DOCSLIB.ORG

2020 Notice of Annual Meeting & Proxy Statement

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
2020 Notice of Annual Meeting & Proxy Statement 2020 Notice of Annual Meeting & Proxy Statement Armonk, New York March 9, 2020 Dear Fellow Stockholders: On behalf of the IBM Board of Directors, you are cordially invited to attend the Annual Meeting of Stockholders on April 28, 2020 in Louisville, Kentucky. It is an exciting time for your Company. As you know, we recently announced a leadership transition. While I will continue to serve IBM as Executive Chairman through my retirement at the end of the year, this ismy last Proxy letter to you as the IBM Chairman. A time of change provides an opportunity both to look back at our foundation of corporate responsibility, responsible stewardship and strong governance, and also to look forward and tell you why I am so optimistic about IBM’s future. Corporate Responsibility and Sustainabilityis Smart Business From hiring our first disabled employee in 1914 to being named one of Ethisphere’s 2020 World’s Most Ethical Companies, and everythingin between, corporate responsibility and sustainability have been a part of our DNA since IBM’s founding over a century ago. This year, for the first time, we provide a timeline with some of the highlights of our responsible citizenship at the back of this Proxy Statement. As you will see in the Proxy this year: • We foster a diverse and inclusive workplace and empower IBMers to serve their communities. • We created P-TECH, a pioneering education reform initiative that prepares young people with the academic, technical and professional skills required for 21st centuryjobs. • We are committed to environmental leadership, as evidenced by the publication of our 29th consecutive IBM and the Environment Report and our record seventh Climate Leadership Award from the Center for Climate and Energy Solutions and The Climate Registry in the program’s eight- year history. The FutureofIBM • We are leaders in technology ethics and data stewardship, demonstrated by our Principles of Trust and Transparency. I am proud of the work we have done to build the foundation of stronggovernance, corporate responsibility and responsible Simply put, we are defining responsible stewardship inthe stewardship. We are well-positioned to lead our clients into the digital age. next chapter of the cloud and cognitive era. Last year, we closed the landmark acquisition of Red Hat. Combining Red Hat’s Cultural Commitment to Sound Governance leading hybrid multi-cloud platform with IBM’s scale and Good corporate governance is also good for business. Looking expertise, we have created an unparalleled combination to back, we have improved our governance in numerous ways, accelerate clients’ shift to hybrid cloud. based substantially on feedback and discussions with you, our As we move into the next chapter, it istheright time for a new stockholders. leader to continue the journey for IBM and our clients. On April For years, we have had an outreach program to engage both 6th, Arvind Krishna will become the tenth CEO of IBM. Arvind institutional and retail investors on corporate governance issues. was a principal architect of our Red Hat acquisition and is a More recently, we expanded this effort from proxy season to a brilliant technologist and superb operational leader. He isthe year-round engagement, ensuring that we continuously elicit right CEO at the right time for IBM. Along with Jim Whitehurst, feedback to implement in our governance practices and the incoming President, the Board has elected a proven technical disclosures. and business-savvy leadership team. To enhance transparency and accountability, in 2017, we It has been my great honor to lead IBM inthistime and I would redesigned our Proxy Statement, adding disclosure inkey like to thank you, our stockholders, for your continued investor focus areas, including cybersecurity oversight, human investment and support of IBM. capital management practices and stockholder engagement. Very truly yours, In 2014, we implemented an independent Lead Director role, based on feedback from our stockholder engagement process, and in 2017 we adopted proxy access based on a stockholder vote. And over the last eight years, the Board has consistently sought to ensure continued vitality and new and diverse perspectives in the boardroom, reflected with our averagedirector tenure of Virginia M. Rometty less than 6 years. Chairman of the Board Armonk, New York March 9, 2020 A Message from our Lead Director: As IBM’s independent Lead