Shopping Cart
Your Cart is Empty
There was an error with PayPalClick here to try again
CelebrateThank you for your business!You should be receiving an order confirmation from Paypal shortly.Exit Shopping Cart

My Cart: 0 Items

Compliance Services of America

We Take Compliance To A Higher Standard!

Custom Labor Law Posters & Digital Products

E-Mail Us at [email protected]

Call Toll Free (844) 6 The-Law

                         (844) 684-3529



Small Business ID Theft Compliance

Posted on October 19, 2016 at 10:55 PM

Identity theft is not just a consumer's problem. It takes businesses and consumers working together to

provide the greatest protection against identity theft. When their customers' personal information is stolen, businesses may not only have legal obligations to help correct the problem, but also may be subject to financial losses themselves.


According to the Better Business Bureau, small businesses typically are not as focused on data security as are larger corporations. Some small business owners believe that locking up their storefront is sufficient protection against theft of important data. Others assume they are better protected than they really are while others may suspect they should be doing more, but do not know how.


The Federal Trade Commission cautions businesses that under the 2003 amendments to the Fair Credit

Reporting Act, identity theft victims are entitled to get from businesses a copy of the application or other business transaction records relating to their identity theft free of charge. Businesses must also provide these records to an investigating law enforcement agency.


Finally, businesses that lose their customers’ information, no matter how that loss occurs, may lose their

most valuable asset, the customers themselves. As more and more consumers become victims of identity theft, they make their choice of where to do business dependent on what privacy protection assurances the business can offer. For all these reasons, businesses can no longer afford to be lax about protecting their customers' personal information – and their own.

If you do not need it, do not collect it

Many businesses collect more information than they need, particularly when asking customers to fill out forms. Consider excluding the address, email and phone number if you need only a name. The social security number is a confidential number that is required only if a customer is earning income (either employment or investment) for tax reporting – it should not be collected otherwise. When you order your next set of forms, eliminate all the information that you do not really need.

Personal information is not for broadcast

Can people standing in line at your office or store overhear others give your staff telephone numbers or

account details? Instruct employees who need to collect personal information to talk in a discreet and

quiet manner. Turn computer screens so they cannot be viewed by anyone other than the operator.

Protect customer cards

When customers are making purchases, ensure that they have sufficient privacy to securely enter their PINs. Place shields on point-of-service terminals and check the terminals regularly to verify that equipment has not been tampered with. Locate security video cameras so that they cannot record the entry of customer PINs.

Be card smart

Staff should verify that customers are who they say they are by checking signatures on cards, and, as appropriate, photo IDs. The Fair and Accurate Credit Transaction Act, requires that debit/credit card numbers are truncated when electronically printing receipts (i.e. does not print more than the last five numbers on the card) and that the card’s expiration date is deleted, to better protect consumers. Do not copy down any card number that you do not need.

If you keep it, secure it

Paper records with personal information should be locked, and computer terminals password protected with strong passwords. Place the computer server(s) in a secure, controlled location, and keep other devices (e.g. back-up CDs or tape drives) locked away. Physically lock up all laptops to prevent thieves from walking away with one. Develop and implement policies about who can take laptops home, what security precautions should be taken when the laptop is away from the business (example – not keeping a laptop in a car whether locked or unlocked), and what access employees have to information while they are offsite. Also develop this same kind of a plan for mobile devices which may store personal or confidential information.


Keep customers and other non-authorized personnel out of private and secure areas.


Instruct employees to save data to network drives when available and not to "C:" hard drives, which are much less secure. Should someone steal the hard drive, information stored on network drives will remain protected. Make sure your network and computers have the latest firewall, virus and malware protection and operating system updates. This helps plug vulnerability gaps that develop as hackers work at new ways to gain access. Secure Wi-Fi networks by making sure they are encrypted and the SSID (Service Set Identifier) is hidden from broadcast by the router or access point.


Consider an alarm system, preferably one monitored by a security company. Your business insurer may be able to assist you with a security assessment of your operations.


Prevent unauthorized photocopying and put photocopiers that are used to copy sensitive information in a secure environment, away from public access. Since a large number of the more current model photocopiers store copied pages on a hard drive, make sure the data is secured or wiped when the copier is traded in or sold to another user.

