Trade Secrets and Confidential Information

By John Watkins, Attorney with Chorey, Taylor & Feil

We have addressed the importance of trade secrets and confidential information previously on this blog and in our series of podcasts.

We have discussed huge jury verdicts that have recently come down against companies found to have violated the trade secret rights of others.

We have also discussed how some prosecutors are now taking an interest in criminal prosecutions of trade secret violations under federal law.

However, it should be noted that a California jury just acquitted two defendants who had been criminally charged with economic espionage.

Although the foregoing should have been enough to get anyone’s attention, the news just keeps coming.

According to recent reports, a Chinese company just agreed to a $200 million settlement of a trade secret case in California.

Associated Press has reported that a former Home Depot manager has been criminally accused of passing trade secret information.

These issues are extremely serious and should be considered carefully by any company large or small.

To reiterate some of the key points: Each company should have practices in place to protect its own confidential information and to assure the confidentiality of the confidential information of others that it has agreed to keep secret.

Potential legal protections should include:

• Non-disclosure agreements (“NDAs”) with employees. These NDAs should cover the company’s information. In addition, if the employee will be handling confidential information of others, the NDA should cover that as well
• NDAs with consultants or outsourced resources
• NDAs with actual or potential suppliers
• NDAs with actual or potential customers
• NDAs with actual or potential investors
• NDAs with potential business “partners”

Depending on a company’s business, there may be other parties who should be subject to an NDA.

It is also a good idea to have company policies stressing the need to protect the company’s own confidential information and trade secrets, and the confidential information and trade secrets of others.

Having an NDA program in place, however, is probably not enough. A company should take other common-sense steps to avoid legal entanglements.

These steps should probably include:

• stressing periodically to employees the need to maintain confidentiality
• advising employees that particular information is sensitive
• making sure that only employees or others with a true need to know have access to confidential or trade secret information
• keeping hard copy confidential or trade secret information under lock and key
• password-protecting or otherwise restricting access to electronically stored information
• restricting copying of sensitive information
• restricting or monitoring use of portable storage media such as thumb drives and portable hard drives. There may well be other steps that a company should take depending on the circumstances.

The one thing a company should not do is assume that it will avoid issues regarding confidential information and trade secrets.

Burying one’s head in the sand may work for an ostrich, but it will not work for businesses in today’s complex and litigious world.

*   *   *

Stay Informed With ISR News Feeds and Email Alerts Here:

Enter your email address:

Delivered by FeedBurner

John Watkins is a full time business litigation and business attorney and a part-time mediator for a firm in Atlanta, Chorey, Taylor & Feil, with a currently focus on trade secret, insurance coverage, shareholder and corporate and commercial contract disputes. At Chorey, Taylor & Feil, a Professional Corporation, we mean business. Serving Georgia, national, and international companies, we provide corporate and business litigation services to a highly diversified client base, ranging from new ventures to middle market companies to the Fortune 500.

The Publisher gives permission to link, post, distribute, or reference this article for any lawful purpose, provided attribution is made to the author and to Information-Security-Resources.com

Filed under: Breach, Chorey Taylor & Feil, Cloud computing, D&O Liability, FEATURE ARTICLE, Financial, ISR News, Insider Threat, John Watkins, PCI, Sarbanes-Oxley, Uncategorized, due diligence, hackers, identity-theft, malware, privacy 

Comments

• ISR Headline Index

  • Hackers Lurking in Hotel Networks
  • 7 Month Vulnerability in Windows Virtual PC
  • How to Secure a Cisco Router
  • On HTML Insecurities…
  • When Social Networking Clashes with Security
  • Spam Block: Public Servants or Vigilantes?
  • Sticky Situations in Social Media
  • Quick Tips for Using Secure Shell
  • Consolidate Compliance With Open Source
  • DoS Attack Reveals Widespread Vulnerabilities
  • Study Shows Employees Put Data at Risk
  • Tracking Google’s Script Kiddie Hackers
  • Newbie Introduction to Digital Forensics Part 2
  • Simple Log Review Checklist Released
  • Press F1 for Help? Microsoft Zero Day Threat!

