HOW TO PROTECT YOUR DATA FROM THIEVES
IN THE wake of the meltdown at TSB and the harvesting of personal information from Facebook, people are increasingly nervous about managing their finances online. Here, The Mail on Sunday looks at how safe our data is and what we can do to protect ourselves from scams and fraudsters.
ACT ON NEW DATA PROTECTION LAW A SHAKE-UP of data protection rules is being introduced this month aimed at changing the way companies handle personal information given to them.
Under a new ‘general data protection regulation’, it should be easier to control how our details are shared. This includes financial facts – such as where we bank, our account numbers and sort codes. It also encompasses other personal information, including our shopping habits, medical records, email addresses and information that tracks where we are.
In the internet age many companies keep such information – profiting from selling it to other interested parties and using it for targeted advertising. The new European Union backed laws are rolled out in just under three weeks’ time to replace the Data Protection Act 1998. The old rules, designed to ensure private information could only be used for ‘specific and stated purposes’, has proved ineffective. Under the new regime, customers will have the right to insist firms do not hold or share information – even if you had earlier authorised it when ticking a terms and conditions box. You can also demand information is permanently erased.
Colin Tankard, of Harlow-based data security company Digital Pathways, says: ‘People need to realise how sharing any personal information makes them vulnerable to fraud. Now you will have the right to object to any such sharing, even if you previously gave consent.’
Some firms, such as Facebook, are playing hard ball. It has said it will ask customers to opt out if they do not want personal information shared or held.
Lisa McCarthy, of the Information Commissioner’s Office – a Government-backed body that aims to uphold privacy rights – says: ‘Personal data includes everything from names and addresses to medical records, religious beliefs and political opinions. The new rules build on previous legislation so information held by organisations can be erased in certain circumstances if that is your wish.’
ACTION PLAN: Do not tick any box allowing details to be shared if you wish your information to stay private. If you believe you have been victim of a data breach contact the Information Commissioner’s Office on 0303 123 1113. BE VIGILANT WITH PERSONAL DETAILS TO FEND off online burglars or a cyber-attack you should first ask yourself what a criminal wants. Often, just a few details – including a name, address and date of birth – are enough for someone to steal your identity and maybe take out a loan or credit card in your name.
Paul Giles, of banking trade body UK Finance, says those living in a block of flats with shared post boxes are particularly vulnerable to having personal information stolen. Thieves also use social media to discover dates of birthdays or when people are on holiday. Prying eyes on the high street can also result in PINs and card details being stolen.
He says: ‘Regularly check bank statements for any suspicious payments. If you discover any, contact your bank immediately.’
Giles also warns people of the danger of unsolicited calls, texts and emails. For example, if someone over the phone is asking to doublecheck your bank details – often by claiming you may have been a victim of fraud – simply ignore them.
ACTION PLAN: Resolutely refuse to share bank information to cold-callers – even if they claim to be on your side. Do not reveal personal details on social media websites. LEARN TRICKS OF THE FRAUDSTER’S TRADE DESPITE concerns over hightech hacking – including attacks masterminded by Russian spies – most internet crime can be combated.
So-called ‘phishing’ is a common email scam. This involves crooks tricking people into handing over key personal banking information in the hope of then draining your bank account of money.
Variations include vishing (scam phone calls) and smishing (mobile text messages). Some fraudsters manage to download ‘malware’ – malicious software – on to people’s computers, enabling them to read login details for bank accounts. Such activities need not keep you awake at night but do require you to be suspicious of anyone contacting you out of the blue. No matter what they say never give out a password or transfer money. Being vigilant is also key because high street banks rarely offer compensation if you have inadvertently authorised a payment that turns out to be fraudulent. But a new ‘confirmation of payee’ bank safeguard is being rolled out before the end of the year. This will mean that anyone authorising payment from your bank account will have to prove they are who they claim to be. ACTION PLAN: Never share a password or transfer money