DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Securing Outsourced Consumer Data

Posted on February 26, 2013 by Dissent

No great surprises, but a new survey, Securing Outsourced Consumer Data,commissioned by Experian Data Breach Resolution and conducted by the Ponemon Institute reveals that many organizations (46%) do not evaluate the security and privacy practices of vendors before sharing sensitive or confidential information.

The survey polled nearly 750 individuals in organizations that transfer consumer data to third-party vendors.

When sharing sensitive and confidential consumer information, nearly half of respondents (49%) said that they do not monitor — or are unsure whether their organization monitors — vendor security and privacy practices. Additional key findings from the survey include:

  • Outsourcing consumer information demands oversight — Survey results indicate that organizations that transfer or share consumer data with vendors experience data breaches more often than not
    • Sixty-five percent of respondents said their organization had a data breach involving the loss or theft of their organization’s information, and the majority (64%) report that it has happened more than once
    • Sixty-four percent of respondents reported their organization has experienced more than one data breach
  • Training is essential to protect against data breaches — Causes for data breaches can be reduced significantly through enforcement of policies and effective training
    • Forty-five percent of respondents reported negligence as the root cause of third-party data breaches
    • Forty percent of data breaches were the result of lost or stolen devices
  • Security and control procedures need improvement
    • More than half of respondents (56%) said their organization learned about a data breach accidentally
    • Only 27 percent said the organization’s security and control procedures uncovered the incident; only 23 percent said the vendor’s security and control procedures alerted the organization to a breach

To access the full report, Securing Outsourced Consumer Data, visithttp://www.Experian.com/ConsumerDataStudy.


Related:

  • Legal Silence and Chilling Effects: Injunctions Against the Press in Cybersecurity
  • North Country Healthcare responds to Stormous's claims of a breach
  • Gladney Adoption Center had serious data exposures in the past few months. What will they do to prevent more?
  • 70% of healthcare cyberattacks result in delayed patient care, report finds
  • Hackers Can Remotely Trigger the Brakes on American Trains and the Problem Has Been Ignored for Years
  • Back from the Brink: District Court Clears Air Regarding Individualized Damages Assessment in Data Breach Cases
Category: Commentaries and Analyses

Post navigation

← Australian web host Uber Global Possible Breach, 30+ sites left defaced
Security shortages exacerbating breaches →

1 thought on “Securing Outsourced Consumer Data”

  1. IA Eng says:
    February 26, 2013 at 10:41 am

    I don’t like these Saps. They have all of our contact information and they at their discretion sends it to 3rd party advertisers which is unethical in my opinion. When I open up a piece of – – – – junkmail and look on the “opt out” and see a relationship to a credit reporting agency, that’s over the line.

    Anything the foul credit reporting agency has to say is crap IMO.

Comments are closed.

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure
  • Hacker group “Silent Crow” claims responsibility for cyberattack on Russia’s Aeroflot
  • AIIMS ORBO Portal Vulnerability Exposing Sensitive Organ Donor Data Discovered by Researcher
  • Two Data Breaches in Three Years: McKenzie Health
  • Scattered Spider is running a VMware ESXi hacking spree
  • BreachForums — the one that went offline in April — reappears with a new founder/owner
  • Fans React After NASCAR Confirms Ransomware Breach
  • Allianz Life says ‘majority’ of customers’ personal data stolen in cyberattack (1)
  • Infinite Services notifying employees and patients of limited ransomware attack
  • The safe place for women to talk wasn’t so safe: hackers leak 13,000 user photos and IDs from the Tea app

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Congress tries to outlaw AI that jacks up prices based on what it knows about you
  • Microsoft’s controversial Recall feature is now blocked by Brave and AdGuard
  • Trump Administration Issues AI Action Plan and Series of AI Executive Orders
  • Indonesia asked to reassess data privacy terms in new U.S. trade deal
  • Meta Denies Tracking Menstrual Data in Flo Health Privacy Trial
  • Wikipedia seeks to shield contributors from UK law targeting online anonymity
  • British government reportedlu set to back down on secret iCloud backdoor after US pressure

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.