Houston founders: How safe is your company's data?

guest column

Stay informed and regularly check your security procedures to protect yourself, your business, and your customers. Photo via Getty Images

As news comes out every week about new technologies, from new crypto wallets to generative AI to self-driving taxis, it can get overwhelming for most of us to keep up or to understand the new intricacies of technology, and it can get easy to say, “The IT department has it covered.” Well, do they have it covered?

Far too often, companies fail to protect its data with the same muster as its financial security until it is too late. Just as a healthy business will regularly conduct audits of its accounting processes to detect potential fraud, ensure regulatory compliance, and locate areas of improvement for the organization, the same should be done for a business’s data security practices. Key components of any organization are its people and its information, and the IT department is in charge of protecting that information.

We as business people need to ensure that the company’s technology personnel are indeed securing one of the company’s most valuable assets: information.

Big picture: Your business needs to follow an audit process

  1. Confirm the scope of your data
  2. Conduct an internal review of all security practices
  3. Conduct a review of all vendor practices that have access to your data
  4. Confirm compliance with regulations and contractual obligations
  5. Prepare a report with detailed findings and recommendations to improve on year-over-year

Data: What do you have and what duties does it require?

Personal information, particularly when it belongs to customers, is the most frequently compromised type of data. Under laws like the newly passed Texas Data Privacy and Security Act (TDPSA), businesses can have additional obligations to keep this information protected. Personal information can include any information “that is linked or reasonably linkable to an identified or identifiable individual.”

Sensitive data also requires extra precaution, which means protecting (1) personal data that reveals racial or ethnic origin, religious beliefs, mental or physical health diagnosis, sexuality, or citizenship or immigration status; (2) genetic or biometric data that is processed for the purpose of uniquely identifying an individual; (3) personal data collected from a known child; or (4) precise geolocation data.

Other types of data to watch out for include the business’s intellectual property, anonymized customer data, employee personal information, and any other type of proprietary business data. Depending on the industry, the cost of a breach of any of these types of data could be incredibly high, particularly for healthcare and finance.

Ultimately, Texas businesses are required to maintain reasonable procedures to protect personal information, and there may be other laws implicated such as HIPAA, GLBA, CCPA/CPRA, BIPA, GDPR, PIPEDA, and many more, depending on where business is done, the industry implicated, and, in some cases, where customers are located.

"But I think the vendor is responsible."

Check your contracts, and check if the law requires you to have a duty to protect the compromised information, as many do. Involve your IT department in the review of technical compliance whenever you are sharing data with a third party. Further, it is important to make sure that however the Data Processing Addendum says the vendor is processing data is how they are actually processing data. To that point, if you are processing someone else’s data, your business also needs to be doing what it says it is doing, in contracts with third parties and in your Privacy Policy.

Software as a service arrangements, end user license agreements, and other internet and software-based services may require you to hand over data and not give you the opportunity to customize and shift risk. This is why it is important to thoroughly evaluate what technical protections are in place because the risk and duty may still fall on your business regarding the data of your customers and employees. Ask yourself (or your IT professionals) if the vendor actually needs the data they receive to provide services to you.

Key takeaway: Stay informed

Your business needs checks and balances in place with the IT department to ensure you know what they are (or are not) doing and what they are supposed to do. You need policies and procedures, and they need to regularly be tested.

Do you know where your data is stored, both internally and with third parties? Who controls it? How is it being processed, and is anything being shared? Are encryption procedures in place? Firewalls, Intrusion Protection Systems, and End-Point Detection and Response? Do you and your vendors have Incident Response Plans? Stay informed and regularly check your security procedures to protect yourself, your business, and your customers.

------

Courtney Gahm-Oldham is partner at Frost Brown Todd. Lauren Cole is associate at Frost Brown Todd.

From Your Site Articles
Ad Placement 300x100
Ad Placement 300x600

CultureMap Emails are Awesome

Property Showcase

Persona AI teams with Under Armour to protect next-gen robots

Future Fabrics

Houston-based Persona AI has cemented a partnership with sportswear manufacturer Under Armour to provide materials to protect future robots operating in dangerous conditions.

Through the partnership, Persona AI and Under Armour will launch a research initiative to explore whether advanced performance textiles can improve the durability and resilience of humanoid robots operating in harsh industrial environments.

“This is an opportunity to apply our innovation expertise in a new context,” Kyle Blakely, senior vice president of innovation, design studio, development, and testing at Under Armour, said in a news release. “Robotics presents a fascinating new design challenge, and we aim to play a leading role in shaping performance solutions for these environments. As humanoid systems take on more physically demanding roles, we see real potential to create new market opportunities, and we’re exploring how concepts like thermal management, abrasion resistance, and flexibility translate beyond sport."

Founded in June 2024 by former NASA engineer Nicolaus Radford and former Figure AI CTO Jerry Pratt, Persona AI has quickly risen to be a top name in the development of humanoid robotic systems. Radford previously was the principal investigator at NASA’s Dexterous Robotics Lab before becoming CEO of Nauticus Robotics. While at NASA, he was the chief engineer behind Robotnaut 2, the first humanoid robot on the International Space Station.

