In a time when personal information is a valuable commodity, protecting this data is a major concern for both individuals as well as businesses of all sizes. One breach could expose customers to financial loss, identity theft, or even lawsuits. There are a variety of methods that can be employed to safeguard personal data and to prevent hacking and theft.
TAKE STOCK
Take stock of the amount of sensitive information your company holds in computer files and on servers and devise a strategy to only keep it for as long as is necessary. This could involve taking inventory of devices that collect personal information, like PIN pads and security cameras and identifying connections between computers and external sources like the internet or computers used by service providers to support your network or digital copiers.
SCALE DOWN
Limit access to sensitive information only to those who need it. This reduces the potential of insider threats or losses from hackers. Pro tip: Stick to the principle of least privilege by granting new websites accounts access to the lowest level to sensitive data, and increasing that privilege only as they gain seniority or have a job requirement.
THEN LOCK IT
Passwords must be secure and complex. Easy-to-guess passwords can be hacked, and used for unauthorised access in a matter of seconds. Also, don’t send passwords in plain text through email. Also, be certain to secure any file that contains confidential or private information.