Director, I am pleased to report to you onthe Board’scontinued efforts toensure theeffectiveness of our governance structures and processes, and to provide perspective on our recent election of Arvind Krishna as IBM Director and the tenth Chief Executive Officer in IBM’s history as a model in succession planning. • World-Class Succession Planning. One of the Board’s most important responsibilities is to ensure that IBM has the appropriate management to execute the Company’s long-term strategy. In January, we announced that after more than eight years leading the Company, Ginni Rometty will transition to the role of Executive Chairman of the Board before retiring after nearly 40 years with the Company.OnApril 6, 2020, Arvind Krishna, IBM Senior Vice President for Cloud and Cognitive Software, and a principal architect of the Company’sacquisition short- andlong-term corporate strategy. The Board meets of Red Hat, will become Chief Executive Officer and a member several times each year to discuss key areas such as risk of the Board. James Whitehurst, Senior Vice President and CEO management, capital allocation, industry developments and of Red Hat, will become IBM’s President. Ginni has provided broader market trends to help ensure that IBM is outstanding leadership, substantially transforming IBM and continuously transforming for the future. ushering in a new cloud and cognitive era. With that foundation, the Board is confident that Arvind is the right CEO to lead IBM. • Engagement with Stockholders. The Boardasawhole The Board ran a world-class, multi-year succession process, believes input from stockholders is important to its overall and found in Arvind a leader with the business acumen, decision making process, and regularly considers operational skills and technology vision to guide IBM going stockholder views when making board level decisions. In forward. 2019, we continued our best-in-class engagement program, meeting with many of our top stockholders on matters • The IBM Board. We are continuously focused on ensuring that ranging from company strategy to board and governance IBM has an optimal Board structure and composition. Each time topics to sustainability matters. As the independent Lead we evaluate our leadership structure, add a new director, or Director, I once again participated in this year’s outreach change the composition of our Board committees, we do so ina efforts along with our Chairman and members of senior thoughtful manner to ensure that the right mixofskills, management. experiences, and perspectives are brought to our meetingsand discussions. In addition to Dr. Krishna, the Board continued our • Commitment to Sustainability and an Ethical Business commitment to independent board refreshment by adding two Culture. IBM pursues the highest standards of corporate directors since the last Annual Meeting of Stockholders: Mr. F. responsibility in all we do and the Board is actively engaged William McNabb III, the former Chairman and CEO of Vanguard, in overseeing the Company’s sustainability efforts. Our and a leader in the field of corporate governance, and Thomas commitment to sustainability means supporting and Buberl, CEO of AXA S.A., an acknowledged leader indigital empowering employees, working with clients and suppliers, transformation. and governing our Company with integrity as part of a long-term value creation strategy at IBM. • Independent Board Leadership. As IBM’s independent Lead Director, I am responsible for helping ensure that the Board Your Board believes that an ongoing commitment to good exercises prudent judgment, independent from the corporate governance enhances stockholder value, particularly management team of the Company. I perform many duties, as over the long term. described within this Proxy Statement, including presiding over an executive session of the independent directors of the Board We appreciate your investment in IBM and hope that you vote at each Board meeting, without management present. I also at our Annual Meeting on April 28, 2020. approve all of the Board meeting schedules, agendas and materials. Very truly yours, • Oversight of Corporate Strategy. Our Board believes that engaged oversight of Company strategy is essential to the Company’s creation of long-term sustainable value. The Michael L. Eskew Board’s diverse skill set and experience with, among other Lead Director areas, corporate culture, executive management, corporate strategy development, and the technology industry is well suited to oversee IBM’s development and execution of both Table of Contents 2020 Notice of Annual Meeting & Proxy Statement 1 Report of the Audit Committee of the Boardof Directors 71 ProxySummary2 Audit and Non-Audit Fees 72 IBM Board of Directors 7 2. Ratification of Appointment of Independent 1. Election of Directors for a Term of One Year 10 Registered Public Accounting Firm 73 Board and Governance 17 3. Management Proposal on Advisory Vote on Executive Compensation (Say on Pay)74 Committees ofthe Board 17 4. Stockholder Proposal on Shareholder Right to Corporate Governance 20 Remove Directors 75 Certain Transactions
