As another company settles with the FTC over data privacy violations, Index Engines says ‘breaches are preventable’

In wake of another FTC fine resulting from exposure of personally identifiable information, enterprise information management provider, Index Engines, says the technology exists to avoid security breaches and fines.

HOLMDEL, NJ – Nearly 300,000 people had their Social Security and credit card numbers exposed when unencrypted backup tapes and other data storage belonging to Cbr Systems, Inc were stolen from a vehicle; causing the FTC to hand down drastic penalties over the next 20 years and an information management provider to preach ‘an ounce of prevention.’
Index Engines, a leader in enterprise information management and archiving solutions, watched the essence of what they help companies avoid happen as the FTC required Cbr Systems to establish and maintain a complete information security program and submit to independent security audits every other year for 20 years.
“Index Engines helps companies reduce their liability and security risks by profiling electronically stored information so they can quickly, easily and affordably see what they have,’’ Index Engines Vice President David Ballard said. “This process helps make breaches preventable because organizations know immediately where sensitive data resides within the enterprise and can secure it according to policy.”
Index Engines allows users to map out the type, location and age of data, enabling companies to determine the disposition of the content in order to maintain compliance to regulations governing electronic data. Along with metadata, Index Engines enables companies to govern themselves with a Personally Identifiable Information (PII) search that finds and accesses sensitive content including unencrypted data, social security and credit card numbers.
This standard search would have protected Cbr Systems’ information.
“Most companies have sound information governance and privacy policies, but they don’t have the capability or knowledge to enforce them,” Index Engines Vice President Jim McGann said. “The solutions are out there, companies just need to be proactive in understanding what they have or it will be a case of what you don’t know will hurt you.”
Index Engines also says this is not the first FTC data privacy charge that could have been prevented. Last year the FTC charged Wyndham Worldwide and three affiliates after credit card numbers were kept in plain text files that resulted in the electronic theft of credit card data. Index Engines allows users to search emails, files, PDFs, servers and legacy tapes and determine if they are at risk for security breaches.
“When you look at all a company risks from having a data privacy breach – fines, penalties and the loss of consumer trust – there’s no viable reason enforcing your data privacy policy shouldn’t be the first line itemon your budget,’’ McGann said. “Affordable, efficient technology exists to avoid security breaches and protect PII.”