Secure every method of collecting data—whether over the phone, by mail, through email, via web forms, or from affiliates or other third parties—against snooping and data theft. Follow established practices, such as ensuring that any communication carrying potentially sensitive information is encrypted and secure, to protect your users’ data in transit.
RESPECT YOUR DATA
Limit and protect the data you collect and retain.
Protecting your users’ privacy requires you to be thoughtful about the data you collect and hold. By carefully considering the costs and benefits of collecting data and by properly safeguarding the information that you do collect, you may prevent privacy harms and increase consumer trust in your product.
"Building an maintaining user trust through secure products is a critical focus, and by default, all of our products need to be secure for all of our users around the globe." - Alex Stamos, former Chief Security Officer, Yahoo
COLLECT DATA SECURELY.
Case Study
72% of consumers will avoid buying from companies that they believe do not protect their personal information (2014).
STORE DATA SECURELY.
Data, whether on your servers, laptops, smartphones, or paper, should be secure. Breaches can involve not only hightech methods such as hacking and phishing but also decidedly low-tech methods such as rooting in dumpsters and stealing from mailboxes. Keep both your physical and network security up to date and use encryption and similar techniques to protect data wherever possible.
80% of consumers are more likely to buy from companies that they believe protect their personal information (2014).