Load more

Recommended publications
  • Compliance & Legal Sections Annual Virtual Meeting 2020
    Compliance & Legal Sections Annual Virtual Meeting 2020 Registration List Name Title Company City/State Kristin M. Abbott Director, Compliance & Regulatory Affairs ACLI Washington, DC Amber L. Adams VP, Chief Legal Counsel, Chief Compliance American-Amicable Life Insurance Company of Waco, TX Officer & Asst Corporate Secretary Texas Dwain A. Akins Senior Vice President, Chief Corporate American National Insurance Company Galveston, TX Compliance Officer Joseph Arite Director, Legislative Relations Guarantee Trust Life Insurance Company Glenview, IL Kate Austin Senior Counsel Allianz Minneapolis, MN Randi J. Bader Vice President & Associate General New York Life New York, NY Counsel Lauren A. Barbaruolo Corporate Counsel & Director, Compliance Oxford Life Insurance Company Phoenix, AZ Chad Batterson Vice President, Compliance Athene Annuity and Life Company West Des Moines, IA Erin Baum Consultant, Ethics & Compliance CUNA Mutual Group Madison, WI John Baumgardner Supervisor, Compliance Team Standard Insurance Company Portland, OR Simon Berry Senior Counsel Great American Life Insurance Company Cincinnati, OH Mona Bhalla Deputy Superintendent Life Insurance New York State Department of Financial Services New York, NY Division Laura Blahosky Compliance Counsel, Compliance & Federated Life Insurance Company Owatonna, MN Government Relations Lester L. Bohnert General Counsel Modern Woodmen of America Rock Island, IL Timothy H. Bolden Vice President, Chief Compliance Officer American Fidelity Assurance Company Oklahoma City, OK Patricia Diane Boyette Vice President, Chief Compliance Officer Southern Farm Bureau Life Jackson, MS Corinne L. Brand Counsel State Farm Bloomington, IL 12/14/2020 American Council of Life Insurers acli.com Page 1 Compliance & Legal Sections Annual Virtual Meeting 2020 Registration List Name Title Company City/State JoAnne Breese-Jaeck Chief Privacy Officer Northwestern Mutual Milwaukee, WI Kermitt J.
    [Show full text]
  • The Operating Model: Business Process Standardization And
    UVA Center for the Management of Information Technology March 6, 2009 Strategy Execution and the Role of the CIO/IT Jeanne W. Ross Director & Principal Research Scientist Center for Information Systems Research (CISR) MIT Sloan School of Management Phone: (617) 253-2348, Fax: (617) 253-4424 [email protected]; http://mitsloan.mit.edu/cisr/ This research was made possible by the support of CISR sponsors and patrons. Center for Information Systems Research (CISR) © 2009 MIT Sloan CISR - Ross MIT CISR gratefully acknowledges the support & contributions of its Research Patrons and Sponsors. CISR’s Mission Research Patrons • Founded in 1974; CISR has a strong track record of practice-based research on how firms – Boston Consulting Group – Gartner manage & generate business value from IT – BT Group – IBM Corporation – Diamond Management & – Microsoft Corporation • Research is disseminated via electronic Technology Consultants – Tata Consultancy Services research briefings, working papers, research workshops & exec. ed. programs including Research Sponsors http://mitsloan.mit.edu/cisr/education.php – Aetna Inc. – Det Norske Veritas – Mohegan Sun – Allstate Insurance Co. (Norway) – NASA 2009 CISR Research Projects – ANZ Banking Group – DHL Global Management – Nissan North America (Australia) GmbH (Germany) – Nomura Research The View from the Top: IT and Business Value – AstraZeneca – Direct Energy Institute, Ltd. (Japan) Pharmaceuticals, LP – Embraer – Empresa – Parsons Brinckerhoff • Achieving Superior Business Value from IT – Banco Bradesco S.A. Brasileira de Aeronautica – PepsiAmericas, Inc. —A Single Framework of What Matters (Brazil) S.A. (Brazil) – PepsiCo International • Communicating Effectively about IT Value – Banco Itaú S.A. (Brazil) – EMC Corp. – Pfizer Inc. • Maturing and Globalizing IT Governance – Bank of America – ExxonMobil Global – PNC Global Investment – BP Services Co.
