ETS Takes Proactive Approach to Data Protection with the PGP(R) Encryption Platform

ETS Takes Proactive Approach to Data Protection with the PGP(R) Encryption
Platform
Deploys First Platform-Enabled Application, PGP(R) Whole Disk Encryption, To
Protect Data on Laptops and Safeguard Assessment Data Against Theft or Loss




MENLO PARK, Calif., Aug. 31 /PRNewswire/ -- PGP Corporation, a global leader
in enterprise data protection, today announced that Educational Testing
Service (ETS) (www.ets.org), the world's largest educational research and
assessment organization, has selected the PGP(R) Encryption Platform as the
core of its enterprise data protection strategy.  

To comply with regulations, maintain customer trust, and defend its
competitive advantage, ETS must protect the privacy of customer data by
maintaining the confidentiality and integrity of its educational tests and
assessments.  ETS decided to define and implement an enterprise data
protection strategy to more effectively address these needs and reduce the
immediate risk of a data breach from loss or theft of its unsecured laptops.
ETS has executed the first phase of this strategy with a corporate-wide
deployment of PGP(R) Whole Disk Encryption.

Founded in 1947, ETS is a global, non-profit educational assessment and
research company that offers a standardized method for measuring knowledge and
skills.  With over 2,500 employees worldwide, ETS provides customized
solutions for teacher certification, English-language learning, and
elementary, secondary, and post-secondary education.  It also conducts
education research, analysis, and policy studies. It develops, administers,
and scores more than 50 million tests annually -- including the TOEFL(R) and
TOEIC(R) tests, the GRE(R) test, The Praxis Series(TM) teacher assessments and
The College Board's SAT and AP Programs. 

Challenges of an Educational Assessment Provider 
ETS conducts business with a wide range of audiences in the educational system
including students, teachers, university clients and government agencies. 
Given this, ETS must comply and adhere to many industry and regulatory
compliance mandates to ensure the confidentiality of all customer data.  The
Company implements the Payment Card Industry Data Security Standard (PCI DSS)
to protect credit card transactions, as well as accommodates the Americans
with Disabilities Act by reviewing confidential student health records, which
must be protected to comply with the Health Insurance Portability and
Accountability Act (HIPPA). Furthermore, ETS works with both state and federal
agencies so it must comply with the Federal Information Security Act (FISMA)
standard administered by the National Institute of Standards and Technologies
(NIST).  

In order to comply with industry regulations, ETS must safeguard the
confidentiality of its customer data and educational assessment results. ETS
believes that a proactive data protection strategy would help prevent any data
breaches or unintentional disclosures of confidential data. According to a
recent report by JMC Privacy Consulting Group, "Breaches in the Academia
Sector," of the 263 reported data breaches in the United States that occurred
in 2008, about one-third occurred at colleges and universities.

"We strive to protect customer data. We always have," said Marcus Prendergast,
senior security engineer at ETS. "Our worth and value is in the assessments we
create, and we wouldn't want those disclosed.  A breach would break customer
trust and potentially cost millions of dollars in reparations and legally
mandated customer notifications.  We knew that we needed to take a proactive
approach to data protection, which is why we turned to PGP Corporation as our
strategic partner for this initiative."  

The PGP(R) Solution -- For Now and the Future 
ETS had solid network security; but recognized a need for greater data
security. It understood the inherent security risk of unencrypted laptops used
throughout its operations worldwide. The loss of a single laptop could
severely damage its business and reputation. In addition, ETS wanted a data
protection solution that would eventually enable them to exchange secure
communications with college and university registrars, which log into ETS
systems to obtain applicant test score results. 

ETS selected the PGP Encryption Platform as the cornerstone of its data
protection strategy as it met all of ETS's criteria for data encryption, which
included: standards-based security, central management, ease of use with no
user intervention required, and extensibility for future applications. In
addition, the proven security and NIST certification status of PGP(R)
technology scored high marks with ETS's IT security staff.  Upon selection,
ETS immediately deployed PGP Whole Disk Encryption to address its most
pressing need -- secure data on all laptops throughout the organization --
which it did on time and on budget.  

