Health Net, Michael’s, Microsoft X-Box. You don’t have to look far to find major corporations who have become the victims of data security breach.
Think about it. What is in your file cabinet right now? Tax records? Payroll information? And what’s on your computer system? Financial data from your suppliers? Credit card numbers from your customers? To a busy marketer, those documents are an everyday part of doing business. But in the hands of an identity thief, they’re tools for draining bank accounts, opening bogus lines of credit, and going on the shopping spree of a lifetime – at the expense of your company, your employees and the customers who trust you.
Sophisticated hack attacks make the headlines, but many security breaches could be prevented by common sense measures that cost companies next to nothing. That’s why the Federal Trade Commission (FTC) has published Protecting Personal Information: A Guide for Business, a plain-language handbook with practical tips on securing sensitive data. Whether you work for a multinational powerhouse or a start-up, a sound information plan is built on these five key practices:
1) Take Stock. Know what personal information you have in your files and on your computer. Understand how personal information moves into, through,, and out of your business and who has access – or could have access to it.
2) Scale Down. Keep only what you need for your business. That old business practice of holding on to every scrap of paper is “so 20th century”. These days, if you don’t have a legitimate business reason to have sensitive information in your files or on your computer, don’t keep it.
3) Lock it. Protect the information you keep. Be cognizant of physical security, electronic security, employee training, and the practices of your contractors and affiliates.
4) Pitch it. Properly dispose of what you no longer need. Make sure papers containing personal information are shredded, burned or pulverized so they can’t be reconstructed by an identity thief.
5) Plan ahead. Draft a plan to respond to security incidents. Designate a senior member of your team to create an action plan before a breach happens.
Many insurers are now offering coverage for data security. If you are interested in learning more about data security or getting a quote on data breach coverage, call our office today (503) 227-1771 or visit us online at www.epbb.com.