•  Globalization = distribution of
                              information beyond a single nation
                              (world market).
                          •  Trans-border data flow = how
                              different nations provide privacy
                              protection of an individual's
                              information.
                          •  Convergent technologies.
                          •  Data retrieval advances (vast
                              repositories of personal information
                              exists).
                   •  European Union Principles = information is
                       collected fairly and lawfully only for purposes
                       and only for a reasonable time.  If personal
                       information is transmitted to other countries,
                       they must comply with this rule.
                   •  PII = personally identifiable information.

               Liability of Corporate Officers
                   •  Due care = act with care of someone with
                       similar training.
                   •  Due diligence = implementing controls,
                       ensuring controls are monitored, etc.
                   •  Negligence = [best practices] - (due care +
                       due diligence).
                       •  Negligence is often the shortfall between
                          due diligence/care vs. best practices.
                   •  Board of directors can be personally liable.

               Investigations
               Computer forensics