With the PGP Encryption Platform in place, ETS is ready to deploy additional
PGP(R) encryption applications.  Evaluations of PGP Universal(TM) Gateway
Email and PGP(R) NetShare are currently underway at ETS looks to extend its
proactive approach to data protection across the organization and with
business partners. 

About ETS

Non-profit ETS advances quality and equity in education for all people
worldwide by creating assessments based on rigorous research. ETS serves
individuals, educational institutions, and government agencies by providing
customized solutions for teacher certification, English-language learning, and
elementary, secondary, and post-secondary education as well as conducting
education research, analysis, and policy studies. Founded in 1947, ETS
develops, administers, and scores more than 50 million tests annually --
including the TOEFL(R) and TOEIC(R) tests, the GRE(R) test, and The Praxis
Series(TM) assessments -- in more than 180 countries, at over 9,000 locations
worldwide. www.ets.org

About PGP Corporation 

PGP Corporation is a global leader in email and data encryption software for
enterprise data protection. Based on a unified key management and policy
infrastructure, the PGP(R) Encryption Platform offers the broadest set of
integrated applications for enterprise data security. PGP(R) platform-enabled
applications allow organizations to meet current needs and expand as security
requirements evolve for email, laptops, desktops, instant messaging,
smartphones, network storage, file transfers, automated processes, and
backups.

PGP(R) solutions are used by more than 100,000 enterprises, businesses, and
governments worldwide, including 95 percent of the Fortune(R) 100, 75 percent
of the Fortune(R) Global 100, 87 percent of the German DAX Index, and 51
percent of the U.K. FTSE 100 Index. As a result, PGP Corporation has earned a
global reputation for innovative, standards-based, and trusted solutions. PGP
solutions help protect confidential information, secure customer data, achieve
regulatory and audit compliance, and safeguard companies' brands and
reputations. Contact PGP Corporation at www.pgp.com.

    Media & Analyst Contacts for PGP Corporation:

    North America
    Tom Rice
    Merritt Group
    +1 703 856 2218
    rice@merrittgrp.com

    United Kingdom
    Jacqui Depares / Richard Scarlett
    Johnson King
    +44 (0) 20 7401 7968
    pgpteam@johnsonking.co.uk

    Germany
    Ingrid Daschner
    Johnson King
    +49 (0) 89 8940 8511
    ingridd@johnsonking.de


Legal Notice Regarding Forward-Looking Statements 
Some of the statements in this press release are forward-looking, including
statements regarding the availability, plans, delivery, goals, development,
expected features, expected benefits and competitive position of PGP products
implementing or leveraging the PGP technologies. All references made to
product feature enhancements, improvements in Platform support or additional
functionality are subject to change at PGP Corporation's sole discretion. All
future descriptions of PGP technology and products are subject to availability
only if PGP Corporation decides to build them and when PGP Corporation decides
to make them commercially available. Actual results could differ materially
from those expressed in any forward-looking statements. Risks and
uncertainties that PGP Corporation faces that could cause results to differ
materially include risks associated with any unforeseen technical difficulties
or software errors related to the final development and launch of any of PGP
Corporation's products; any technological, regulatory, or standards changes in
the security, encryption and authentications market which could make PGP
Corporation's products less competitive or require feature changes in these
products; any slowdown in the adoption by businesses of encryption suites,
secure email, Internet technologies or related standard. The forward-looking
statements contained in this release are made as of the date hereof, and PGP
Corporation does not assume any obligation to update such statements nor the
reasons why actual results could differ materially from those projected in
such statements.

PGP and the PGP logo are registered trademarks of PGP Corporation. Product and
brand names used in the document may be trademarks or registered trademarks of
their respective owners. Any such trademarks or registered trademarks are the
sole property of their respective owners.





SOURCE  PGP Corporation

North America, Tom Rice of Merritt Group, +1-703-856-2218,
rice@merrittgrp.com; or United Kingdom, Jacqui Depares or Richard Scarlett of
Johnson King, +44 (0) 20 7401 7968, pgpteam@johnsonking.co.uk; or Germany,
Ingrid Daschner of Johnson King,. +49 (0) 89 8940 8511,
ingridd@johnsonking.de, all for PGP Corporation