Following a data breach, a company may find itself the subject of regulatory proceedings, which can include fines, brought by the Federal Trade Commission (FTC). In the past 15 years, the FTC has brought more than fifty law enforcement actions related to data security.
Using lessons learned from these enforcement actions, the FTC compiled and released, “Start with Security: A Guide for Businesses.” Some of the lessons highlighted in the guide include:
- Segment your network and monitor who’s trying to get in and out.
- Apply sound security practices when developing new products.
- Make sure your service providers implement reasonable security measures.
Reviewing and applying the lessons outlined in this guide can help businesses avoid future FTC enforcement actions.
A copy of the guide can be found here.