Information Privacy & Your Business Website

information privacy is an illusionThe Cost of Privacy

Information privacy is one of the most important concerns for today’s successful business owners. The cost, both in monetary terms and in damage to your company’s reputation, for failing to properly protect the information submitted and hosted on your website can be catastrophic. In addition, certain industries, such as the healthcare industry, have strict legal penalties for failing to adequately protect private patient information. Some states, such as California, have also increased information privacy and security requirements for all businesses, regardless of industry.

Control what information is accessible through your company website.

The first step in protecting private business information is restricting what is available through the company website to only what is necessary to conduct business. Ensure that all sensitive information utilizes encryption protocols such as Secure Socket Layer (SSL) encryption so hackers are far less likely to be able to intercept data.

Control who is able to access the back end of your company’s website.

There should be strict controls on who is able to access the back end of your website. Multi-Factor Authentication (MFA) is a great way to make sure you know exactly who is logging in and accessing the private data on your website, along with exactly what they are doing with the information after it is accessed.

Physically protect the servers holding your company’s website.

All of the digital encryption and protection protocols in the world are useless if the actual servers hosting the website are not physically secured. There are two main options for physically protecting a hosting server. If your company owns and houses the servers on location, they should be in a locked, monitored, and secured room. If the website is hosted by a third-party, it is up to you to do your due diligence to make sure the security protocols of the hosting company are sufficiently advanced. Don’t take a hosting company’s security claims at face value; you must look into the specific protocols (hire an expert consultant if necessary) as well as the reputation and history of the company in question.

Information Security Applies to Paper Too.

Information security also refers to sensitive client data that’s in hard copy form. Financial transactions, health records, and any other personally identifiable information must be safeguarded. Lockable cabinets is a good place to start. Once information is no longer needed, have employees toss sensitive papers into a locked storage bin marked for professional shredding. For example, we provide a variety of sizes of bins and consoles to meet the information security needs of all types of businesses.

How do you safeguard information security for your business?