Why Your Business Requires Security

The States and Federal Identity Theft and Privacy Protection Laws now require businesses, agencies and organizations of all sizes to protect all personal information they store, and report to all their customers whenever a breach occurs. The financial ramifications after having a data breach can be very substantial to both present and future business. In some many cases a company never does recover from a breach and is forced to close down. Currently, the average cost on a company is $3.7M per incident.

It’s 10pm, do you know where your PII is?


The federal government recently published a guide on protection Personal Identifiable Information (PII). There are two aspects to PII that every company must be aware of:

1) What information information is considered confidential, &

2) Where this information is stored in the company.

The information that is considered PII confidential is defined as any information about an individual that distinguished or traces an individual’s identity, or is linkable to an individual. Examples include (but not limited to): Name, mother’s maiden name, SSN, passport, driver’s license, tax ID, credit card number, street or email address, birth day, race,   employment info, medical info, biometrics and in some cases even a photograph. And the list goes on.

Since what the government considers PII the best course of action is to protect all information.

A few simple ways to protect PII data is to:

  • Limit the amount of information you take
  • Limit the time you store the information
  • Limit the places where the information is stored
  • Limit the access to the information

Some of the best ways to secure the PII is with secure passwords, the use of a multi-factor authentication token (i.e. smartcard) and to ALWAYS encrypt the information.

Comments are closed.