Houston founders: How safe is your company's data?

guest column

Stay informed and regularly check your security procedures to protect yourself, your business, and your customers. Photo via Getty Images

As news comes out every week about new technologies, from new crypto wallets to generative AI to self-driving taxis, it can get overwhelming for most of us to keep up or to understand the new intricacies of technology, and it can get easy to say, “The IT department has it covered.” Well, do they have it covered?

Far too often, companies fail to protect its data with the same muster as its financial security until it is too late. Just as a healthy business will regularly conduct audits of its accounting processes to detect potential fraud, ensure regulatory compliance, and locate areas of improvement for the organization, the same should be done for a business’s data security practices. Key components of any organization are its people and its information, and the IT department is in charge of protecting that information.

We as business people need to ensure that the company’s technology personnel are indeed securing one of the company’s most valuable assets: information.

Big picture: Your business needs to follow an audit process

  1. Confirm the scope of your data
  2. Conduct an internal review of all security practices
  3. Conduct a review of all vendor practices that have access to your data
  4. Confirm compliance with regulations and contractual obligations
  5. Prepare a report with detailed findings and recommendations to improve on year-over-year

Data: What do you have and what duties does it require?

Personal information, particularly when it belongs to customers, is the most frequently compromised type of data. Under laws like the newly passed Texas Data Privacy and Security Act (TDPSA), businesses can have additional obligations to keep this information protected. Personal information can include any information “that is linked or reasonably linkable to an identified or identifiable individual.”

Sensitive data also requires extra precaution, which means protecting (1) personal data that reveals racial or ethnic origin, religious beliefs, mental or physical health diagnosis, sexuality, or citizenship or immigration status; (2) genetic or biometric data that is processed for the purpose of uniquely identifying an individual; (3) personal data collected from a known child; or (4) precise geolocation data.

Other types of data to watch out for include the business’s intellectual property, anonymized customer data, employee personal information, and any other type of proprietary business data. Depending on the industry, the cost of a breach of any of these types of data could be incredibly high, particularly for healthcare and finance.

Ultimately, Texas businesses are required to maintain reasonable procedures to protect personal information, and there may be other laws implicated such as HIPAA, GLBA, CCPA/CPRA, BIPA, GDPR, PIPEDA, and many more, depending on where business is done, the industry implicated, and, in some cases, where customers are located.

"But I think the vendor is responsible."

Check your contracts, and check if the law requires you to have a duty to protect the compromised information, as many do. Involve your IT department in the review of technical compliance whenever you are sharing data with a third party. Further, it is important to make sure that however the Data Processing Addendum says the vendor is processing data is how they are actually processing data. To that point, if you are processing someone else’s data, your business also needs to be doing what it says it is doing, in contracts with third parties and in your Privacy Policy.

Software as a service arrangements, end user license agreements, and other internet and software-based services may require you to hand over data and not give you the opportunity to customize and shift risk. This is why it is important to thoroughly evaluate what technical protections are in place because the risk and duty may still fall on your business regarding the data of your customers and employees. Ask yourself (or your IT professionals) if the vendor actually needs the data they receive to provide services to you.

Key takeaway: Stay informed

Your business needs checks and balances in place with the IT department to ensure you know what they are (or are not) doing and what they are supposed to do. You need policies and procedures, and they need to regularly be tested.

Do you know where your data is stored, both internally and with third parties? Who controls it? How is it being processed, and is anything being shared? Are encryption procedures in place? Firewalls, Intrusion Protection Systems, and End-Point Detection and Response? Do you and your vendors have Incident Response Plans? Stay informed and regularly check your security procedures to protect yourself, your business, and your customers.

------

Courtney Gahm-Oldham is partner at Frost Brown Todd. Lauren Cole is associate at Frost Brown Todd.

From Your Site Articles
Ad Placement 300x100
Ad Placement 300x600

CultureMap Emails are Awesome

Property Showcase

Meet 6 of the fastest-growing scaleup companies in Houston right now

meet the finalists

From raising funding rounds to earning FDA acceptance, some of Houston's most innovative companies have reached major milestones this year.

