Reference

 
 
By Elizabeth Bennett  |  Posted 2003-03-01 Print this article Print
 
 
 
 
 
 
 


: Eight Rules for Data Confidentiality">
Reference: Eight Rules for Data Confidentiality

TAILOR YOUR AGREEMENTS
A mutual NDA may seem smart, but its not always the best solution. If youre working with a software vendor, for example, dont create an obligation to protect their information, which you dont need or want anyway. Cover your own assets with a one-way agreement. For joint ventures or other complex, long-term projects, a mutual NDA may be more appropriate.

DEFINE CONFIDENTIAL UP FRONT
If relying on an outside firm to supervise some of your information systems, your data is at risk. You cannot be too clear about what is confidential. What do you want to protect, and what information would be the most damaging were it to be used without your permission? Decide which communications-e-mail, verbal, instant messages-should be considered confidential.

SING IT: FOR YOUR EYES ONLY This should be the soundtrack for both your request for proposal and your nondisclosure agreement. Make sure the only people who have access to your data are those directly involved with your project.

GIVE ALL YOU CAN, BUT ONLY WHATS NECESSARY
For substantive results, you need an open relationship with your vendor. You dont want to prevent suppliers from doing their jobs by limiting information; on the other hand, a healthy paranoia could serve you well. If you like your vendor, it may be tempting to involve the outfit in unrelated matters, but its probably not worth jeopardizing your data.

REMEMBER, PROPRIETARY IS FUZZY
You may think all intellectual property created for you is yours, but you may not always be able to claim sole ownership. A vendor may say, "Hey, I created this widget, and I should be able to take that knowledge to my next client." There are no easy answers to such questions, says attorney Susan Meyer. Try to identify and discuss such gray areas before the project begins.

GET THEIR SKIN IN THE GAME
Encourage commitment by holding vendors fiscally accountable. Try tying formal compensation, not just bonuses, to performance. "There was a lot of money spent in the go-go days and people failed to see the impact. Now vendors are being held incredibly accountable," says Tom Pisello of Alinean, a return-on-investment consultant. Create baselines prior to the projects start and hold vendors accountable for failures. Of course, dont forget to reward them for successes, as well.

DOCUMENT EVERYTHING, EVEN A HANDSHAKE
After meetings and conferences, you may want to follow up with a note saying, "The information you received in the meeting is confidential." If you dont want your information used in any form—for training or a case study, say—make sure it says so in the initial nondisclosure contract.

THINK BEFORE YOU SUE
Proving an NDA breach can be very difficult. If you think your vendor has divulged or is using confidential information for secondary purposes, assess the current and potential damage before spending time and money on legal proceedings.

Sources: Latham & Watkins, LLP; Porter-Roth Associates; Alinean


 
 
 
 
Senior Writer
Elizabeth has been writing and reporting at Baselinesince its inaugural issue. Most recently, Liz helped Fortune 500 companies with their online strategies as a customer experience analyst at Creative Good. Prior to that, she worked in the organization practice at McKinsey & Co. She holds a B.A. from Vassar College.
 
 
 
 
 
 
 

Submit a Comment

Loading Comments...
 
Manage your Newsletters: Login   Register My Newsletters























 
 
 
 
 
 
 
 
 
 
 
Rocket Fuel