From: Clark F Morris on
On Wed, 26 May 2010 12:44:05 -0600, Howard Brazee <howard(a)brazee.net>
wrote:

>On Wed, 26 May 2010 17:44:02 +0000 (UTC), docdwarf(a)panix.com () wrote:
>
>>>It is easier to move a company's IT offshore than its lawn mowing.
>>
>>It is as easy to move a company's lawn mowing offshore as it is to move
>>its headquarters, entire.
>
>I suppose there is a direct relationship between how much mowing is
>done offshore and how much lawn is offshore, headquarters or retail or
>branch offices, or whatever.
>
>By the time the company no longer exists on-shore then it should have
>a different definition of "off-shore".
>
>Meanwhile my workplace has developers logging into our local computers
>from India.

Has anyone really considered the SOX (Sarbanes Oxley law security
requirements), HIPPA (Health Information Act), PIPEDA (Canadian
privacy act), etc. when hiring people to do work outside the normal
jurisdiction for the entity. It is one thing for IBM or Microsoft to
outsource to India because both companies have a local presence there
and have to be aware of Indian law. It is another thing for a company
which doesn't have a presence there to have people accessing United
States (or Canadian or ...) information.
From: Alistair Maclean on
On May 28, 6:38 pm, Clark F Morris <cfmpub...(a)ns.sympatico.ca> wrote:
> On Wed, 26 May 2010 12:44:05 -0600, Howard Brazee <how...(a)brazee.net>
> wrote:
>
>
>
>
>
> >On Wed, 26 May 2010 17:44:02 +0000 (UTC), docdw...(a)panix.com () wrote:
>
> >>>It is easier to move a company's IT offshore than its lawn mowing.
>
> >>It is as easy to move a company's lawn mowing offshore as it is to move
> >>its headquarters, entire.
>
> >I suppose there is a direct relationship between how much mowing is
> >done offshore and how much lawn is offshore, headquarters or retail or
> >branch offices, or whatever.
>
> >By the time the company no longer exists on-shore then it should have
> >a different definition of "off-shore".
>
> >Meanwhile my workplace has developers logging into our local computers
> >from India.
>
> Has anyone really considered the SOX (Sarbanes Oxley law security
> requirements), HIPPA (Health Information Act), PIPEDA (Canadian
> privacy act), etc. when hiring people to do work outside the normal
> jurisdiction for the entity.  It is one thing for IBM or Microsoft to
> outsource to India because both companies have a local presence there
> and have to be aware of Indian law.  It is another thing for a company
> which doesn't have a presence there to have people accessing United
> States (or Canadian or ...) information.  - Hide quoted text -
>

In the UK, companies have been outsourcing to India their call-centre
requirements for years. Recent availability of USB sticks, etc., has
facilitated the Indian theft of data (including credit card numbers
and personal data). TV programs have highlighted this and articles
have appeared in the computer press confirming the problem and stating
liabilities. UK companies are liable for data theft comitted in India
by individuals and companies contracted as third or fourth parties
(i.e. call centres). What most company directors don't seem to know,
or care nothing for, is the fact that they are individually liable for
criminal and civil penalties where data theft is shown to have
occured. I can't wait for the first banker (not rhymeing slang) to go
to jail for data theft.
From: Anonymous on
In article <08ecaba2-9831-4475-86d4-638b3c30f721(a)j9g2000vbp.googlegroups.com>,
Alistair Maclean <alistair.j.l.maclean(a)googlemail.com> wrote:

[snip]

>In the UK, companies have been outsourcing to India their call-centre
>requirements for years. Recent availability of USB sticks, etc., has
>facilitated the Indian theft of data (including credit card numbers
>and personal data).

The use of a past tense ('has facilitated') rather than a subjunctive
('would/could/might facilitate') indicates that the act has occurred... or
that someone's grammar is sloppy. For the sake of the argument which
follows the former is assumed and people in India have stolen credit card
and personal data.

>TV programs have highlighted this and articles
>have appeared in the computer press confirming the problem and stating
>liabilities. UK companies are liable for data theft comitted in India
>by individuals and companies contracted as third or fourth parties
>(i.e. call centres). What most company directors don't seem to know,
>or care nothing for, is the fact that they are individually liable for
>criminal and civil penalties where data theft is shown to have
>occured. I can't wait for the first banker (not rhymeing slang) to go
>to jail for data theft.

What seems of more interest - or yet another indicator of Folks Protect
Their Own -, Mr Maclean, is that despite these mounds of evidence there's
not been the slightest mention of legal action.

DD