Stephen Treglia

As legal counsel & HIPAA compliance officer in the Investigations section at Absolute, Stephen Treglia provides oversight and guidance on regulatory compliance related to data breaches and other security incidents. Stephen counsels the Absolute Investigations team who conducts data forensics, theft investigations, and device recoveries. Stephen has extensive knowledge of the U.S. regulatory landscape, including SOX, HIPAA, and other industry-specific regulatory bodies.

Prior to Absolute, Stephen concluded a 30-year career as a prosecutor in New York, having created and supervised one of the world’s first computer crime units from 1997-2010.

Steve is a nationwide lecturer on legal issues pertaining to technology law, data privacy and security compliance, searching and seizing digital evidence, the admissibility of computer forensic analysis and other related litigation issues.

The opinions expressed in this blog are those of Stephen Treglia and do not necessarily represent those of IDG Communications, Inc., its parent, subsidiary or affiliated companies.

Memories of 9/11: More than lost buildings

Defining ransomware and data breach disclosure

Defining ransomware and data breach disclosure

Does a ransomware attack cause the “acquisition, access, use or disclosure” of ePHI?” No court decision has yet to address this issue, but expert commentators have taken either side of the argument.

How employees can share the IT security load

How employees can share the IT security load

Security threats weigh heavily on IT and security professionals, and it is a responsibility that they should not bear alone. We all need to do our part to uphold the safeguarding of sensitive data.

The impact of the new Trans-Atlantic privacy law

The impact of the new Trans-Atlantic privacy law

After 20 years of relative calm regarding the handling of personal data of EU citizens by U.S. companies, events over the past six months have instigated widespread reform. While the resolution is yet to be confirmed, the building...

Security negligence goes to court

Security negligence goes to court

The number of people whose data was breached in 2015 exceeded that of the previous year. How do we plan to regulate these cases? What should organizations be compelled to do in order to protect the sensitive information they store?...

FTC ruling suggests upcoming changes for data compliance regulation

FTC ruling suggests upcoming changes for data compliance regulation

Recent data breaches tell us what private and public sector victims are dealing with: disruption, reputational damage, and significant financial repercussions. They can also find themselves attracting the undesirable attention of...

Compliant does not equal protected: our false sense of security

Compliant does not equal protected: our false sense of security

Having regulatory compliance laws in place helps hold organizations accountable and clearly places the onus on organizations to protect the sensitive data they store. So, with regulatory compliance standards in place, does this...

Load More