    [Show full text]
  • From Community to Prosperity
    FROM COMMUNITY TO PROSPERITY Ben Hecht Living Cities “Past performance should not be seen as an indicator of future success.” nyone who has ever had to decide among investment options, whether for retirement, an endowment, or savings, should be familiar with this warning. Just because a certain investment achieved a 20 percent return over the past 10 years does not mean it will Aperform anywhere close to that over the next 10. No admoni- tion is more appropriate for the community development industry today. Since the 1960s, this sector has grown and produced staggering returns: billions of dollars in private capital invested; millions of affordable housing units built; the development of an extraor- dinary number of high-performing local, regional, and national 192 Investing in What Works for America’s Communities 11292_Text_CS5_r1.indd 192 9/11/12 2:08 PM nonprofit organizations; and the creation of the most successful private-public partnership the nation has ever seen, the Low Income Housing Tax Credit. These successes were largely achieved in a different era, before community was redefined by revolutionary forces of change— primarily, globalization and the internet—that have reshaped not only America but also the world and America’s place in it. Despite the heady successes in this sector, our work has not had the effect that many of us intended: a material impact on the number of Americans living in poverty. Our long-held assumptions about the levers required to address poverty in a globalized world, and the appropriate role of place in that effort, are being challenged. Community development must move from an industry viewed by many as focused on managing decline—think older industrial cities—to one that is ushering change in new collaborative ways, disrupting obsolete and fragmented systems, keeping an eye on underinvested places, and connecting low-income people to economic opportunities wherever they exist in this hyperconnected world.
    [Show full text]
  • Binding Corporate Rules for Employees
    Employee Privacy Rules version April 2011 SHELL EMPLOYEE PRIVACY RULES Contents 1 Article 1 – Scope and Applicable Law ................................................ 2 2 Article 2 – Purposes for Processing Employee Data ............................... 3 3 Article 3 – Processing Sensitive Data ................................................ 5 4 Article 4 – Additional requirements for Processing Data of Dependants ....... 5 Article 5 – Employee Consent ......................................................... 7 6 Article 6 – Quantity and Quality of Data ............................................ 9 7 Article 7 – Information Requirements .............................................. 10 8 Article 8 – Employee Rights of Access and Rectification .......................... 9 Article 9 – Security and Confidentiality Requirements ......................... 12 10 Article 10 – Automated Decision Making ........................................... 12 11 Article 11 – Transfer of Employee Data to Third Parties ....................... 13 12 Article 12 – Overriding Interests ..................................................... 15 13 Article 13 – Supervision and Compliance .......................................... 17 14 Article 14 – Complaints procedure .................................................. 17 15 Article 15 – Remedies .................................................................. 18 16 Article 16 – Sanctions for non compliance ......................................... 20 17 Article 17 – Effective Date, Transition Periods and publication
    [Show full text]
  • 2020 Proxy Statement
    2020 Proxy Statement Dear Fellow Owner: Welcome to Truist! We are inviting you to attend the Annual Meeting of Shareholders of Truist Financial Corporation at 11:00 a.m. (EDT) on Tuesday, April 28, 2020. This year’s meeting will be held at the Belk Theater at the Blumenthal Performing Arts Center, 130 N. Tryon Street, Charlotte, North Carolina 28202. Shareholders as of the record date of February 21, 2020 are invited to attend. Last year, we made banking history by combining two forward-looking and like-minded companies – BB&T and SunTrust – to create Truist, a premier financial institution driven by a strong shared culture to accelerate our relentless pursuit of innovation. Now, we have an incredible opportunity to fulfill the Truist purpose to inspire and build better lives and communities. Our merger of equals created the nation’s sixth largest commercial bank, serving 10 million consumer households and a full range of business clients in many of the nation’s highest growth markets. Truist will chart a new course in our industry as we seamlessly blend a high level of personal touch with cutting-edge technology to build a higher level of trust with our clients. We are truly better together. We wanted to take this opportunity to thank President and Chief Operating Officer William H. Rogers, Jr. (“Bill”) for the extraordinary opportunity he has helped create for our shareholders, teammates and communities. As SunTrust’s CEO, Bill’s vision and leadership was essential to build the foundation for successfully bringing together the two great heritages of BB&T and SunTrust.