• Recent Comments

  • Ryan Aslett on Data Loss Prevention Has Jumped the Shark
  • Tom on (Lack Of) Encryption and The HITECH Act
  • ADMIN on Patriot Hacker Hits Jihad With DDoS Attacks
  • Robert Siciliano on Data Loss Prevention Has Jumped the Shark
  • Karen J. Cox on Data Loss Prevention Has Jumped the Shark
  • Scot McLeod on Outsourcing Breach Response Lowers Costs
  • John Marke on Gartner Tells CIOs to Embrace Social Media
  • Social Engineering and Enterprise Security | CIO – Blogs and … | Enterprise Engineering Addict on Gartner Tells CIOs to Embrace Social Media
  • From Russia, With Smartphones on Top 8 Social Media Security Threats
  • Judith Hoffman on Scam Alert: Rogue Gmail Account Phishing
• 
  

  Information Security Resources

  Top network security blogs

• Categories

  • Anthony M. Freed (26)
  • Bill Brenner (2)
  • Bob Violino (1)
  • Bozidar Spirovski (23)
  • Breach (540)
  • Britt Womelsdorf (5)
  • By Dr. InfoSec (2)
  • Cara Garretson (7)
  • CCCNews (1)
  • Chorey Taylor & Feil (8)
  • Christophe Veltsos (2)
  • Christopher Burgess (7)
  • CIOZone (26)
  • Class Action Lawsuit (111)
  • Cloud computing (113)
  • Coby Royer (5)
  • CTO Forum (9)
  • D&O Liability (601)
  • Daniel Wallace (5)
  • Danny Lieberman (11)
  • DataLine (10)
  • David Alexander (2)
  • Derek Crawford (1)
  • Doug Pollack (7)
  • due diligence (310)
  • Fame Foundry (1)
  • FEATURE ARTICLE (428)
  • Financial (587)
  • Fred Leland (7)
  • Gene Kim (3)
  • Government (373)
  • Greg George (5)
  • H1N1 (15)
  • hackers (539)
  • healthcare (134)
  • Heather Bourgoin (1)
  • HomeATM (8)
  • identity-theft (535)
  • IDExperts (17)
  • Ike Z. Devji (1)
  • Infosec Island Network (38)
  • Insider Threat (490)
  • Internet Crime Complaint Center (1)
  • Internet Security Alliance (71)
  • ISR News (321)
  • Jacqueline Herships (2)
  • Jenni Hesterman (3)
  • John M. Salomon (2)
  • John Watkins (7)
  • John-Patrick Skaar (2)
  • Kaliber Data Security and Compliance Consultants (3)
  • Kat Sanders (2)
  • Ken Leeser (3)
  • Kevin L. Jackson (10)
  • Kevin M. Nixon (21)
  • Larry Ketchersid (1)
  • Laton McCartney (7)
  • Lauren Taylor (1)
  • Linda McGlasson (1)
  • malware (501)
  • Mark Smail (1)
  • Mark Wright (1)
  • Mel Duvall (3)
  • Michael Eggebrecht (3)
  • Michael Lohr (1)
  • Michael O'Conner (4)
  • MicroSolved (1)
  • Mike Duncan (3)
  • Mike Meikle (4)
  • Mike Spinney (1)
  • Military (211)
  • national security (453)
  • PCI (308)
  • PCI Security Standards Council (32)
  • Physical Security (11)
  • privacy (552)
  • Rachel James (10)
  • reach (11)
  • Rebecca Herold (16)
  • Richard Stiennon (44)
  • Robert Siciliano (34)
  • Sarbanes-Oxley (502)
  • ScamStop (2)
  • Sean Wilkins (2)
  • Semyon Dukach (1)
  • Simon Heron (14)
  • Software Associates (11)
  • Steven Fox (19)
  • SUPERAntiSpyware (3)
  • Sybase (6)
  • Symplified (5)
  • The Jester (8)
  • The Privacy Professor (16)
  • Thomas R. Fox (8)
  • Tom Groenfeldt (2)
  • Tom McLain (2)
  • Trefis (14)
  • Tripwire (18)
  • Uncategorized (621)
  • virtualization (101)
  • Webcast (49)