The 2025 Houston Innovation Awards will recognize their progress by bringing back our Scaleup of the Year category for the second year. The award honors an innovative later-stage startup that's recently reached a significant milestone in company growth.

Six breakthrough businesses have been named finalists for the 2025 award. They range from climatetech startups to a biotech company developing new drugs for neurodegenerative diseases and more.

Read more about these businesses and their impressive growth below. Then join us at the Houston Innovation Awards on Nov. 13 at Greentown Labs, when the winner will be unveiled at our live awards ceremony.

Tickets are now on sale for this exclusive event celebrating all things Houston Innovation. Corporate 10-packs, featuring reserved seating and custom branding, and individual tickets are still available. Secure your seats today.

Coya Therapeutics

Clinical-stage biotechnology company Coya Therapeutics (NASDAQ: COYA) has developed COYA-302 that enhances anti-inflammatory T cell function and suppresses harmful immune activity. The drug candidate is being advanced for several neurodegenerative diseases—including ALS, Alzheimer’s, Parkinson’s, and frontotemporal dementia—and has demonstrated promising reductions in neuroinflammation in preclinical and early clinical studies, according to the company.

Coya, founded in 2021, received FDA acceptance for its investigational new drug application for COYA-30 this summer. It closed its IPO in January 2023 for more than $15 million and added $26 million in PIPE funding that same year. Last year, the company secured an additional $15 million in PIPE funding.

Fervo Energy

Houston-based Fervo Energy is working to provide 24/7 carbon-free energy through the development of cost-competitive geothermal power. The company is developing its flagship Cape Station geothermal power project in Utah, which is expected to generate 400 megawatts of clean energy for the grid. The first phase of the project will supply 100 megawatts of power beginning in 2026. The second phase is scheduled to come online by 2028.

The company raised $205.6 million in capital to help finance the project earlier this year and fully contracted the project's capacity with the addition of a major power purchase agreement from Shell. Founded in 2017 by CEO Tim Latimer and CTO Jack Norbeck, Fervo is now a unicorn, meaning its valuation as a private company has surpassed $1 billion. In March, Axios reported Fervo is targeting a $2 billion to $4 billion valuation in an IPO.

Koda Health

Houston-based Koda Health has developed an advance care planning platform (ACP) that allows users to document and share their care preferences, goals and advance directives for health systems. The web-based platform guides patients through values-based decisions with interactive tools and generates state-specific, legally compliant documents that integrate seamlessly with electronic health record systems. The company also added kidney action planning to its suite of services for patients with serious illnesses last year.

Koda Health was founded out of the TMC's Biodesign Fellowship in 2020 by CEO Tatiana Fofanova, chief medical officer Dr. Desh Mohan, and chief technology officer Katelin Cherry. The company raised a $7 million series A earlier this year, and also announced major partnerships and integrations with Epic, Guidehealth, Medical Home Network, Privia Health and others.

Mati Carbon

Houston climatetech company Mati Carbon removes carbon through its Enhanced Rock Weathering (ERW) program that works with agricultural farms in Africa and India. Mati says the farmers it partners with are some of the most vulnerable to the impacts of climate change. The nonprofit won the $50 million grand prize in the XPRIZE Carbon Removal competition, backed by Elon Musk’s charitable organization, The Musk Foundation, earlier this year.

Mati Carbon scaled operations in India, Zambia, and Tanzania this year and has advanced its proprietary measurement, reporting and verification (MRV) platform, known as matiC, enabling seamless field data capture, chain-of-custody and carbon accounting at scale. The company was founded in 2022 by co-directors Shantanu Agarwal and Rwitwika Bhattacharya.

Molecule

Houston-based Molecule Software has developed an energy trading risk management (ETRM) platform that allows companies trading power, oil and gas, biofuels, renewables and more stay ahead as the markets evolve.