    [Show full text]
  • Notice of Annual and Special Meeting of Shareholders of Information Services Corporation to Be Held on May 17, 2017 and Management Information Circular
    Notice of Annual and Special Meeting of Shareholders of Information Services Corporation to be held on May 17, 2017 and Management Information Circular April 12, 2017 isc.ca TSX:ISV 202106_CF_ISC_MIC_NEW | Black | 10-Apr-1712:27:31 Contents Page Letter to Shareholders 3 Notice of Annual and Special Meeting 4 Management Information Circular 5 About the Meeting 6 Who Can Vote 6 Appointment of Directors by Province of Saskatchewan 7 Principal Owners of Class A Shares 7 How to Vote 7 Electing Our Directors 11 Appointing Our Auditors 20 Approval of Amended and Restated Stock Option Plan 21 Corporate Governance and Board Committees 25 Director Compensation 29 Executive Officers 32 Compensation Discussion and Analysis 34 Employee Agreements, Termination and Change of Control Benefits 47 Securities Authorized for Issuance Under Equity Compensation Plans 48 Additional Information 49 Appendix A – Amended and Restated Stock Option Plan 50 2 ISC®MANAGEMENT INFORMATION CIRCULAR 2017 202106_CF_ISC_MIC_NEW | Black | 10-Apr-1712:27:31 April 12, 2017 Dear Shareholder: We are pleased to invite you to the annual and special meeting of shareholders of Information Services Corporation (“ISC”), which will be held at 9:00 a.m. (Saskatchewan time/MDT) on May 17, 2017, at Innovation Place, 6 Research Drive, Regina, Saskatchewan. The annual and special meeting is an opportunity to consider matters of importance to ISC and shareholders. We look forward to your participation in person or by proxy at the meeting. You are encouraged to read the accompanying Management Information Circular in advance of the meeting, which describes the business to be conducted at the meeting and provides information on ISC’s approach to executive compensation and governance practices.
    [Show full text]
  • Annual Privacy Report
    U.S. DEPARTMENT OF JUSTICE ANNUAL PRIVACY REPORT THE CHIEF PRIVACY AND CIVIL LIBERTIES OFFICER AND THE OFFICE OF PRIVACY AND CIVIL LIBERTIES OCTOBER 1, 2016 – SEPTEMBER 30, 2020 1 (MULTI) ANNUAL PRIVACY REPORT MESSAGE FROM THE CHIEF PRIVACY AND CIVIL LIBERTIES OFFICER I am pleased to present the Department of Justice’s (Department or DOJ) Annual Privacy Report, describing the operations and activities of the Chief Privacy and Civil Liberties Officer (CPCLO) and the Office of Privacy and Civil Liberties (OPCL), in accordance with Section 1174 of the Violence Against Women and Department of Justice Reauthorization Act of 2005. This report covers the period from October 1, 2016, through September 30, 2020. The Department’s privacy program is supported by a team of dedicated privacy professionals who strive to build a culture and understanding of privacy within the complex and diverse mission work of the Department. The work of the Department’s privacy team is evident in the care, consideration, and dialogue about privacy that is incorporated in the daily operations of the Department. During this reporting period, there has been an evolving landscape of technological development and advancement in areas such as artificial intelligence, biometrics, complex data flows, and an increase in the number of cyber security events resulting in significant impacts to the privacy of individuals. Thus, the CPCLO and OPCL have developed new policies and guidance to assist the Department with navigating these areas, some of which include the following:
    [Show full text]
  • Global Privacy Code (Uk)
