Happy Data Privacy Day. While it may not be as sexy as Valentine’s Day, Data Privacy Day should inspire just as much, if not more, serious introspection. Paying attention to information security is critical as technology becomes more ingrained in employees’ work and social lives and a data breach becomes more of a risk.

Recognized by privacy professionals, corporations, lawyers, executives, government officials and academics around the world, Data Privacy Day provides a chance to think about the impact that technology has on our privacy and the importance of valuing and protecting personal information.

14 Tips for Keeping Private Data Private

FREE Investigation Report Template

Prepare thorough, consistent investigation reports with our free report template.

Download Template

The following tips are adapted from the National Cyber Security Allicance website and from an article by Deborah Galea on the Red Earth Software blog.

1. Turn on automatic updates for installed software if that’s an available option. Have the latest security software, web browser and operating system to defend against viruses, malware, and other online threats.
2. Ensure your employees are stewards of personal and company data. Employees should know not to open suspicious links, even if they know the source. Employees should also be instructed about your company's spam filters and how to use them.
3. Develop an online privacy policy. If you already have policies in place, review and update them to ensure they address current threats and best practices.
4. Train employees to maintain company privacy standards to protect the privacy of clients’ and customers’ personal information and to manage their own privacy at work.
5. Remind your employees to make their passwords long, strong and unique, with a mix of uppercase and lowercase letters, numbers and symbols, to change them routinely and to keep them private.
6. Map your data. Know which sensitive data you have, where it is stored and where it is backed up. Document which users should have access to it and how long it should be retained.
7. Destroy data when it is no longer needed. Have a retention policy so that employees know when and how to destroy data.
8.  Keep your systems secure, by ensuring firewalls are updated and properly configured, installing anti-virus scanners on each machine, removing user accounts of ex-employees and changing default passwords as soon as possible.
9. Limit the storage of confidential data on remote devices and set up all  remote devices and laptops for remote disable or wipe.
10.  Filter incoming email to block spam and phishing attacks.
11. Implement a managed file transfer solution that encrypts confidential emails and authenticates recipients. Provide your customers with a secure upload form on your website that encrypts confidential documents.
12. Educate your employees on how to keep clients’ and customers’ data safe and why they should not post sensitive information on social networks.
13. Check access and event logs for unusual processes and services running on servers and computers. Run vulnerability scans on a regular basis.
14. Review your security practices at least every six months with stakeholders from IT, legal and human resources. Check for any new data security regulations that apply to your company.

These are all ways you can help to keep your company’s and your customers’ private data private, but don’t just think about it on Data Privacy Day. Make this a data privacy year.