Privacy Policies
Being upfront with users about how long you plan to store their data, what type of data you’re storing, and how you plan to use it is a good step to take when it comes to establishing trust. Some companies take this a step further by letting users know when the privacy policy has changed, and by adding easy-to-read explanations in addition to the fine-print terms of service agreements.Security Measures
Companies need to secure their information in a way that makes sense financially. “It doesn’t make a lot of sense to secure a million dollars’ worth of information with $10 million worth of security,” Trustwave Vice President of Product Management Josh Shaul said in an interview. Common-sense security measures should be in place for all data, and this begins with a general risk assessment. “You’d be shocked to find out how many companies are storing data, but the compliance and the risk and the security people don’t even know that that data’s being stored,” Shaul added. After areas of weakness are discovered, businesses can adopt new practices and procedures to protect against potential threats, such as installing intrusion detection and prevention technologies, anti-malware controls, and Web-application firewalls, and modifying network access controls to prevent unnecessary access. Some businesses may choose to work with outside experts responsible for installing, monitoring and updating their technologies in response to new potential threats.Retention
Financial information must be retained in order to comply with government regulations, and many businesses choose to store additional information, or save data for a longer period of time than required, if legally permitted.Upload Your ResumeEmployers want candidates like you. Upload your resume. Show them you're awesome.
Related Articles
- What eBay Can Teach Us About Security Breaches
- IT Security Job Opportunities Growing in a Dangerous World
- Senate Grills Target on Lax Security