Roger Smith, CEO at R & I ICT Consulting Services Pty Ltd and Amazon #1 author on Cybercrime discusses How small and medium business and not for profit organisations are protecting your clients information.
[Start of transcript]
Hi, my name is Roger. How are you protecting your client’s information? Every business nowadays uses a digital component to make that business work. And by having that digital component, and making that information available to your staff, then you have to make sure that you are protecting that information at all times.
That information can be anything as basic as a telephone number associated with a person who’s associated with a registration number on your car. That information is really critical to taking it to the next level for protecting your business, and protecting your clients. Because clients are not going to trust you if you are known to breach their privacy.
So to protect the information that you’re collecting from other people, you need to make sure that what you’re collecting, are you going to use it and do you need it? Because it’s no use collecting all this information if it’s just going to sit in a database and one day we’ll get to it. Because that just gives you exposure to a number of other problems.
You also need to be able to segregate that information. You need to be able to take that information and go, “We don’t need that information,” or, “Those certain people do need access to that information.”
And the final part is, you never store information about people with information about their credit cards. Because if you do that, and something does happen in the background, and someone does get compromised, then they have all of that information.
So do you know where all your client data is? Do you know where it’s located, who has access to it, and why those people have access to it? Thank you very much.
[End of transcript]