Houston founders: How safe is your company's data?

guest column

Stay informed and regularly check your security procedures to protect yourself, your business, and your customers. Photo via Getty Images

As news comes out every week about new technologies, from new crypto wallets to generative AI to self-driving taxis, it can get overwhelming for most of us to keep up or to understand the new intricacies of technology, and it can get easy to say, “The IT department has it covered.” Well, do they have it covered?

Far too often, companies fail to protect its data with the same muster as its financial security until it is too late. Just as a healthy business will regularly conduct audits of its accounting processes to detect potential fraud, ensure regulatory compliance, and locate areas of improvement for the organization, the same should be done for a business’s data security practices. Key components of any organization are its people and its information, and the IT department is in charge of protecting that information.

We as business people need to ensure that the company’s technology personnel are indeed securing one of the company’s most valuable assets: information.

Big picture: Your business needs to follow an audit process

  1. Confirm the scope of your data
  2. Conduct an internal review of all security practices
  3. Conduct a review of all vendor practices that have access to your data
  4. Confirm compliance with regulations and contractual obligations
  5. Prepare a report with detailed findings and recommendations to improve on year-over-year

Data: What do you have and what duties does it require?

Personal information, particularly when it belongs to customers, is the most frequently compromised type of data. Under laws like the newly passed Texas Data Privacy and Security Act (TDPSA), businesses can have additional obligations to keep this information protected. Personal information can include any information “that is linked or reasonably linkable to an identified or identifiable individual.”

Sensitive data also requires extra precaution, which means protecting (1) personal data that reveals racial or ethnic origin, religious beliefs, mental or physical health diagnosis, sexuality, or citizenship or immigration status; (2) genetic or biometric data that is processed for the purpose of uniquely identifying an individual; (3) personal data collected from a known child; or (4) precise geolocation data.

Other types of data to watch out for include the business’s intellectual property, anonymized customer data, employee personal information, and any other type of proprietary business data. Depending on the industry, the cost of a breach of any of these types of data could be incredibly high, particularly for healthcare and finance.

Ultimately, Texas businesses are required to maintain reasonable procedures to protect personal information, and there may be other laws implicated such as HIPAA, GLBA, CCPA/CPRA, BIPA, GDPR, PIPEDA, and many more, depending on where business is done, the industry implicated, and, in some cases, where customers are located.

"But I think the vendor is responsible."

Check your contracts, and check if the law requires you to have a duty to protect the compromised information, as many do. Involve your IT department in the review of technical compliance whenever you are sharing data with a third party. Further, it is important to make sure that however the Data Processing Addendum says the vendor is processing data is how they are actually processing data. To that point, if you are processing someone else’s data, your business also needs to be doing what it says it is doing, in contracts with third parties and in your Privacy Policy.

Software as a service arrangements, end user license agreements, and other internet and software-based services may require you to hand over data and not give you the opportunity to customize and shift risk. This is why it is important to thoroughly evaluate what technical protections are in place because the risk and duty may still fall on your business regarding the data of your customers and employees. Ask yourself (or your IT professionals) if the vendor actually needs the data they receive to provide services to you.

Key takeaway: Stay informed

Your business needs checks and balances in place with the IT department to ensure you know what they are (or are not) doing and what they are supposed to do. You need policies and procedures, and they need to regularly be tested.

Do you know where your data is stored, both internally and with third parties? Who controls it? How is it being processed, and is anything being shared? Are encryption procedures in place? Firewalls, Intrusion Protection Systems, and End-Point Detection and Response? Do you and your vendors have Incident Response Plans? Stay informed and regularly check your security procedures to protect yourself, your business, and your customers.

------

Courtney Gahm-Oldham is partner at Frost Brown Todd. Lauren Cole is associate at Frost Brown Todd.

From Your Site Articles
Ad Placement 300x100
Ad Placement 300x600

CultureMap Emails are Awesome

Property Showcase

Axiom Space officially redomiciles its headquarters in Texas

space city

Axiom Space has claimed Houston as its operational home since 2016. And now it can call Texas its official legal headquarters, too.

The spacetech company, which is developing the first commercial space station, Axiom Station, has officially redomiciled its legal headquarters from Delaware to Texas, Axiom announced this week.

Axiom employs approximately 700 people, the majority of whom are in Texas, according to a news release. Its Assembly Integration and Test Facility was built as an anchor of the Houston Spaceport, and the company is also developing next-generation spacesuits at its Houston-based spacesuit lab.

“Texas has demonstrated, consistently and deliberately, that it wants innovative companies to thrive here and has built the policy and regulatory framework accordingly,” Jonathan Cirtain, CEO and president of Axiom Space, said in the release. “For Axiom Space, establishing Texas as both our operational and legal home puts us squarely in a state that understands our mission, supports our industry, and shares in what we are working to achieve.”

Axiom touts Texas's "financial and infrastructural commitments" to the space economy as reasons for the move, including programs and grants from organizations such as the Texas Space Exploration & Aeronautics Research Fund (SEARF), the Texas Space Commission, and the Texas A&M Space Institute.

Axiom was previously awarded a $5.5 million SEARF grant for the development of its orbital data center capabilities last year.

The news comes as energy giant ExxonMobil also announced concrete plans to redomicile its legal headquarters in Texas. Exxon's board of directors unanimously recommended redomiciling in the Lone Star State in March. The company announced this week that the move would become official July 1. The company's operational headquarters is based in Spring, Texas, a Houston-area suburb.

