Sunday, March 12, 2017

Who takes care or protect your Personal Information? - PCI DSS

First we are going to know the concepts and then will put some hints over the table.

  • Personal Data: Mean any information relating to an identified or identifiable natural person ("data subject"); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identification number.
  •  Sensitive Data:Encompasses a wide range of information and can include: your ethnic or racial origin; political opinion; religious or other similar beliefs; memberships; physical or mental health details; personal life; or criminal or civil offenses. These examples of information are protected by your civil rights.
  • PCI DSS:Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard for organizations that handle credit cards from the major card schemes including Visa, MasterCard, American Express, Discover, and JCB. 
  • Fraud:A type of criminal activity, defined as: 'abuse of position, or false representation, or prejudicing someone's rights for personal gain'. Put simply, fraud is an act of deception intended for personal gain or to cause a loss to another party. 
  • Phishing:Email will typically direct the user to visit a website where they are asked to update personal information, such as a password, credit card, social security, or bank account numbers, that the legitimate organization already has.

So, now we have all the terms clear let's say what we have to take care of;  our personal data, information, telephone number, credit cards, addresses, pictures, emails, etc.. etc.. we have to think, be aware of the bad-intentioned behave adopted by psychological unstable citizens.

How to be "Safe"?

When you receive black mail or letters you don't want to receive, don't just put it on the trash can, destroy them till your information is not recognized.

Old ID's, get a scissor and cut them in small pieces , don't give your phone number to everyone, do not upload personal information to the cloud or share them in a social media network (Facebook, Hi5, Tw, G+, etc..), never share your address online.

Even when paying over the phone is not recommended, this is the easiest way to get Credit Cards information.

When you receive emails from your bank asking for password update or personal information update, go direct your bank Link, do not use the link provided on the email, this may drive you to another website to still your information.  this one is applicable for any other website.

When I'm Safe to share Personal Data?

Then here you have this Security Certification PCI DSS,  this one takes care of your personal data, your bank should be certified by PCI, the store that handles your payment over the phone should be certified, and any other business online, local, should be certified if they handle online or phone payments. ASK, its your right.

What about buying online? - Websites and strong companies like Amazon, Ebay, Paypal and even your bank website uses SSL certificates to protect your information and your online transactions.   your Personal Data is not handled clear by unauthorized personnel, it goes over the network encrypted (not readable).

Feel free to ask, I will be more than happy to clarify any doubt.

No comments: