General

Is your clients' personal information secure?

Is your clients' personal information secure?

As an advisor, you have access to personal information1 regarding your clients' health and finances—information they expect will be protected at all times. Part of your responsibilities is to ensure that steps are taken to protect all personal information in your possession.

Inadequate security measures increase the risk of personal information being lost, stolen, or shared with unauthorized parties, and can also increase your clients' risk of identity theft. If you possess personal information about your clients (on paper or in electronic formats), it is important to ensure that it is properly protected to keep it from being compromised (lost, stolen, or disclosed without authorization).

Therefore, in addition to physical security measures (e.g., locked filing cabinets, restricted office access, alarm systems, shredding of confidential documents), it is also key to implement adequate security measures when using the Internet, email, and electronic devices such as laptop computers, smart phones, and portable storage devices (e.g., USB keys, memory cards, and CDs).

Consider implementing the following effective and easy-to-use electronic security measures if you haven’t already:

What should you do if you think that personal information in your possession has been lost, stolen, or accessed by an unauthorized individual?

Immediately notify the person in charge of compliance for your general agent and any other related supplier that client information may have been compromised.

Useful links:

Top 10 Cyber Crime Prevention Tips - http://www.rcmp-grc.gc.ca/tops-opst/tc-ct/cyber-tips-conseils-eng.htm


Footnotes:

  1. What constitutes personal information?

Personal information is defined as any information concerning an individual that can be used to identify them, such as information about their finances, lifestyle, or health.

Examples of personal information include a person’s name, home address, phone numbers (home and cell), email address, social insurance number, and bank account number.

Employment information is not considered personal information, e.g., job title or position, work address, work phone number, and work email address.

  1. What is a personal firewall?

A personal firewall is software that blocks unauthorized access to a single computer connected to the Internet. It is particularly useful for users with permanent DSL connections (high speed phone line), cable modems, and dial-up access. Often included with antivirus software, personal firewalls run in the background and protect your system by preventing unauthorized access, filtering incoming and outgoing traffic, and warning the user of any attempts at access.