    JPMorgan Chase & Co GLOBAL PRIVACY CODE (UK) The JPMC Global Code of Conduct expresses JPMC’s commitment to conduct its business in accordance with high ethical standards and in accordance with applicable laws and JPMC policies, including with respect to the protection of personal information. This Privacy Code explains how JPMC will protect the personal information of its employees, customers, suppliers, business partners and related individuals in its role of data controller. Capitalized terms have the meaning set out in Annex 1 (Definitions). ARTICLE 1 – SCOPE, APPLICABILITY, AND IMPLEMENTATION Scope 1.1 This Privacy Code applies to JPMC’s global Processing of personal information as a Data Controller, with respect to (a) Customers, Suppliers, Business Partners, and other individuals in the context of its business activities and (b) Employees and their Dependents in the context of Employees’ working relationship with JPMC, in each case where such personal information is subject to UK Data Protection Law (or was subject to UK Data Protection Law prior to the transfer of such personal information to a Group Company outside of the UK) (respectively, CSB Information and Employee Information; together, Personal Information). This Privacy Code applies to the Processing of Personal Information by electronic means or in systematically accessible paper-based filing systems. The Privacy Code covers all types of Personal Information which JPMC Processes in the context of its business activities and employment relationships. The Personal Information
    [Show full text]
  • Privacy Officer Job Description, Role and Responsibility
    Privacy Officer Job Description, Role and Responsibility Presentation by: Brent Saunders Karen Owen Dunlop S I D L E Y & A U S T I N HIPAA requires health care organizations that transmit or maintain “protected health information” to designate a “Privacy Official” Chief Privacy Officer “CPO” ♦ A high-level Management or Officer Position ♦ The focal point for privacy compliance-related activities Privacy Official Duties: Big Picture ♦ Implementing corporate policies and procedures ♦ Conducting educational programs ♦ Auditing and administering privacy program reviews Privacy Official Access ♦ Board ♦ Chief Compliance Officer ♦ General Counsel ♦ Chief Operating Officer Role Reflects Entity ♦ Size ♦ Structure ♦ Composition ♦ Lines of service ♦ Current and potential exposure to Protected Health Information – “PHI” Role of the CPO ⇒ GENERAL: ♦ Leadership for privacy program ♦ Compliance related to privacy, security, confidentiality ♦ Liaison to regulatory and accrediting bodies Continued... ⇒ GENERAL: ♦ Collaborate on cyber privacy and security policies and procedures ♦ Monitor systems development and operations for security and privacy compliance ♦ Counsel relating to business partner contracts Role of the CPO ⇒ SPECIFIC ♦ Develop Corporate Privacy Policies & Procedures ♦ Handling (acquisition and management) of PHI; Corporation’s Notice of Information practices ♦ Use and disclosure of PHI Continued... ⇒ Specific: ♦ Individual requests for Restriction of Use and Disclosure of PHI ♦ Access/Inspection/Copying of PHI ♦ Amendment/correction of PHI ♦ Accounting of Disclosures ♦ Record-keeping Procedures ♦ Administrative Procedures Access/Disclosure Verification Procedures ♦ Individual requesting access who is the subject of the protected health information ♦ Emergency circumstances, including next-of-kin ♦ Power-of-attorney/legal authority Continued... Access/Disclosure Verification Procedures ♦ Public health oversight bodies ♦ Coroners and Medical Examiners for law enforcement ♦ Government health data systems for specific classes of information Continued..