Houston cleantech, space startups named to World Economic Forum cohort

top honor

Two Houston-based startups have been selected to join the World Economic Forum's Technology Pioneers community.

The two-year program aims to help mission-driven, early-stage start-ups scale their innovations through multi-stakeholder initiatives, co-creating partnerships and other gatherings for community members. One-hundred startups are selected each year from around the globe, this year hailing from 23 countries and working in AI, energy, space, biotech markets and more.

Cleantech startup Vaulted Deep was one of 11 energy and climate companies to be named to the cohort. Julia Reichelstein and Omar Abou-Sayed founded the company in 2023. Its technology injects excess organic waste underground to remove carbon dioxide from the atmosphere.

Last year, Vaulted Deep inked a 12-year deal with Microsoft to remove up to 4.9 million metric tons of carbon dioxide from the environment.

The startup has earned several accolades in recent years, including a No. 3 spot on Fast Company’s list of the World’s Most Innovative Companies of 2026. It was also recently named to market intelligence and advisory firm Cleantech Group's annual Global Cleantech 100 list for a second year in a row.

"Waste management is one of the world's great invisible infrastructure systems ... The need for new infrastructure is growing as disposal challenges become more complex and regulations evolve. Vaulted is building the first new disposal pathway for organic waste in decades by putting it deep underground, permanently," the company shared in a LinkedIn post. "This year, we're joining the World Economic Forum's 2026 Tech Pioneers alongside innovators working on the many interconnected challenges shaping our future."

Houston-based Venus Aerospace was also selected to join the cohort, along with six other spacetech companies. The company was founded in 2020 by Sassie and Andrew Duggleby.

The startup specializes in next-generation rocket engine propulsion as a cleaner alternative to traditional combustion engines. The company's rotating detonation rocket engine (RDRE) burns fuel more efficiently and completed a successful high-thrust test flight last year. Venus says it’s the only company in the world that makes a flight-proven, high-thrust RDRE with a “clear path to scaled production.”

"Frontier technologies matter most when they expand what people, industries, and nations can do," Sassie Duggleby, co-founder and CEO of Venus, said in a news release. "For Venus, RDRE does not just represent a more efficient engine. It is a foundation for faster movement, more capable space systems, and new forms of connectivity across the planet. Being named a Technology Pioneer validates the potential of this technology to help shape a future where distance is less limiting."

---

This article originally appeared on our sister site, EnergyCapitalHTX.com.

Houston Methodist receives record $110M gift, names future tower

historic gift

Houston Methodist has received the largest gift in the health system's history to establish new funds for neurological, neuroscience, and women’s health research and treatment.

The $110 million gift comes from Houston-based The Brockman Medical Research Foundation, which supports education and research in the science, medicine and healthcare fields. In response, Houston Methodist announced that it will name its forthcoming 26-story hospital facility the Brockman Centennial Tower.

The tower’s entrance will be named the Anna Margaret Bellows Centennial Hall to honor Anna Margaret Bellows, a young camper who died during the Camp Mystic flooding last summer.

“This extraordinary gift accelerates discovery and transforms how care is delivered,” Dr. Marc Boom, president and CEO of Houston Methodist, said in a news release. “We are grateful to The Brockman Medical Research Foundation for its incredible generosity and vision that will help change the lives of generations of patients. Naming Centennial Tower in recognition of this gift reflects the scale of this commitment and its impact on the future of neuroscience, neurological care and women’s health.”

The gift will be divided into two parts:

  • $100 million will go toward creating an innovation fund within the Houston Methodist Academic Institute and the Houston Methodist Neurological Institute
  • $10 million will be devoted to Houston Methodist's Department of Obstetrics and Gynecology

“This tremendous gift will accelerate translational research that broadens our understanding of neurological and other diseases,” Dr. Jenny Chang, president and CEO of the Houston Methodist Academic Institute, added in the release. “It will allow us to leverage state-of-the-art platforms to detect, diagnose and deliver therapeutics, keeping patient care at the center of our mission.”

The Brockman Centennial Tower is expected to open next year in the Texas Medical Center. Spanning more than 1 million square feet, it will house 400 patient beds, an expanded emergency department, new operating rooms and a rooftop garden. It will be connected to Houston Methodist's flagship Paula and Joseph C. “Rusty” Walter III Tower, which opened in 2018. The Centennial Tower was estimated to cost $1.4 billion when announced in 2022.

In addition to the news of the Brockman gift, Houston Methodist also announced this month that it has launched the Houston Methodist Center for Cell and Gene Therapy and tapped an internationally recognized scientist as its leader.

The new center is focused on discovering and developing innovative and cost-effective therapies for a variety of congenital and acquired diseases, including cancer, HIV and cardiovascular disease.

Dr. Malcolm Brenner has been named as the center's inaugural leader and will assume the role starting in October. He will work alongside scientists and support staff from Baylor College of Medicine and Texas Children's Hospital.

Brenner is a professor of pediatrics, medicine, molecular and human genetics and translational biology at Baylor College of Medicine. He is known for making early advances in using bone marrow transplantation as a form of cell therapy and in engineered immune-cell treatments for cancer and infections, according to a release from Houston Methodist.

“Malcolm Brenner is a pioneer in the field of cell and gene therapy and is uniquely qualified to lead Houston Methodist’s research efforts in this field,” Chang added. “His vision and leadership will play a pivotal role in advancing our work in this space.”

View All Listings