Privacy and Security FAQ

Veteran Owned Business

What is Personally Identifiable Information?

Personally Identifiable Information is information that includes a combination of any two of the following elements: names, addresses, phone number, bank or credit card numbers, income and credit histories, and social security numbers of customers, employees, business partners, or patients.

What is Electronic Data?
Electronic data is information in a digital format stored on computers, servers, storage devices (hard drive, thumb/USB drive, CD, DVD, and Diskette) and that can be transmitted over wire or optic cable.

Should Personally Identifiable Information that is in paper form be protected the same as electronic data?

Yes, paper data or printed materials that contain Personally Identifiable Information and Protected Health Information should be protected the same as electronic data.

What is Protected Health Information?

Protected Health Information is any health diagnosis, prescription, and specific or general health information that can be linked to an individual or group of individuals.

What is a breach?

A breach is when protected data is accessed by an unauthorized user.

What is an Unauthorized Disclosure?

An unauthorized disclosure is when protected data is accessed by someone not authorized to have access, whether accidental or on purpose.

What should I do if I have a breach of protected information?
Don’t panic! Call a privacy and security professional who can work with you and your legal department to determine what actions are required for the specific breach.

Should I have a Security Incident Response Plan?
Yes. A Security Incident Response Plan is required to determine the extent of a breach and the necessary actions required to protect you and your customers.

What is encryption?
Encryption is applying a code to data making the data unreadable.

What are the effects of SPAM email?

E-mail SPAM is un-solicited bulk email sent to an email list or newsgroup and is generally advertising a product or service.

What is Malware and how does it get to me or my business?

Malware can get to you and your business through emails, web pages, and various Internet links and is computer code that damages computer files, programs, and drives.

How can I protect myself and my business from a computer virus?

The best protection from computer viruses is installing, and keeping up to date, protective software on all PCs and servers. A secondary measure includes enforceable policies on the use of e-mail and Internet services.

What is Social Networking?

Social Networking is the use of Internet websites for the communication and exchange of information, pictures, and music such as Facebook and MySpace.

Why does my business need a Contingency Plan?

A Contingency Plan is the protocol businesses use to protect and secure data and technology resources when there is a disruption of electronic systems; ensuring ongoing business operations.

In today’s e-commerce world, how can having a Risk Analysis of privacy and security practices benefit my business?

A professional Risk Analysis will assess physical, technical, and policy driven privacy and security practices bringing those practices in line with the goals and needs of your business.

How do I protect laptops and portable devices in the mobile workforce?

Encryption is the best method for the protection of laptops and portable devices including: Blackberries, iPhones, Flash Drives, and PDAs.