* Systems evaluation, counseling and recommended remediation to ensure compliance with applicable laws and regulations governing employee health information, including the HIPAA privacy and security rules, the HITECH Act, GINA and the ADA. * Counseling for applicable and ever-changing industry requirements of the federal and state privacy-related laws and regulations. Compliance monitored and updated in monthly reports. * Direct access to a SmartCyber Law attorney for cyber-related questions, tasks or projects.

* **Industry-Leader Counseling** * Compliance with Payment Card Industry Data Security Standards (PCI-DSS) pre-incident and post-data breach obligations. * Conducting due diligence and advising on compliance with privacy and data security laws in the sale and acquisition of company assets, including customer lists and databases containing personally identifiable information. * **Privacy Policies and Contracts** * Drafting internal, client-facing and third-party privacy and security policies. * Counseling management on workplace privacy issues, including employee monitoring, whistleblower laws and safeguarding of employees' personal data. * Fair Credit Reporting Act requirements in employee screening and investigations, and faithless servant data theft litigation. * Drafting consumer-facing disclosures, including privacy policies, terms of use and service, and social-media policies. * **Workplace Cyber Risk Services** * Training employees to reduce the risk of a security breach and the way to respond appropriately when one occurs. * Employee training and handbooks. * Monthly updates on the latest schemes hackers are using. * An Incident Response Plan (IRP), tabletop exercises and information regarding post-breach reporting and notice requirements.

* **Advanced Industry-Leader Counseling** * Auditing multitiered contractual privacy obligations pertaining to third-party online ad-serving companies, and instituting policies and procedures for data collection, use and disclosure. * Advising multinational retailers on privacy policies, terms of use and terms of sales to comply with FTC and FCC regulations, and advising on compliance for sweepstakes, advertising promotions and product-placement agreements. * **Advanced Privacy Policies and Contracts** * Insurance audit and ongoing evaluation of insurance needs and consultation for policy coverage. * **Advanced Workplace Cyber Risk Services** * Counseling on the development of policies to regulate the use of the latest technologies that affect the workplace, such as personal devices, web-based media, data loss prevention software, and e-mail and internet monitoring. * Drafting outsourcing contracts that protect the employer with third-party service providers