The old saying «prevention is better than cure» certainly applies to data privacy. A small amount of harmful code uploaded to your website can cause massive damage, ranging from the opening of a pop-up window to stolen sessions or passwords and even a complete system breach. It is important to include in your security policy for data how often and when you scan your system for malicious code and what security measures you have in place to reduce the risk.
Update your software or scripts that you use on your site regularly. Hackers aggressively target security flaws in popular web software programs and the absence of timely updates opens your system up to attack. It is also recommended board software to limit database or network accessibility to the minimum number of people necessary to perform their job.
Create a plan to handle possible breaches and assign a staff member to manage the process. Depending on your business you may have to notify customers, law enforcement, and credit bureaus. This is an important procedure that should be planned out in advance.
Implement strong password requirements on consumer accounts. Make sure you have a good method for storing passwords, for example, requiring the use of upper and lowercase letters, numerals and special characters, or using salt and hash functions that are slow. Avoid storing sensitive information about users. And should you have to, reduce the risk by encryption or deleting the information after a certain period.