Action and Communication Plan final for Choice Point
TEAM 5 GROUP MEMBERS:
Tao Zhang
Neha Sampath
Aprajita Sharma
Claton McDonald
Jeremy Holthuysen
Sunpatakorn Saponwatanun
Set different access levels for every customer as well
Assign different access levels for every employee.
Use a combination of finger print, ID card, and access code to enter data warehouse (archive room). Assist regulators in strengthening the security of data industry. Ensure updates are done in sequence with agency updates.
Security of data
Data accuracy
– to prevent information getting into the wrong hands
Install security cameras – to mitigate data error Thoroughly verify new customer applications call, website, background, bank account and reference, and visit
Shift focus of data gathering strategies to accuracy rather than number of entries.
Randomly check the data and if it is incorrect set penalty to data providers
Document the incidents as evidence
Appoint liaison to lawenforcement
Refuse to sell
“sensitive” information
(SSN, Driver’s license number, etc.) to small business and PI. And to big business that has no proven cause to use such information.
Privacy
– to prevent intrusion of privacy
Policy of immediate notification to consumer when personal information was compromised
Set up legal team specifically working with legal authorities to keep the company in the loop and so the company knows early what is coming and plan to handle. Corporate
Action Plan
– to mitigate future possibility of incidents Set up a crisis/risk management team to assess possible crises and key indicators, set guidelines and handbooks, crisis plan, training (on a regular basis and with everyone involved), simulations, and design suspicion report and incident report
Re-assess the rules of business conduct
(as above) and announce so that every stakeholder can follow
Increase employee awareness & alarm system Establish complaints division – to review inaccuracies, correct errors. EXTERNAL STAKEHOLDERS
Set up center to handle internal
Tao Zhang
Neha Sampath
Aprajita Sharma
Claton McDonald
Jeremy Holthuysen
Sunpatakorn Saponwatanun
Set different access levels for every customer as well
Assign different access levels for every employee.
Use a combination of finger print, ID card, and access code to enter data warehouse (archive room). Assist regulators in strengthening the security of data industry. Ensure updates are done in sequence with agency updates.
Security of data
Data accuracy
– to prevent information getting into the wrong hands
Install security cameras – to mitigate data error Thoroughly verify new customer applications call, website, background, bank account and reference, and visit
Shift focus of data gathering strategies to accuracy rather than number of entries.
Randomly check the data and if it is incorrect set penalty to data providers
Document the incidents as evidence
Appoint liaison to lawenforcement
Refuse to sell
“sensitive” information
(SSN, Driver’s license number, etc.) to small business and PI. And to big business that has no proven cause to use such information.
Privacy
– to prevent intrusion of privacy
Policy of immediate notification to consumer when personal information was compromised
Set up legal team specifically working with legal authorities to keep the company in the loop and so the company knows early what is coming and plan to handle. Corporate
Action Plan
– to mitigate future possibility of incidents Set up a crisis/risk management team to assess possible crises and key indicators, set guidelines and handbooks, crisis plan, training (on a regular basis and with everyone involved), simulations, and design suspicion report and incident report
Re-assess the rules of business conduct
(as above) and announce so that every stakeholder can follow
Increase employee awareness & alarm system Establish complaints division – to review inaccuracies, correct errors. EXTERNAL STAKEHOLDERS
Set up center to handle internal