The company closed a Series B round earlier this year for an undisclosed amount. Sameer Soleja, founder and CEO of Molecule, said at the time that the funding would allow the company to "double down on product innovation, grow our team, and reach even more markets." The company was founded in 2012 by CEO Sameer Soleja and participated in the Surge Accelerator the same year.

Utility Global

Houston-based Utility Global has developed its proprietary eXERO technology that produces low-cost, clean hydrogen from water and industrial off-gases without requiring grid electricity.

First founded in 2018 by CEO Parker Meeks, the company participated in Greentown Labs and the Rice Alliance for Technology and Entrepreneurship programs. It raised a $55 million funding round earlier this year and launched commercial partnerships with ArcelorMittal Brazil and Hanwha Group in South Korea to deploy its hydrogen solutions at scale.

---

The Houston Innovation Awards program is sponsored by Houston Community College, Houston Powder Coaters, FLIGHT by Yuengling, and more to be announced soon. For sponsorship opportunities, please contact sales@innovationmap.com.

Venus Aerospace picks up investment from Lockheed Martin Ventures

space funding

Venus Aerospace, a Houston-based startup specializing in next-generation rocket engine propulsion, has received funding from Lockheed Martin Ventures, the investment arm of aerospace and defense contractor Lockheed Martin, for an undisclosed amount. The product lineup at Lockheed Martin includes rockets.

The investment follows Venus’ successful high-thrust test flight of its rotating detonation rocket engine (RDRE) in May. Venus says it’s the only company in the world that makes a flight-proven, high-thrust RDRE with a “clear path to scaled production.”

Venus says the Lockheed Martin Ventures investment reflects the potential of Venus’ dual-use technology for defense and commercial uses.

“Venus has proven in flight the most efficient rocket engine technology in history,” Venus co-founder and CEO Sassie Duggleby, a board member of the Texas Space Commission, said in a news release. “With support from Lockheed Martin Ventures, we will advance our capabilities to deliver at scale and deploy the engine that will power the next 50 years of defense, space, and commercial high-speed aviation.”

Chris Moran, executive director and general manager of Lockheed Martin Ventures, said Lockheed Martin has been a longtime supporter of early-stage “transformational” technologies.

“Our investment in Venus Aerospace reflects a conviction that next-generation propulsion will define which nations lead in space and defense for decades to come,” Moran added in the release. “We are committed to helping Venus scale this technology and integrate it into critical systems.”

Since its founding in 2020, Venus has secured more than $106 million in funding. In addition to Lockheed Martin Ventures, investors include Airbus Ventures, America’s Frontier Fund, Trousdale Ventures, and Prime Movers Lab. Supporters of Venus include NASA, the Air Force Research Lab and the Defense Advanced Research Projects Agency (DARPA).

8+ can't-miss Houston business and innovation events for November

where to be

Editor's note: Houston’s innovation calendar is packed this November, with opportunities to connect across climatetech, health care and entrepreneurship. From Greentown Labs’ flagship summit and veteran-led showcases to discussions on medical innovation and startup growth, here's what not to miss and how to register. Please note: this article may be updated to include additional event listings.

Nov. 4 – Greentown Climatetech Summit

Greentown Labs' Climatetech Summit Houston will bring together philanthropists, executives and innovators in the energy transition space. Expect to hear from John Arnold, co-founder and co-chair of Arnold Ventures, and Greentown CEO Georgina Campbell Flatter, who will participate in the day-long event’s keynote fireside chat, along with remarks from Houston Mayor John Whitmire, a course led by TEX-E Executive Director Sandy Guitar and more. Ten Greentown Labs startups will present pitches, and attendees will also be able to meet founders and Greentown members during the afternoon startup showcase.

This event is Tuesday, Nov. 4, from 8 a.m.-4:30 p.m. at Greentown Labs. A networking reception follows from 5-7:30 p.m. at Axelrad Houston. Learn more here.

