Protect Your Greatest Assets. The Risks, Protection and your Rights.
Latest security scares leaves us all in a bit worried about what is being shared and what is being hacked, Sony Play Station resulted in the personal information of 77 million users being compromised at the same time Microsoft X box also had their worries too, although these stories seem to have died down there isn’t one part of me that think everything is OK using your cards on-line.
I don’t do online banking, why would I after my own security scare with Barclays only a few weeks ago, who gave me the best advice ever ” do not put your card details into a website if they don’t offer the chance to pay by Paypal” Paypal would have checked them out and it gives you a little bit of security.
However, lets not forget that DWP also lost personal data of 25 million people so its not just information we post on-line but companies inputting data for us. I am not sure what the answer is as there are always going to be hackers, programs are on-line showing them “How to” so unless security tightens on-line websites and about what is shared on websites then we are always going to be at threat.
Your single biggest asset is your personal data, so why give it away so easily?
1. Refuse to give your personal information over the phone to anyone. ( Banks you will have to change your policy)
2. Refuse to give your information to any third party suppliers ( phone companies need to change their policy and stop selling OUR data)
3. Refuse to accept any call centre incoming calls who ask for personal information.
The plain truth is, banks, insurance companies, mobile phone, energy suppliers, government bodies are giving our data away and their systems is not hacker proof.
Given this and the importance of our data, here are eight quick security questions you should ask before you pass over your information to anyone.
1. Are you only storing the data for your business use?
2. Do you have an ultimate data owner for each system you support?
3. Do you have documented audit trails surrounding our data access?
4. Have you developed a data classification scheme?
5. Do you encrypt everything that leaves the secure data centre?
6. Have you recently undergone a security audit by an independent authority?
7. Do you back up our data often enough and are encrypted tapes or files stored at a remote location?
8. Have you kept your employees completely informed about policies and procedures they need to follow to protect your data
Now, firstly the call centre operative (reading from a script will not know the answer to most of these questions) but there’s a real story to think about here if they don’t know what or how your data is being looked after then they are not fulfilling their duties and following the code of practice so do not proceed with the call and change your supplier, only when we all do this will Banks, Building Societies, Energy Suppliers, Insurance Companies, Government Bodies and mobile phone companies change how they do business.
If you have any data scares name and shame them, perhaps we can then see how big this problem is.
Reply