| A lot of people didn’t know, but Congress enacted | | | | configure the firewall to get the most out of its |
| some new security measures for businesses that | | | | potential. A lawyer recommended to me that I have a |
| offer credit (of any type) and health care providers to | | | | written security policy in place for how to handle |
| start taking action in protecting their client’s data. | | | | employees getting fired and keeping the data secure |
| Companies that are subject to HIPAA and | | | | from them—most thieveries comes from current or |
| Sarbanes-Oxley regulations are still included in these | | | | past employees. |
| new Red Flag regulations. Since HIPAA and | | | | Restrict access to your data! This means you |
| Sarbanes-Oxley only refer to verbal and written | | | | shouldn’t have your QuickBooks database on the |
| communication, the new Red Flag laws are supposed | | | | same computer that your employees use for product |
| to specifically target data systems and client | | | | research and checking their email. Separate important |
| databases in companies—regardless of the | | | | data from a general work space to keep security |
| company’s size. | | | | costs down, and to keep an additional (physical) layer |
| Now, Mom and Pop stores can’t ignore the fact | | | | of protection in place. Remember, security breaches |
| that they lack a firewall protecting their point of sale | | | | are physical first and afterwards is when the data is |
| system or accounting information anymore. This also | | | | virtually stolen. |
| means that even the smallest one-man-band business | | | | So what do all of these things mean for you? It means |
| up to the SMB of 150 employees is required to take | | | | that security costs are going to rise, due to the extra |
| extra steps in securing their company database of | | | | measures that are now required by Federal Law, but it |
| client information. Sounds like something that should | | | | also means that the extra time is going to have to be |
| have already been going on, but needless to say many | | | | taken to figure out security holes in your company. |
| people are careless and don’t perceive any value | | | | Security holes don’t have to be virtual. A hole in |
| in protection until after it’s too late. | | | | security can be something physical that allows easy |
| So what are some things you can do to help protect | | | | access to confidential information about your company |
| your client’s data and also keep your head off | | | | or its clients. If your company does have a data |
| Uncle Sam’s chopping block? First, I highly | | | | breach, many states now require that you report it to |
| recommend having an encrypted backup solution in | | | | a specialized department, and then you have to notify |
| place. Always have a back up, but if you can have | | | | all of your customers about the danger they may be |
| your backup encrypted, then you are in a great | | | | in. How many customers would you lose if this |
| position. Always make sure you have an up to date | | | | happened to your business? Are you completely sure |
| firewall on your network to protect from unrecognized | | | | you are totally safe? Have you had a professional |
| traffic. Try not to just buy a firewall and use standard | | | | help you take the necessary steps to stay protected? |
| settings; have a real IT professional sit down and | | | | |