10 Questions to Improve Your Store's Cybersecurity
- Do you have a cyberattack response plan in place so you don't lose time scrambling for resources or vendors to help you recover?
- Have you trained your employees to recognize potential email or phone scams to avoid "social engineering" schemes?
- Do you secure your devices and cloud-based resources using multifactor authentication, meaning you require at least two pieces of information in order to gain access?
- Have you enabled full disk encryption on your laptop and other devices to protect your data in the event the equipment is stolen?
- Do you know how to halt a hack?
- Or who to call to neutralize an attack?
- Do you back up your data daily?
- And do you regularly test out the backup, to ensure your data can be restored?
- Is your credit card payment processing vendor PCI-compliant?
- Is your customer data properly encrypted? Are you aware of data breach notification laws?
- Do you have an extra $7,115 to cover the cleanup of a data breach? (That's the average cost of a cyberattack to a small business, according to the National Small Business Association.)
If you answered 'no' to any of the above questions, read CNA's special retail report to learn how to safeguard your store from cyber attacks.
The purpose of this Guide is to provide information, rather than advice or opinion. It is accurate to the best of the author's knowledge as of the date of publication. Accordingly, this Guide should not be viewed as a substitute for the guidance and recommendations of a retained professional. Any references to non-CNA websites are provided solely for convenience, and CNA disclaims any responsibility with respect to such websites.
To the extent this Guide contains any examples, please note that they are for illustrative purposes only and any similarity to actual individuals, entities, places or situations is unintentional and purely coincidental. In addition, any examples are not intended to establish any standards of care, to serve as legal advice appropriate for any particular factual situations, or to provide an acknowledgement that any given factual situation is covered under any CNA insurance policy. Please remember that only the relevant insurance policy can provide the actual terms, coverages, amounts, conditions and exclusions for an insured. All CNA products and services may not be available in all states and may be subject to change without notice.
"CNA" is a registered trademark of CNA Financial Corporation. Certain CNA Financial Corporation subsidiaries use the "CNA" trademark in connection with insurance underwriting and claims activities. Copyright © 2017 CNA. All rights reserved.