Nov. 11 – Veterans & Visionaries

Houston Veteran Network will celebrate the entrepreneurial spirit of veterans at its Veterans & Visionaries event. Veteran business owners will have the opportunity to showcase their businesses, connect with investors and participate in speed networking.

This event is Tuesday, Nov. 11, from 2-7 p.m. at the Ion. Find more information here.

Nov. 12 – Energy Drone and Robotics Forum

The Energy Drone + Robotics Coalition will offer a chance for industry leaders, operators and engineers to connect. Attendees will explore real-world uses, hear lessons from successful deployments, and gain practical insights and tools for scaling through various workshops, keynote addresses, Q&As and more.

This event is Wednesday, Nov. 12, from 8 a.m.-5:30 p.m. at the Ion. A Bots & Brews / Industrial AI Connect Reception will be held at Second Daught from 5:30-7:30 p.m. Find more information here.

Nov. 12 – TMC Envision 2025: Showcasing Healthcare Innovation

Celebrate 10 years of TMC Innovation at Envision, which shines a light on how TMC’s health tech companies are shaping the future. The event will feature talks from TMC’s Devin Dunn, Jason Sakamoto and Tom Luby that will focus on hospital innovation, health care policies, Texas-specific funding and regulatory dynamics and more.

This event is Wednesday, Nov. 12, from 3:30-6:30 p.m. at TMC Innovation Factory. Find more information here.

Nov. 13 — 2025 Houston Innovation Awards

Join InnovationMap at Greentown Labs on Nov. 13 for the fifth annual Houston Innovation Awards. Our annual celebration of all things Houston innovation offers an exclusive opportunity to network with leaders in the innovation ecosystem and culminates in the awards ceremony, where this year's winners across 10 prestigious categories will be unveiled. Individual tickets and corporate 10-packs with reserved seating are still available.

This event is Thursday, Nov. 13 at 7 p.m. at Greentown Labs. Get your tickets here.

Nov. 13 – Houston Methodist Leadership Speaker series

Head to the Houston Methodist Tech Hub at Ion to hear the latest installment of the Houston Methodist Leadership Speaker Series. The month’s event will feature Dr. Shlomit Schaal, executive vice president and chief physician executive at Houston Methodist. She is also the president and CEO of the Houston Methodist Physician Organization. Schaal will focus on physician group innovation.

This event is Thursday, Nov. 13, from 4:45-6 p.m. at the Ion. Find more information here.

Nov. 18 – Rice Customer-based Strategy Symposium

Rice University’s Jones Graduate School of Business will present this recurring forum for exchanging innovative ideas on customer-centered strategy planning and execution. The symposium features peer-reviewed research from leading academics with industry trends and insights from executives. Hear from Jones School Dean Peter Rodriguez, Harris County Sheriff Ed Gonzalez, Laura Lopez, SVP of marketing, communications and public relations at Houston Methodist; Farid Virani, CEO of Prime Communications; and several Rice MBA graduates and executives.

This event is Tuesday, Nov. 18, 2025, from 7:30 a.m.-3:00 p.m. at the Ion. Learn more here.

Nov. 20 – Houston Startup Speedrun

Wade Pinder, founder of Product Houston, will host the Houston Startup Speedrun. This intensive and fast-paced program is designed to provide early-stage founders and aspiring entrepreneurs with a comprehensive understanding of the “Startup Founder's Journey” and the Houston startup ecosystem. The event is broken up into 10 consecutive 50-minute sessions, including topics such as “Creating a Compelling Business Plan,” “Operations and Scaling” and others.

This event is Thursday, Nov. 20, from 9 a.m.-7 p.m. at the Ion. Find more information here.

Nov. 20 – State of the Texas Medical Center

The Greater Houston Partnership will present the State of the Texas Medical Center. Hear from William F. McKeon, president and CEO of TMC, and GHP president and CEO Steve Kean as they discuss “the tremendous progress happening in health care delivery and life sciences in the world’s largest medical center.”

This event is Thursday, Nov. 20, from 4-6:30 p.m. at Helix Park. Find more information here.

View All Listings