Purpose
The Data Security Committee oversees data security and privacy resources, policies and procedures.
Authority
This committee reports directly to the board of directors. The committee has no expressed or implied power or authority.
Membership
The President shall chair the committee. The treasurer, executive director and Technical Committee chair shall serve as members of the committee.
The committee may include non-director and non-member persons whose relevant experience may assist the committee and the board in the performance of their data security responsibilities.
Members
- Josh Charles, president and chair
- Sara Clark, executive director
- Tryon Eggleston, Technical Committee chair
- Robert Heyser, treasurer
Responsibilities
- Review data security plans and policies regularly and make changes as needed.
- Ensure that data security and privacy plans, policies, and procedures are being followed.
- Provide data security resources for staff, volunteers and vendors.
- Run and document an incident response plan exercise at least annually.
- Implement and maintain a security awareness program.
- Monitor data security requirements, laws and other regulations that affect association compliance.
Operations
- Meets no fewer than four times per year, at the call of the chair of the committee or the executive director.
- Maintains minutes of all meetings.
- Reviews this charter annually and recommends changes to the board of directors.
- Follows association policies and procedures.
- Establishes and maintains documentation about committee roles and procedures, including how this committee collaborates with others.
- Communicates and collaborates with other committees and board of directors to accomplish association goals.
- Provides updates to the board of directors following meetings or actions taken.