California Consumer Privacy Act (CCPA) Checklist
1
Access to data
Control who has access to your data by creating individual credentials that help provide an identifiable record of when and who is accessing your data.2
Use Multi-Factor Authentication
Multi-Factor Authentication (MFA) adds another layer of security to all accounts. This prevents a brute-force attack on weak passwords and can tip you off that someone is trying to get into your account.3
Keep your computers up to date
Managed updates and alerts for unpatched workstations can help prevent most of the ransomware and viruses that strike.4
Don’t store passwords in plain text
It’s bad enough you’re reusing that old password from when you first got a computer. What’s worse is to have it saved as a contact or excel sheet.5
Use a password app
Clearly we’ve exceeded our cognitive ability to remember all of the passwords in our world. Free up some brain space, use a password app like PasswordBoss or 1Password to create unique passwords for every single site.6
Encrypt Encrypt Encrypt
Your computers should be using BitLocker (win) or FileVault (Mac) to secure the data living on your hard drive.7
Secure messaging
Email is still the easiest way to send folks a message. Employ end to end encryption so that your messages containing sensitive data like birthdays, social security numbers and even phone numbers are protected from prying eyes.8
Create a secure connection to the internet
Using firewalls, VPN and DNS filtering apps like Webroot can help prevent others from viewing your web activity or worse, influencing the sites you visit.9
Manage and monitor your network
Segmenting your network helps keep guests and others from getting to secure assets on your network. Our Unifi solution of wireless and network equipment help provide controlled access to your network.10
Backup and Test
Backups should encompass on-site, cloud and air-gapped copies of your data. Your onsite backup up could be a NAS drive, whilst other copies go to cloud storage. Finally, TEST YOUR BACKUPS11
Promote Awareness
Train your employees with phishing tests that look like legitimate emails. Make sure they can spot a fake or at least know not to follow those links.12