Phone: 630-495-2282 Fax: 630-495-2260 Map/Directions

FTC's updated Protecting Personal Information guide -- with a twist

November 18, 2016
The Federal Trade Commission has released its updated "Protecting Personal Information: A Guide for Business," which includes the latest tips about technologies that have emerged since the last published guide.
The updated version relies on the same bedrock principles: (1) Take stock, (2) Scale down, (3) Lock it, (4) Pitch it, and (5) Plan ahead. So what’s the new twist? Glimpses of some of the updated advice:
• If your company is developing a mobile app, "scale down" by ensuring the app accesses only the data and functionality it needs. And don’t collect and retain personal information unless it’s integral to your product or service.
• If implementing the principle of "lock it," consider using a multi-factor authentication, such as requiring the use of a password and a code sent by different methods.
• If sending information over your wireless network, encrypt it so that nearby attackers can’t eavesdrop. Look for a wireless router that has Wi-Fi Protected Access 2 (WPA2) capability and devices that support WPA2. 
For additional advice on cybersecurity, see the FTC’s Start with Security guide and videos. Additional compliance resources also are available from the FTC Business Center’s Privacy and Security portal.