This October marks Cybersecurity Awareness Month in North America and the European Union. The purpose of this month is to educate people around the world about online security risks and the steps they can take to protect their personal information.
Many people use their email addresses and a small set of passwords (or even just one password) to log in to their online accounts. Unfortunately, this means that any hacker with your email address already has half your login details. Add in numerous password breaches from big-name digital service providers and you have a recipe for disaster.
Whatever the cause of the breach, the fact that it flew under the radar for so long tells me that securing customer accounts was not the number one priority for Marriott’s board and CEO. Now they’re also facing down a security mess caused by their own negligence. So what must companies do to avoid data breaches like Marriott’s?
Login methods may come and go, but customer identity is here to stay. In the aftermath of two massive data exposures at Facebook and Google+ that were amplified by social login, I want to talk about the implications for B2C enterprises. Are the privacy and security risks of social login still worth the convenience? And what steps should companies take to protect customer data and maintain public trust? Let’s start with some history.
There is a growing emphasis on privacy concerns and regulations as more customer interactions move online. As a result, the way that companies handle and protect consumer data privacy has become less of a constraint and more of a competitive differentiator.
With the GDPR deadline rapidly approaching (May 25th to be exact), a new Compliance Report shows that only 40% of organizations have met compliance requirements or are on their way to becoming so by the deadline. This means that there is still a huge number of businesses that need to wake up to their new obligations, or they will be at risk of fines that could be as high as 4% of revenues.