State Privacy Laws

Guaranteed Encryption and Key Management to Meet State Privacy Requirements

State Privacy Acts

Many states in the US have passed privacy notification laws that require public notification of the loss of Personally Identifiable Information (PII). While the regulations vary from state to state on what defines PII, most states incorporate a broad definition of PII that includes an individual’s social security number, debit and credit card numbers, drivers license, medical ID numbers, identity cards, and address information. The loss of significant amounts of sensitive data triggers a mandatory notification process and, in some cases, potentially severe financial penalties. In most cases an Enterprise is relieved of notification requirements if data is secured with strong encryption.


Strong AES Encryption Methods Ensure that Organizations Meet State Privacy Encryption Requirements

Encryption methods approved by the National Institute of Standards and Technology (NIST) are accepted as adequate protection of PII.

Alliance AES encryption implements the full NIST specification for AES encryption including all encryption key sizes and modes of encryption. This insures compatibility with your business applications, Point-of-Sale systems, external suppliers, and customer solutions.


Secure Transmission of PII Across Open, Public Networks

Townsend Security secure communications and web service solutions support a wide variety of secure protocols for transferring sensitive information across internal and external public networks. Townsend Security encryption solutions include support for secure transfer using SSL FTP, Secure Shell FTP (sFTP), Secure Shell Copy (sCP), HTTP and HTTPS web services, secure WebDAV, secure XML transfer, AS1/AS2/AS3 EDI over the Internet (EDI-INT), and SSL encrypted TCP sockets.


Monitor for Security Breaches

For the IBM i platform, the Alliance LogAgent for IBM i solution collects hundreds of proprietary IBM security journal and system operator messages and transmits them to several SEIM solutions.


Achieve Regulatory Compliance Requirements with Certified Key Management

Separate your encryption keys from your protected data with an easy-to-deploy rack-mounted solution, Alliance Key Manager. Alliance Key Manager provides the secure management, storage, and distribution of encryption keys you need for protecting data in motion and data at rest. Applications on any platform (System i, System z, Windows, Linux, Unix.) can securely retrieve encryption keys from Alliance Key Manager.