    [Show full text]
  • Chief Information and Privacy Officers
    ABOUT CENTER FOR DEMOCRACY & TECHNOLOGY The Center for Democracy & Technology is a 501(c)(3) working to promote democratic values by shaping technology policy and architecture, with a focus on the rights of the individual. CDT supports laws, corporate policies, and technological tools that protect privacy and security and enable free speech online. Based in Washington, D.C., and with a presence in Brussels, CDT works inclusively across sectors to find tangible solutions to today's most pressing technology policy challenges. Our team of experts includes lawyers, technologists, academics, and analysts, bringing diverse perspectives to all of our efforts. Learn more about our experts or the issues we cover: https://cdt.org/ ​ ABOUT STUDENT PRIVACY CDT’s vision for the Student Privacy Project is to create an educated citizenry that is essential to ​ ​ a thriving democracy by protecting student data while supporting its responsible use to improve educational outcomes. To achieve this vision, CDT advocates for and provides solutions-oriented resources for education practitioners and the technology providers who work with them, that center the student and balance the promises and pitfalls of education data and technology with protecting the privacy rights of students and their families. Authored by Elizabeth Laird, CDT Student Privacy Senior Fellow CHIEF PRIVACY OFFICERS:... ​ Who Are They and Why Education Leaders Need Them... ​ Executive Summary... ​ To respond to new demands to protect student data, the education system would benefit from deploying a strategy that has been successful in other sectors and industries: hiring a chief privacy officer (CPO) who is responsible for the organization’s privacy policies and practices.
    [Show full text]
  • Handbook for Safeguarding Sensitive Personally Identifiable Information
    Handbook for Safeguarding Sensitive Personally Identifiable Information March 2012 March 2012 Dear Colleagues, I am pleased to share with you the newly revised edition of the DHS Privacy Office’s Handbook for Safeguarding Sensitive PII (Handbook) which applies to every DHS employee, contractor, detailee, intern and consultant. This Handbook provides guidelines to help you safeguard Sensitive Personally Identifiable Information (PII) in both paper and electronic form at DHS. Your component Privacy Officer, component Privacy Point of Contact (PPOC), Program Office, or System Owner may set additional or more specific rules for handling PII, particularly Sensitive PII, based on the sensitivity of the information involved. The Handbook provides step-by-step guidance on how to identify and protect Sensitive PII: • In the office, or while traveling or teleworking • On a portable electronic device, such as a Blackberry, laptop, or USB flash drive • When emailing, faxing, or by other electronic transfer • When mailing externally, overseas and inter-office • When storing on a shared drive or SharePoint The Handbook also provides simple instructions on: • Encrypting Sensitive PII • Securing Sensitive PII when not in use • Disposing of Sensitive PII By observing these guidelines, you will be doing your part to protect the Sensitive PII of our employees, contractors, and the public, and helping to prevent a privacy incident. If you have any questions regarding this Handbook, please contact your component Privacy Officer or PPOC. You may also call us
    [Show full text]
  • Privacy on the Books and on the Ground
    Forthcoming, Stanford Law Review, vol. 63 (2010) Draft of 3/10/10 PRIVACY ON THE BOOKS AND ON THE GROUND Kenneth A. Bamberger* & Deirdre K. Mulligan** Abstract U.S. privacy law is under attack. Scholars and advocates criticize it as weak, incomplete, and confusing, and argue that it fails to empower individuals to control the use of their personal information. The most recent detailed inquiry into corporate treatment of privacy, conducted in 1994, frames these critiques, finding that firms neglected the issue in their data management practices because of the ambiguity in privacy mandates and lax enforcement. As Congress and the Obama Administration consider privacy reform, they encounter a drumbeat of arguments favoring the elimination of legal ambiguity by adoption of omnibus privacy statutes, the EU’s approach. These critiques present a largely accurate description of privacy law “on the books.” But the debate has strangely ignored privacy “on the ground”—since 1994, no one has conducted a sustained inquiry into how corporations actually manage privacy, and what motivates them. This omission is especially striking because the neglect of the 90s has been replaced by a massive dedication of corporate resources to privacy management, the inclusion of privacy officers at the c-suite level, and the employment of a 6,500-strong cadre of privacy professionals. This Article presents findings from the first study of corporate privacy management in fifteen years, involving qualitative interviews with Chief Privacy Officers identified by their peers as industry leaders. Spurred by these findings, we present a descriptive account of privacy “on the ground” that upends the terms of the prevailing policy debate.
    [Show full text]