Screen and train employees

A significant number of identity thefts start with a dishonest employee who gives personal information to an identity thief. To protect your business against internal fraud, consider background checks for employees who have access to personal information. There are companies who can complete these checks (including criminal background, references and education credentials) on your behalf. Consider conducting regular clearance checks for employees in high-risk areas (e.g. with employees' annual performance review) to ensure staff remain free of criminal records.


Make sure staff understands privacy information policies and how to ask customers for personal information, such as not asking for customer personal data in front of others, checking signatures, and keeping customer data under lock and key and in password-protected computer files. All confidential waste, including credit card information and photocopied ID documents must be shredded, preferably with a cross-cut shredder, to prevent dumpster diving.

If information is compromised

Create an action plan now for how to respond to a data breach. If identity thieves strike, or if information goes missing, an action plan will be invaluable in responding quickly to the breach. Fast action can help reduce potential damage, and it may help your business or organization to maintain its good reputation and avoid liability in a civil action.


To respond to a data breach or loss of information, you need to follow two tracks at the same time: investigate the problem internally, and devise a plan for notifying people that a problem has occurred. Determine what information was stolen, when and how it occurred, and what you need to do to ensure that no other data is stolen or lost.


Timing is critical since prompt notification might help prevent identity theft or at least mitigate the damage. If a small number of customers are affected, inform them in writing immediately. If a larger number are affected, you may want to determine a more efficient method for advising potential victims quickly.


You should also notify law enforcement agencies as soon as you are aware that information may have gone missing or has potentially been compromised.


Wisconsin law requires businesses to notify individuals in certain circumstances if their personal information has been lost, stolen or otherwise compromised. For more information on this topic, see our fact sheet entitled “Wisconsin’s Data Breach Notification Law.”


Categories: None

Post a Comment


Oops, you forgot something.


The words you entered did not match the given text. Please try again.


