The strategy is simple; mitigate all identifiable risk to ensure you retain control over any data under management.  We recognized that it isn’t adequate to just talk about security, you must demonstrate how these concepts are operationalized.  As an organization, we have been creating a Security Information Management System (SIMS) to act as the framework in how we approach the concept of security.  We have been implementing these objectives following the guidelines laid out by the International Organization for Standardization as it pertains to ISO 27001.  This systematic approach leverages the right blend of people, process, and IT systems to ensure the integrity of all informational assets are validated and kept secure.  In the third quarter of this year, Contact successfully acquired its ISO 27001 accreditation which involved an intensive assessment performed by a known certifying body within the market.