As a law firm, who do you turn to when your client calls and says “We think we’ve had a data breach. What do we do?”
To learn more about how we can help your clients mitigate the potential negative
impact of a data breach call:
1 (866) 751-1323.
A data breach is an event that occurs when secure data is inadvertently
released to, or accessed by, unauthorized individuals. Data breach incidents can include
the loss or theft of data such as digital media, computer tapes, hard drives, and
computers. Other instances include situations where data is compromised due to security
measures being breached or the unapproved posting or sharing of sensitive data via
email or to public Internet sites. Data breaches pose serious safety and security
risks for organizations as well as for the individuals who could be affected by the
data loss. Data breaches can be accidental but are often the result of theft with
the intent of fraud.
In the face of a data breach, organizations have the opportunity
to quickly implement sound decisions that will ultimately result in preserving brand
equity and customer relationships. According to a Javelin whitepaper, data breaches
can result in diminished customer confidence which in turn can affect your brand equity.1
The whitepaper also recommends that “The most effective way for an institution
to demonstrate its sympathy and concern is to proactively offer complimentary fraud
protection, in the form of identity protection services such as credit monitoring,
fraud alerts, credit freezes and personal information monitoring services.”2
The best way to protect your customers after a data breach is to
respond proactively and swiftly. There are data breach best practices that can be
utilized including but not limited to, customer communications, providing credit monitoring
for those affected, and providing access to industry professionals such as Experian’s
Fraud Resolution Agents for support.
Every State has specific notification laws so it’s recommended
that organizations work closely with their internal legal department(s) and/or their
external legal counsel.
Credit monitoring is offered either on a single bureau or tri-bureau
basis from Experian®, Equifax® and TransUnion®. Credit monitoring provides
daily monitoring for authorized or unauthorized activity on a consumer’s credit
A credit security freeze, also known as a credit report freeze,
file freeze or credit report lockdown, is designed to prevent a credit reporting company
(Experian, Equifax or TransUnion) from releasing credit report information without
a consumer’s consent. In order for information to be released from an account
with a security freeze, the consumer must specifically request that it be removed.
A fraud alert notifies potential credit grantors that they should
verify a consumer’s identification before credit is extended in their name.
Fraud alerts can be placed with one or all three credit bureaus; Experian, Equifax
and TransUnion. Fraud alerts last for 90 days and can be renewed for 90-day intervals.
Data breaches happen primarily due to lost or stolen laptops or
computers and to system failures. System failures qualify as security measures of
software applications that malfunction, credit card processing systems whose security
systems fail or are breached, social engineering attacks and unapproved access to
networks and other IT-related glitches where security measures are compromised. In
some cases, they are a result of direct criminal activity which targets an organization’s
Business implications of a data breach can be far reaching and long
lasting. Based on the January 2009 “Fourth Annual US Cost of Data Breach Study”
by the Ponemon Institute, the average cost of a data breach has risen to $202 per
individual record from $197 in 2007. The potential business implications may be complex
and can include: loss of customer loyalty; negative impact on brand equity; customer
loss or attrition; litigation; negative media coverage; negative online consumer feedback;
data loss; and regulatory and compliance pressure.
Experian is a global credit information organization with corporate
headquarters in Dublin, Ireland and operational headquarters in Nottingham, England
and Costa Mesa, California. The company’s principal lines of business include
credit services (Experian is one of the three credit bureaus, Experian, Equifax and
TransUnion), marketing solutions, decision analytics and interactive services.
Experian offers industry-leading data breach resolution that can
include: notification assistance, credit monitoring product fulfillment, live consumer
assistance, fraud resolution assistance, and dedicated account management. To learn
more about preventing fraud losses after a data breach, please contact us at: 1 866
751 1323 or firstname.lastname@example.org
Yes, Experian offers support for companies that have experienced
a data breach of 500 records or less. Contact a Data Breach Resolution professional
at email@example.com or call 1 866 751 1323 to learn how we can
Each State has differing regulations about the reporting and reimbursement
for resolving a data security breach. In addition, if an organization touches customers
across State lines, it may be subject to different requirements based on the location
of the affected parties. Please check with your legal department or counsel regarding
your legal obligations.
When your client experiences a data breach, one of the first phone
calls that they may make is to you, their trusted legal advisor. Because one of the
most critical aspects of addressing a data breach is immediate action, you want to
rely on the swift expertise of quality data breach resolution professionals. Experian
data breach resolution has helped numerous clients navigate highly sensitive data
breach incidents. To learn more about how our data breach professionals can help your
clients with a data breach or how to prepare against a data breach, contact our data
breach professionals at: 1 866 751 1323 or firstname.lastname@example.org.
Experian considers itself a steward of the information it collects,
maintains and utilizes. Our responsibility is to ensure the security of the information
in our care and to maintain the privacy of consumers through appropriate, responsible
use. Experian uses a variety of security systems to safeguard the information we maintain
and provide. We maintain physical security for our facilities and limit access to
critical areas. We conduct approval processes before information Experian maintains
can be accessed or changed.
Typically children, or minors, won’t have a credit report
until they have credit in their names. If a child does have a credit file, for instance
if a parent has included them as a co-signer on a credit card, Experian can monitor
the minor’s credit file. Please contact our data breach resolution professional
if you would like to learn more about the special considerations of protecting your
customers, employees or clients’ families including children under the age of
18. Data breach resolution professionals can be reached at: 1 866 751 1323 or email@example.com.
Yes, if an employee, client or customer of yours becomes a victim of identity theft they will be assigned a dedicated Fraud Resolution Agent who will assist in performing the following activities if the situation warrants:
Fraud Resolution Agents attend various seminars throughout the year
and are FCRA certified. They are currently being enrolled in a new program to become
Certified Identity Theft Risk Management Specialists.
Fraud Resolution Agents are employees. We do not have a subcontractor
for Fraud Resolution services.
1 "Data Breach Response Best Practices-Prepared for Experian", Javelin
Strategy & Research May 2009-
2 "Data Breach Response Best Practices-Prepared for Experian", Javelin Strategy & Research May 2009-