Reply Janehah
2:40 AM on June 29, 2022 
how much is avodart
Reply EDwespobzj
8:17 AM on June 29, 2022 
formation therapie act en ligne pratique des therapies cognitivo-comportementales au quotidien pharmacie lepere beauvais , pharmacie deroo bailly romainvilliers medicaments nephrotoxiques , pharmacie de garde avignon traitement fibromyalgie horaire pharmacie autour de moi Bupropion prix France, Bupropion prix France Bupropion France sans ordonnance Bupropion sans ordonnance en ligne Bupropion prix sans ordonnance. pharmacie lafayette st malo pharmacie de garde colmar Omnicef Suisse sans ordonnance, Omnicef prix Suisse Achat Omnicef 300 mg bon march?© Achat Omnicef 300 mg bon march?© Omnicef 300 mg acheter. pharmacie orthopedie angers pharmacie angers gare , pharmacie nancy medicaments depression Omeprazole 20 mg acheter, Omeprazole sans ordonnance en ligne Omeprazole 20 mg acheter Achat Omeprazole 20 mg bon march?© Omeprazole Belgique sans ordonnance. ecole pharmacie avignon medicaments et allaitement .
Reply EDwespobjr
9:46 AM on June 29, 2022 
pharmacie avignon poste pharmacie ouverte beaulieu pharmacie humanitaire avignon , pharmacie nouvelle annecy pharmacie pas cher , pharmacie avignon centre pharmacie uccle ouverte samedi pharmacie noyon amiens Ivermectine prix Belgique, Ivermectine 6 mg acheter Ivermectine livraison rapide Ivermectine livraison rapide Ivermectine Belgique sans ordonnance. pharmacie de garde harhoura aujourd'hui pharmacie avignon reine jeanne MapInfo Professional 11.5 vente en ligne, Logiciel MapInfo Professional 11.5 ?  vendre Ou acheter MapInfo Professional 11.5 au meilleur prix Ou acheter MapInfo Professional 11.5 au meilleur prix MapInfo Professional 11.5 prix France. pharmacie zussy pharmacie en ligne uk , pharmacie leclerc conflans pharmacie auchan semecourt Acheter Inventor Professional 2015 en Canada, Vente Inventor Professional 2015 sur internet Achetez la Inventor Professional 2015 moins ch??re Achetez la Inventor Professional 2015 moins ch??re Acheter Inventor Professional 2015 en ligne. grande pharmacie autour de moi traitement spondylarthrite .
Reply Nickhah
12:57 PM on June 29, 2022 
buy cheap cefixime online
Reply Lisahah
8:35 PM on June 29, 2022 
where to buy zofran over the counter
Reply Robertcox
3:49 AM on June 30, 2022 
vermox drug
Reply Wimhah
11:56 AM on June 30, 2022 
retin-a micro cream
Reply JosephRow
3:09 AM on July 1, 2022 
metformin 1mg buying clomid online usa 200 mg strattera price of ivermectin where to buy albuterol tablets erectafil online plaquenil 200 cost
Reply Denhah
2:30 AM on July 5, 2022 
levitra 20 mg
Reply DavidHieno
8:51 AM on July 5, 2022 
zanaflex prescription price
Reply EstebanAmoth
6:48 AM on July 6, 2022 
zoloft canada
Reply curry 6
5:04 AM on July 8, 2022 
Thanks for all your efforts on this blog. My mum take interest in conducting investigations and it's simple to grasp why. Almost all notice all regarding the lively tactic you deliver worthwhile guidance through your website and therefore inspire response from visitors about this article and our own simple princess is undoubtedly starting to learn a lot. Enjoy the rest of the new year. You're the one carrying out a dazzling job.
curry 6
Reply off white hoodie
5:05 AM on July 8, 2022 
I precisely needed to say thanks again. I do not know the things that I could possibly have sorted out without the type of advice provided by you about such subject matter. It was actually a very intimidating issue in my opinion, but observing a professional technique you handled that took me to cry with joy. I'm thankful for the advice and even hope you find out what a great job you are getting into instructing other individuals all through your website. I know that you haven't encountered all of us.
off white hoodie
Reply cheap kyrie 5
5:50 AM on July 8, 2022 
I enjoy you because of your entire efforts on this site. Gloria enjoys setting aside time for internet research and it's really simple to grasp why. Many of us know all about the powerful tactic you create rewarding solutions by means of this blog and even boost response from other people on that matter while our favorite daughter is undoubtedly understanding a lot of things. Enjoy the remaining portion of the new year. You are conducting a useful job.
cheap kyrie 5
Reply Robertcox
5:52 AM on July 8, 2022 
hydrochlorothiazide brand name india
Reply supreme clothing
7:20 AM on July 8, 2022 
I'm also writing to make you be aware of what a useful encounter my friend's princess found using yuor web blog. She learned so many details, with the inclusion of what it is like to have an excellent teaching nature to get many more very easily know just exactly certain very confusing matters. You actually surpassed our expected results. Thanks for displaying such productive, trusted, revealing and cool tips on the topic to Mary.
supreme clothing
Reply supreme clothing
8:46 AM on July 8, 2022 
I in addition to my pals happened to be reviewing the good suggestions from your web site then instantly I had a horrible suspicion I never expressed respect to the web site owner for those techniques. All the guys are already for that reason very interested to read them and now have certainly been tapping into those things. Thank you for truly being really helpful and then for finding certain tremendous themes millions of individuals are really desperate to be informed on. My very own sincere regret for not saying thanks to you sooner.
supreme clothing
Reply supreme hoodie
9:05 AM on July 8, 2022 
I as well as my buddies appeared to be checking the good secrets and techniques from the blog and so unexpectedly developed an awful suspicion I had not expressed respect to the website owner for those strategies. The men came so happy to read through them and already have simply been enjoying them. I appreciate you for indeed being indeed kind and for opting for variety of incredibly good issues most people are really desirous to be aware of. My very own sincere apologies for not saying thanks to sooner.
supreme hoodie
Reply Ugohah
10:21 AM on July 8, 2022 
drug singulair
Reply kyrie 7 shoes
10:33 AM on July 8, 2022 
Thank you for all your valuable labor on this website. My mother enjoys setting aside time for research and it's easy to see why. Most people hear all of the lively manner you make priceless tips and tricks via the blog and as well as strongly encourage contribution from other individuals on the idea while my daughter is learning so much. Have fun with the rest of the year. Your performing a tremendous job.
kyrie 7 shoes