Network Computing is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Breach Notification Service is a Bad Sign

You know data security breaches are way too common when a company builds a business around customer notification of stolen information.
First Advantage Membership Services is launching the Security Incident Response Notification (SIRN???get it, like a siren?). If you've just exposed personally identifiable information, this service will leap into action to let your customers know they are screwed. (I wonder if there's a companion service that alerts attorneys specializing in class action lawsuits.)

SIRN also lets affected businesses choose a credit monitoring service to offer to consumers whose information has been exposed. Hey, guess what? First Advantage offers credit monitoring services! How convenient.

This is the law of unintended consequences at work. Customer notification requirements--and penalties for non-compliance???are on the books in a majority of U.S. states. These laws are supposed to encourage companies to better protect PII.

But protecting PII is hard. My guess is, many companies will find it cheaper and easier to employ a service that helps them with post-breach responses instead.

I can't blame First Advantage for getting into this market. After all, data breaches are a growth industry. The positive spin is that it's a form of insurance???if the worst happens, you're covered. But still, don't you think the money being spent on a notification service could be better employed on data protection?

  • 1