www.steviedavison.net/steps-to-take-in-case-your-social-security-number-is-definitely-stolen
Privacy of data is a situation where the old saying « prevention is better than cure » is certainly true. A small piece harmful code posted on your website could cause massive damage. From the pop-up, to a system breach, or even the theft of a password or session. As part of your security measures for data you must define the frequency and manner in which your system scans for this type of malicious code, and what protections are in place to mitigate the risk.
Make sure that any software platforms or scripts that you use on your website are updated regularly. Hackers are targeting security holes in popular web software, and a lack of timely updates exposes your system to. Additionally, you should restrict access to databases or networks to the least number of users required to do their job.
Create a plan of action to deal with potential breaches, and assign an employee to oversee the procedure. Based on the nature of your business, you might be required to notify the law enforcement, consumers, customers, and credit bureaus. This is an important step that should be planned for well in advance.
Make sure you have strong password requirements and ensure you have a way to save passwords. For instance, you should require upper and lowercase characters, numerals, and special characters. You can also use salt and hash functions that are slow. Avoid storing sensitive user data, and when you do, lower the risk level by encrypting the data or the deletion of it after a set period of time.