because it helps safeguard against violations and hefty fines resulting from noncompliance."