Do you have an action plan for dealing with Personally Identifiable Information that your company collects?
Identity theft is the number one concern among consumers in the United States.
If you are in business, you will collect Personally Identifiable Information, or PII. In the wrong hands, PII data can be used to initiate identity theft or other criminal activity. Entities entrusted with PII are required to protect it by both federal and state laws. Lost PII data must be reported urgently.
The consequences of a breach are serious. Fines and other penalties are embarrassing as well as expensive. In some cases, civil fines and criminal sanctions have been assessed. The public damage from a PII breach can result in loss of credibility and customer confidence. Customers have brought class actions suits against companies directly when PII was compromised. The Epsilon data breach exposed millions of customers of banks and major retail brands to fraudsters trying to collect further personally identifiable information.
What is PII?
This would include the combination of:
• Name/s and one of the following;
• Social Security Numbers
• Drivers License Numbers
• Credit Card Numbers
The questions and answers below are offered as a general reference to help you understand the CSR Breach Reporting Toolkit® services and how they relate to your handling of personally identifiable information (PII). Every information security breach is different, and each one should be carefully evaluated in light of its unique facts and circumstances. As such, if you believe that PII in your care may have been compromised, you should promptly consult an attorney who can help you understand your legal obligations.
What is CSR Breach Reporting Toolkit®?
CSR Breach Reporting Toolkit® is an information security breach defense, preparedness, and response service that helps merchants address the risks associated with handling personally identifiable information (PII) without committing all of their valuable internal resources to the cause. Forty-nine state laws as well as laws in additional jurisdictions mandate certain responsive procedures in the event that certain forms of PII in your possession are compromised. That’s where we come in.
If and when you determine that a breach of PII has occurred, or suspect a breach or loss of data, CSR Breach Reporting Toolkit® can assist you in notifying the proper authorities (including, in particular, card brands and government agencies) that data has been compromised.
What services does CSR Breach Reporting Toolkit® provide?
CSR Breach Reporting Toolkit® services are designed to help you react quickly to a data breach. When PII is lost, stolen, or otherwise compromised, merchants are often confused about what steps to take to rectify the situation. But merchants must be prepared to act quickly in order to comply with applicable laws and industry standards, and in order to preserve their customers’ trust. In the event you discover a breach of PII, CSR Breach Reporting Toolkit® can help you take action to respond.