PLAN AHEAD

Incorporate privacy and security from start to finish.
Thinking about the data you will collect and store while you design your product or service is only one part of “baking in” privacy. You also need processes in place to address issues that might arise in the future. Save time, money, and even your reputation by maintaining privacy and security practices that are holistic, regularly re-evaluated, and prepared for potential data security issues and legal demands.
PROTECT YOUR USERS BY NOTIFYING THEM AS QUICKLY AS POSSIBLE.

Notifying users in the event of a data breach is required by law in most of the United States. Failing to follow these laws can result in expensive lawsuits. In addition, keeping a breach hidden could result in even more outrage from users and the press. Instead, promptly and thoroughly notify your users to help them prevent identity theft and other harms and to start to repair your relationship with them.

Case Study

Uber Hit with Lawsuit for Delayed Notice of Breach

App-based car service Uber was hit with a class action lawsuit after accidentally posting the personal information of about 50,000 drivers and waiting nearly five months to disclose the incident.

App-based car service Uber was hit with a class action lawsuit after accidentally posting the personal information of about 50,000 drivers and waiting nearly five months to disclose the incident. When Uber did not offer an explanation for the delay, it faced flack for its “unsavory and unprincipled” practices. Moreover, Uber was sued for allegedly violating California law, which requires companies to notify those affected “without unreasonable delay.”

+ read more
Case Study

Facebook Leaves Users in the Dark After Massive Breach

Failing once again to protect its users’ personal information, Facebook was subject to a breach that exposed the “personal information of over 533 million Facebook users from 106 countries … [including] their phone numbers, Facebook IDs, full names, locations, birthdates, bios, and – in some case

Failing once again to protect its users’ personal information, Facebook was subject to a breach that exposed the “personal information of over 533 million Facebook users from 106 countries … [including] their phone numbers, Facebook IDs, full names, locations, birthdates, bios, and – in some cases – email addresses.” Facebook claims that this data was scraped due to a vulnerability that the company patched back in 2019. But once the information is out there, patching a vulnerability after the fact doesn’t keep user information off of hacking forums or out of the hands of scammers. Despite the massive scale of the breach, Facebook reported that it would not notify its users that their personal information had been compromised.

+ read more

64% of survey respondents said they would consider switching technology providers if experienced an incident that affected their view of a provider’s trustworthiness. (2024).

 

TAKE STEPS TO PREVENT FURTHER HARM.

If you suffer a breach, maintaining your customers’ good will requires that you do everything in your power to protect them from further harm. Contact law enforcement officials, banks, credit payment processors, and credit agencies to try to head off fraud and other harm. Taking steps such as offering free credit monitoring to any user whose data was exposed can mitigate the damage both to your users and to your reputation. By being forthright about the problem and offering clear guidance and assistance to your users about how they can protect and monitor their own privacy, you will reassure them that you take your business responsibilities—and their privacy—seriously.

Share This:

Related Content