New York Life Names Chief Privacy Officer
New medical rules may prompt more such appointments
April 23, 2001 12:00 PM ETComputerworld -
New York Life Insurance Co. last week joined the likes of American Express Co. and Providian Financial Corp. by naming a chief privacy officer (CPO) to uphold privacy standards and procedures.
| | CPO Duties A chief privacy officers responsibilities include:
Source: Survey by PricewaterhouseCoopers, New York. |
The new CPO, Thomas Warga, is a senior vice president at New York Life. He's also in charge of audit and compliance activities, as well as the office of business conduct.
New York Life, a Fortune 100 company, is one of the largest insurers in the country. It recently revised its privacy policy to meet new federal and state privacy laws and will mail copies of the updated policy to customers and subsidiaries later this month. Warga said the company's previous privacy policy was only an internal document.
Warga said he was picked for the job because his experience in auditing and compliance has given him an enterprisewide perspective.
"Also, over the years, I've been able to develop contacts and working relationships with all the managers of all the business units," he said.
Those contacts include relationships with IT managers.
Warga said he plans to work closely with the chief information security officer, who reports to the CIO, to ensure that the security and privacy policies complement and support each other.
There are now between 200 and 300 CPOs in the U.S., according to Alan Westin, head of the Association of Corporate Privacy Officers in Hackensack, N.J. That number may jump to the thousands in the next couple of years, he said.
"Under the Health Insurance Portability and Accountability Act, every entity covered must designate an official to develop and implement privacy policies," said Westin. "That's 60,000 entities."
In Europe, where privacy standards are stricter than in the U.S., there are already thousands of privacy officers; for example, there are 2,000 data protection officers in Germany and 1,200 in Sweden, Westin said.
Privacy proponents have warned, however, that the recent wave of corporate CPO appointments shouldn't distract the nation from the need for even stricter privacy laws.
"What good does a chief privacy officer do if there are no laws?" asked Edmund Mierzwinski, consumer program director at the U.S. Public Interest Research Group in Washington. "The laws we have aren't good enough, particularly in the insurance business."
Financial
Additional Resources



Learn the important issues you must consider before starting your next mobility initiative. Get your mobility white paper from IDC now, compliments of Sybase.
White Papers & Webcasts
Forrester Consulting - Optimizing Users and Applications in a Mobile World
Learn how to successfully deploy a WAN optimization solution that is specifically tuned for a mobile environment!
Faster, Cheaper and Easier to Maintain
Can you afford not to upgrade your servers to today's advanced, energy-efficient technologies?
Effectively Implementing Datacenter Automation
Effectively select and deploy the best datacenter automation solution today!
The State of PCI DSS Compliance at Organizations Today
Download this resource today!
Aligning IT to Business: The Rising Importance of Application Delivery Networks
Application Delivery Networking (ADN) will play a vital role in helping enterprises incorporate strategic technologies to achieve business initiatives.
IDC Research Report: The Business Value of Consolidating on Energy-Efficient Servers
Download this Resource Now!
HP Technology Guide for Scalable Business Solutions
Download This Resource Now!
Mitigate Risk, Lower Costs and Improve Network Efficiency
Create a stable IP network that not only meets today's challenges, but is flexible enough to also meet future demands.
