| |
 |
FREE Identity
Theft Prevention Checklist
Click Here |
Special Concern: Online Privacy
While many suggestions have already been listed to protect your identity online there are a few areas that require special attention.
Email Fraud
Email fraud was thoroughly explained in the preceding chapter about steps to take to prevent identity fraud. Treat every unsolicited email with suspicion and exercise caution when sending information that contains personal or financial details through email.
Protect Your Computer
Computer viruses and spyware can enter your computer when you click on a link in an email or by accessing a website that downloads the program without your consent.
While no person can prevent all exposure to these viruses and spyware you can protect your computer by installing a firewall as well as purchasing anit-virus and anit-spyware programs that routinely search your computer and remove these threats.
Viruses can spread through your computer, corrupting files and information as well as being passed on to other people through your email. Spyware can track your movements on the internet as well as collect information that you enter while using the internet including passwords, banking information and personal data.
You may also download programs that appear safe but are hiding spyware or viruses. These programs are called Trojan Horses. Only download information from sites you know and trust.
Shop Securely
Online shopping is convenient but can also pose hazards for unwary buyers. While electronic exchange of funds makes buying online easier it is important to watch for signs of a secure site. Secure sites provide encryption of data so that others can’t view it or intercept it. This encryption is called SSL (Secure Socket Layers).
Look for security symbols such as a closed padlock on the bottom of your browser window and URLs that start with https instead of http. Encryption that hides your sensitive information (like passwords, credit card numbers and other personal data) by displaying it as dots rather than the actual numbers or letters is another safety feature.
Check the Privacy Policy and only deal with reputable merchants. Check with the Better Business Bureau if you’re unsure. You may also consider third party payment processors (such as Paypal and ClickBank) which prevent the merchant from obtaining any financial information directly. Check the security status and privacy policies of any third party processor before making a transaction.
Sharing Computers or Using Laptops
If you are sending personal information on a public or shared computer you must log out of the browser before ending your session. If you don’t log out another person may be able to use the back button on the browser to obtain your information. Empty cookies so other users will not be given your information if they access the same site.
Storing personal information on personal computers (especially laptops) can be dangerous if the computer is stolen or hacked (illegally accessed). Don’t save sensitive passwords in programs that can auto-fill forms.
Online Forums and Chat Rooms
You may find that in the excitement of meeting new people and developing personal relationships in online forums and chat rooms you to forget the dangers of providing too much information.
In these social or business gatherings you may foster friendships within the group but it is important to remember that these areas are available to the public and individuals who are not making their presence known can still be ‘lurking’ on the forums and searching for personal pieces of information that are inadvertently expressed.
You never really know who you are talking to so it is wise to make it a habit to never reveal personal information such as your telephone number or address to these public groups.
Even if you are dealing with a private chat room you should exercise caution if you are not personally familiar with the individual(s) you are speaking too. Misrepresentation happens often enough to make it a real danger even for adults. Never send personal or financial information to individuals in a chat room or on a forum.
The anonyminity of the internet can cause people to say things online that they would never say in person. It is wise to avoid getting involved in heated debates (also called “flame wars” or “flaming” when directed to a particular individual). People online are just as real as those you meet in the flesh and saying something to incite another person can be just as dangerous online as offline.
Watch Where You’re Going
Don’t download anything when you don’t trust the source. Even if you are emailed or given a link in a chat room or forum you should be cautious. Look at the URL. Some links will directly download programs – including viruses – without your consent.
While using anti-virus and anti-spyware programs will help avoid problems they can’t catch everything. Know where you’re going and who is sending you.
When You Need Help…
If you need help dealing with online security issues including harassment or fraud you can contact the Cyber Law Enforcement Organization at: http://www.cyberlawenforcement.org/ or check out more information at http://www.wiredsafety.org/ or http://www.idtheftcenter.org/vresources.shtml.
While these organizations have connections to legal or volunteer assistance you should contact your local police if you suspect your identity has been stolen or fear for your safety.
Learn How to Read a Privacy Policy
One of the essential steps to protecting your privacy is understanding how to read a privacy policy.
Privacy policies should be made available in some form anytime you are asked to provide personal information. Financial institutions, health facilities or other businesses that collect your information can be asked to show you their privacy policy before you give them your information.
If the company does not have privacy policy consider doing business elsewhere. It is a show of respect to customers to tell them how their information will be used.
Online you will find privacy policies posted on websites. The privacy policy is an indication of the steps they will take to protect your identity or to inform you of how they will treat the information you provide. Simply having a privacy policy does not guarantee you any level of protection. To understand what is protected and what is shared you must read the policy.
Each site has its own criteria for a privacy policy. Some give full protection including encryption of passwords and not providing your information to any third party while others tell you that your information will be shared with affiliated companies or businesses they feel you would be interested in hearing from. You must read the policy to be aware of the steps being taken to protect you.
Here are some of the items to look for on a privacy policy:
What Information is Collected and Why?
When a business is requesting personal information it is reasonable to ask what information is collected and why it is needed. If they request information that doesn’t seem relevant they should state why they need it.
If there is no explanation for the request try to avoid giving the additional information or ask them why they need it. Asking for your income or the name of your spouse is the kind of information you might question providing without reasonable cause.
How is the Information Collected?
While filing out paper forms is straight forward you need to find out from websites how the information is being collected. Websites sometimes use cookies that they install on the visitor’s computer to track information about what pages they click on, how long they spend there and your IP address.
This information can be tracked without your consent. Usually it is only to facilitate the company’s marketing research or to assist you by using your information from previous visits. You should be able to find out what information is automatically stored by reading the privacy policy.
What Will the Information be Used for?
If the business asks for your personal or financial information you have a right to know what it will be used for.
Is it only to complete the transaction? Will they view a purchase as permission to market to you again or to sell your information to other businesses? This information should be available in the privacy policy as well as information on how to ‘opt-out’ of these uses.
Who Will Have Access to Your Information?
Is the information sold or rented? Do they share your name, email address or purchasing habits with other businesses? These areas should be clearly outlined in the privacy policy. If they do sell or rent the names on their list you may wish to limit the information you provide.
Watch for terms like “affiliates”, “sponsors” or “partners” since you will have no idea who will be receiving the information.
How Secure is Your Information?
What steps are taken to protect your personal information? Any transaction that requires you to submit personal or financial information should have SSL (Secure Socket Layers). SSL will encrypt the information so that it can’t be read by others during transmission.
You can verify the security by looking for the https at the beginning of the URL and an icon with a lock (closed) in the bottom corner of your browser window. While these methods are not completely infallible and can possibly be mimicked on fraudulent sites they are a good indication that security precautions are being taken.
Can You Correct Personal Information?
You should be able to review or correct information that is collected about you. The steps should be outlined in the privacy policy and be both convenient and inexpensive.
Can You ‘Opt-Out’?
Wherever your information may be shared you should have the right to ‘opt-out’. In some cases there will be a box that you can click to opt-in or opt-out when entering your information. Watch out for small boxes that are already checked as the default since you are implying you are accepting the offer even if you don’t personally check the box.
The privacy policy should also give you directions on how to opt-out if the option isn’t given when entering your information.
While this list is not exhaustive it does highlight some of the main features that you should look for in a privacy policy. The other information that should always be listed is a contact name, address and telephone number where you can speak to someone regarding the policy.
|
