Technology Security: Is Your Organization Safe?

By Kelly A. Hayden, JD, Chief Legal Counsel
Published April 14, 2024

It seems as though nearly everyday you can find a news story about an organization that has suffered a security breach. Just in the past year, Lurie Children’s Hospital, Hyundai Motor Europe, Muscatine Power and Water (serving areas of Iowa), and 23andMe found themselves among the many organizations who suffered ransomware attacks or security breaches. 

No one wants to be in the position of dealing a breach, let alone having to notify employees or customers that their personal information has been exposed. One of many ways to increase data security is to have strong, two-factor authentication for access to company computers. Some employers have shied away from increasing security to avoid the fallout of employees who cannot remember passwords or who do not want to use their personal devices to access work equipment.

Recently, Microsoft rolled out an option that allows users to utilize a “password-less” environment via biometrics and/or company-owned security devices. However, Illinois law prohibits the use of biometrics in the workplace by private sector employers unless the organization complies with the Illinois Biometric Privacy Act, a law at the center of increased litigation over the past few years.

If you are interested in learning more about biometric access to equipment through Microsoft Windows and the resulting legal implications, join us on April 25 for a FREE virtual presentation, Increase Your Security Score, Go Password-less.

Along with Association Technologies, HR Source’s long-time technology support partner, I will discuss the passwordless option and what you need to do in terms of legal compliance, once Microsoft fully implements the change.