Stephen Treglia

IDG Contributor Network

Opinions expressed by ICN authors are their own.

As legal counsel & HIPAA compliance officer in the Investigations section at Absolute, Stephen Treglia provides oversight and guidance on regulatory compliance related to data breaches and other security incidents. Stephen counsels the Absolute Investigations team who conducts data forensics, theft investigations, and device recoveries. Stephen has extensive knowledge of the U.S. regulatory landscape, including SOX, HIPAA, and other industry-specific regulatory bodies.

Prior to Absolute, Stephen concluded a 30-year career as a prosecutor in New York, having created and supervised one of the world’s first computer crime units from 1997-2010.

Steve is a nationwide lecturer on legal issues pertaining to technology law, data privacy and security compliance, searching and seizing digital evidence, the admissibility of computer forensic analysis and other related litigation issues.

The opinions expressed in this blog are those of Stephen Treglia and do not necessarily represent those of IDG Communications, Inc., its parent, subsidiary or affiliated companies.

The Latest from Stephen

Breach of Confidence by Stephen Treglia

Defining ransomware and data breach disclosure

Does a ransomware attack cause the “acquisition, access, use or disclosure” of ePHI?” No court decision has yet to address this issue, but expert commentators have taken either side of the argument.

Breach of Confidence by Stephen Treglia

How employees can share the IT security load

Security threats weigh heavily on IT and security professionals, and it is a responsibility that they should not bear alone. We all need to do our part to uphold the safeguarding of sensitive data.

Breach of Confidence by Stephen Treglia

FTC ruling suggests upcoming changes for data compliance regulation

Recent data breaches tell us what private and public sector victims are dealing with: disruption, reputational damage, and significant financial repercussions. They can also find themselves attracting the undesirable attention of...

Breach of Confidence by Stephen Treglia

Compliant does not equal protected: our false sense of security

Having regulatory compliance laws in place helps hold organizations accountable and clearly places the onus on organizations to protect the sensitive data they store. So, with regulatory compliance standards in place, does this...

Memories of 9/11: More than lost buildings

Defining ransomware and data breach disclosure

Does a ransomware attack cause the “acquisition, access, use or disclosure” of ePHI?” No court decision has yet to address this issue, but expert commentators have taken either side of the argument.

How employees can share the IT security load

Security threats weigh heavily on IT and security professionals, and it is a responsibility that they should not bear alone. We all need to do our part to uphold the safeguarding of sensitive data.

FTC ruling suggests upcoming changes for data compliance regulation

Recent data breaches tell us what private and public sector victims are dealing with: disruption, reputational damage, and significant financial repercussions. They can also find themselves attracting the undesirable attention of...

Compliant does not equal protected: our false sense of security

Having regulatory compliance laws in place helps hold organizations accountable and clearly places the onus on organizations to protect the sensitive data they store. So, with regulatory compliance standards in place, does this...