As the development of new technology and science, the channellage is equal to the new opportunies. The information technology play more and more important role in economic. The security of information become a hot topic now. Recently, missing information on internet appeals normally. People’s address, photos, phone number is unsafe. Sometime, It will bring lots of troubles to people or companies. People wil get some unknow calls even some of them are for cheating or bad ideas. Usually, it”s very dangerous that people lost their credit card information becasue there is no identifies or codes for purchasing products by credit card online.
However, I thouhgt the protectation of customer’s privacy need the work from both sides.Customer’s need to build new level awareness about the individual information protectation. At the same time, the companies, website, ans services, hosting and so on need to improve the management skills. The employees need to be re-educated on the information secuarity field. last but not the least, companies need to assess the value of customer’s information and build a customer data and protect the VIP at least.
In my position, I usually got 3 or four calls from my telus home phone every morning from 8.00 to 11.00. am. Actually, it’s terrible for me if I want to got more sleep in the morning. I am sure that Telus give my home phone to some unknow companies, which makes me very uncomfortable.
Here is some tips for protect customer’s privacy, which I get it fromhttp://www.techrepublic.com/blog/five-apps/five-tips-for-protecting-customer-data/875
1: Limit access to customer
Companies today have an open culture when it comes to data. But that policy shouldn’t be consistent across all data types, particularly personally identifiable information, or PII.
2. Bulletproof your security software and your network
Protect customer data as you would financial data. Organizations can refer to publicly available guidelines, such as those published by the PCI Security Standards Council. You should encrypt all of your customer information at the database level to avoid unauthorized users from hacking into your accounts. You may want to consider Tokenization, which is a higher level of security. Often used for e-commerce transactions, including credit card data, tokenization replaces sensitive data with unique identification symbols so that PII stays out of the data stream.
Another option is to deploy anti-phishing software, which can secure the email channel by blocking malicious emails purporting to be from you. The software does this by checking for proper email authentication and issuing alerts when fraudulent activity is detected. These are just a few examples of the kind of security protections you need for customer data. A third-party security audit of your systems and processes can evaluate your infrastructure, provide recommendations, and issue annual certifications.
3. Require that partners and vendors with access to customer data also have the best available protection
Agencies, software firms, and email service providers should have the same (if not better )controls as your company. For instance, if you use a marketing automation solution for campaign generation and tracking, your provider should require IP address blocking so that only users from within your firewall can access customer data and email addresses. External IP addresses will be locked out if they obtain passwords and attempt to log in to a customer database. If any of your partners stores customer data for you, understand exactly how they are securing their information systems and handling access control.
4. Get the help of a lawyer
If a breach occurs, your company could be on the line for thousands or millions of dollars in lawsuits and other fees to your customers. What type of protections can you build into your services to prevent financial disaster and what guarantees do you need to provide to customers if their data is compromised, lost, or stolen? This also applies to your marketing vendors. What are their obligations if a breach occurs in their systems? This could include legal fees and other financial penalties. Have your lawyer draft the appropriate language for your Web site, customer documentation, and vendor contracts.
5. Educate your employees
Developing policies and providing regular training for employees handling customer data is imperative. Consider adding internal security measures to protect against the possibility of social hacking incidents. These are situations in which, for example, an employee who has access to your data has the account password stolen. In many cases, if that password was stolen, there is the possibility that other passwords, such as an email password, were also stolen and a simple email verification link won’t be secure enough. To minimize risk in this situation, consider requiring employees to use a two-step verification process to access your data. For instance, employees logging in to your application from a new location would have to use a code sent to their cell phone and also provide an answer to a security question before gaining access. This process is similar to the standard used by many financial institutions.
To sum up, it’s really a big issue that to protect customer’s privacy. In addition, It will create big advantages for build trust realtionship with customers.