Persona AI raised $25 million in preseed funding to develop humanoid robots designed to operate in shipyards and other industrial sites. The company has inked partnerships with HD Korea Shipbuilding & Offshore Engineering, HD Hyundai Robotic, and Korean manufacturing firm Vazil Company to create and deploy humanoid robots for complex welding tasks in shipyards.

These environments often involve exposure to dangerous chemicals, harsh weather and other potential hazards. The partnership between Persona AI and Under Armour will combine the clothing manufacturer’s development of resilient but flexible materials with the humanoid design of Persona AI.

Though best known for its sportswear, Under Armour produces a wide range of specialist fabrics and clothing, including an entire line used by the U.S. military. The company’s track record of developing high-performance fabrics built to withstand war zones and desert conditions makes it a strong partner in Persona AI’s latest endeavor.

“We chose to work with Under Armour because of their track record of innovation with these types of performance materials,” Radford said. “As we develop humanoids for intense and potentially hazardous environments, this collaboration helps us understand how advanced materials can enhance long-term reliability, thereby informing solutions to better protect workers in the field.”

Waymo suspends robotaxi service in Houston due to weather concerns

Transportation news

Waymo has suspended driverless car services in Houston and other major Texas cities, and in Atlanta, after one of its vehicles was stranded by flooding during heavy rains that will likely also hinder travel in a large swath of the U.S over the holiday weekend.

Severe thunderstorms with large hail and gusty winds were possible Friday, May 22 in Texas and other parts of the Southern and Central Plains, the National Weather Service said.

Forecasters warned of possible flash flooding along the Gulf Coast of Texas and Louisiana on Saturday, when rain and thunderstorms were expected across much of the central and eastern U.S.

The Waymo vehicle got stuck during a downpour in Atlanta on Wednesday that flooded streets and even part of a downtown highway. The vehicle was not occupied and was later recovered, the company said in a statement. At least one other Waymo vehicle was waylaid during the storm.

Waymo serves only the city of Atlanta in Georgia, and services Dallas, Houston, Austin, and San Antonio in Texas.

The company paused service in Texas “out of an abundance of caution for the forecasted severe weather,” the statement said.

Global summit spotlights Houston's growing role in brain health, innovation

where to be

The Center for Houston’s Future and UTMB are bringing the Texas Brain Economy Summit back to Houston this summer to continue to position the region as a global leader in brain health.

The summit, held June 9-10 at the Texas Medical Center's Helix Park, will bring together more than 500 executives, researchers, policymakers and innovators from around the world to discuss the global brain economy.

Attendees can expect to hear from leaders of global institutions, including the World Economic Forum, U.S. Chamber of Commerce, McKinsey Health Institute, Global Brain Economy Initiative, Davos Alzheimer’s Collaborative, Business Collaborative for Brain Health (UsAgainstAlzheimer’s), Rice University, Memorial Hermann, MD Anderson and many others.

Day 1 of the conference will focus on "Enabling Human Flourishing & Economic Growth." Day 2 will focus on "Scaling Innovation & AI Solutions in the Brain Economy."

Keynotes will be delivered by:

  • Lexi Branson, vice president of health policy at the U.S. Chamber of Commerce
  • Kana Enomoto, director of the McKinsey Health Institute
  • Megan Henshall, founder of Google Experience Institute (Xi)
  • Ryan Howard, co-lead of Google Experience Institute (Xi)
  • Dr. Hani Jneid, John Sealy Distinguished Centennial Chair in Cardiology and vice president of cardiovascular operations at UTMB
  • Steve Kean, president and CEO of the Greater Houston Partnership
  • Dan Patrick, Lieutenant Governor of Texas
  • Jochen Reiser, president of UTMB
  • Thomas Seitz, senior partner of the McKinsey Health Institute

Other significant speakers include:

  • Rym Ayadi, founder and president of the Euro-Mediterranean Economists Association (EMEA) and co-founder of the Brain Capital Alliance
  • Arthur Evans, CEO and executive vice president of the American Psychological Association
  • David Gow, president and CEO of the Center for Houston’s Future (Gow is the founder and chairman of Gow Media, InnovationMap's parent company)
  • Bill McKeon, president and CEO of the Texas Medical Center
  • Jeff Merritt, head of urban transformation at the World Economic Forum
  • Joanne Pike, president and CEO of the Alzheimer’s Association
  • George Vradenburg, founding chairman of Davos Alzheimer’s Collaborative and co-founder, chairman and CEO of Us Against Alzheimer’s

The event is supported through Project Metis, which was launched by the Center for Houston’s Future last year. Led by Rice Brain Institute, The University of Texas Medical Branch's Moody Brain Health Institute and Memorial Hermann’s comprehensive neurology care department, the initiative aims to advance the understanding, prevention and treatment of the brain. It was developed on the heels of Texas voters overwhelmingly approving a ballot measure to launch the $3 billion, state-funded Dementia Prevention and Research Institute of Texas (DPRIT).

“Texas voters, by approving the state-funded Dementia Prevention Institute, have shown a strong commitment to brain health, as scientific advances continue daily. [Project Metis] aims to harness the Houston region’s unique strengths: its concentration of leading medical and academic institutions, a vibrant innovation ecosystem, and a history of entrepreneurial leadership in health and life sciences,” Gow said at the time.

Learn more about The Texas Brain Economy Summit and purchase tickets here.

View All Listings