{"id":1952,"date":"2012-06-14T00:00:00","date_gmt":"2012-06-14T00:00:00","guid":{"rendered":"http:\/\/otava.test\/transparency-in-the-time-of-data-breaches\/"},"modified":"2012-06-14T00:00:00","modified_gmt":"2012-06-14T00:00:00","slug":"transparency-in-the-time-of-data-breaches","status":"publish","type":"post","link":"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/","title":{"rendered":"Transparency in the Time of Data Breaches"},"content":{"rendered":"

While reading a lot of breach notification letters on websites over the past year or so, I\u2019ve noticed a great deal of vagueness as companies tend to gloss over the nitty gritty of how credit card numbers or health diagnoses were actually leaked, stolen or lost.<\/p>\n

Now there\u2019s hard data to back that up.<\/p>\n

The Poneman Institute and Experian Data Breach Resolution combined powers to investigate the consumer side of things. They found that more than 70 percent of people who received breach notification letters were not satisfied with the alerts and wanted more information.<\/strong><\/p>\n

When something goes wrong, a lot of companies don\u2019t want to own up to it in fears of scaring off their customers. But isn\u2019t there at least some level of obligation for businesses to divulge as much information as possible to the very people that trusted and invested in them? Sixty-seven percent of affected consumers surveyed claimed the notifications didn\u2019t provide enough details. And 37 percent said they weren\u2019t even sure what the incident was about.<\/strong><\/p>\n

Sixty-one percent said they had trouble understanding their notification letters.<\/strong> If the goal of improving patient care or customer service is, in fact, consumer-based, shouldn\u2019t we strive to be as transparent as we possibly can be after a breach? Many companies don\u2019t think so. They think avoiding the difficult details and highlighting their remediation tactics will be enough to save face.<\/p>\n

[Even the Department of Health and Human Services recently recognized and included a clause in the final HIPAA omnibus rule<\/a> that mandates breach notifications sent to affected patients or individuals must be written in plain language (164.404, pg. 859). Although this applies to the healthcare industry, all industry should take note and employ this as a best practice.]<\/p>\n

But sometimes, as patients and consumers, they deserve more – they deserve to know exactly how a server was hacked, or why their paper records were lost, etc. To me, I can\u2019t see the point of offering a solution when the problem is never fully addressed.<\/p>\n

Being completely transparent every step of the way shows true integrity and honesty, even if it seems like a bad PR move, and can actually bolster the image of an organization that is willing to take responsibility for their actions, or lack thereof.<\/p>\n

At Online Tech, if we\u2019re doing maintenance or if any disruption in our hosting services to our clients is detected or foreseen, we immediately send out notifications to anyone that might be or has been affected, even it\u2019s not good news, because we believe in complete transparency.<\/p>\n

Breach notification clarity and thoroughness shouldn\u2019t just be a checkbox to satisfy legislation, similar to the way compliance requirements shouldn\u2019t take precedence over actual security. People trust you with their personal information – you should give them the full truth in return.<\/p>\n

Getting educated on prevention tactics is key to avoiding a data breach. Attend our free webinar on Healthcare Security Vulnerabilities<\/a> next Tuesday for tips from a security expert.\u00a0Although this webinar will be geared to the healthcare industry, if your organization stores any sensitive data at all (including customer records, employee records, financial information, intellectual property), this webinar content will be directly applicable.<\/p>\n

References:
\nMost Consumers Don\u2019t Understand Breach Notifications<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

While reading a lot of breach notification letters on websites over the past year or so, I\u2019ve noticed a great deal of vagueness as companies tend to gloss over the nitty gritty of how credit card numbers or health diagnoses were actually leaked, stolen or lost. Now there\u2019s hard data to back that up. The Poneman Institute and Experian Data Breach Resolution combined powers to investigate the consumer side of things. They found that more than 70 percent of people who received breach notification letters were not satisfied with the alerts and wanted more information. When something goes wrong, a lot of companies don\u2019t want to own up to it in fears of scaring off their customers. But isn\u2019t there at least some level of obligation for businesses to divulge as much information as possible to the very people that trusted and invested in them? Sixty-seven percent of affected consumers surveyed claimed the notifications didn\u2019t provide enough details. And 37 percent said they weren\u2019t even sure what the incident was about. Sixty-one percent said they had trouble understanding their notification letters. If the goal of improving patient care or customer service is, in fact, consumer-based, shouldn\u2019t we strive to be…<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[],"other_category":[],"class_list":["post-1952","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"acf":[],"yoast_head":"\nTransparency in the Time of Data Breaches | OTAVA<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Transparency in the Time of Data Breaches\" \/>\n<meta property=\"og:description\" content=\"While reading a lot of breach notification letters on websites over the past year or so, I\u2019ve noticed a great deal of vagueness as companies tend to gloss over the nitty gritty of how credit card numbers or health diagnoses were actually leaked, stolen or lost. Now there\u2019s hard data to back that up. The Poneman Institute and Experian Data Breach Resolution combined powers to investigate the consumer side of things. They found that more than 70 percent of people who received breach notification letters were not satisfied with the alerts and wanted more information. When something goes wrong, a lot of companies don\u2019t want to own up to it in fears of scaring off their customers. But isn\u2019t there at least some level of obligation for businesses to divulge as much information as possible to the very people that trusted and invested in them? Sixty-seven percent of affected consumers surveyed claimed the notifications didn\u2019t provide enough details. And 37 percent said they weren\u2019t even sure what the incident was about. Sixty-one percent said they had trouble understanding their notification letters. If the goal of improving patient care or customer service is, in fact, consumer-based, shouldn\u2019t we strive to be...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/\" \/>\n<meta property=\"og:site_name\" content=\"OTAVA\" \/>\n<meta property=\"article:published_time\" content=\"2012-06-14T00:00:00+00:00\" \/>\n<meta name=\"author\" content=\"Irma Brillantes\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Irma Brillantes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/\"},\"author\":{\"name\":\"Irma Brillantes\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263\"},\"headline\":\"Transparency in the Time of Data Breaches\",\"datePublished\":\"2012-06-14T00:00:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/\"},\"wordCount\":555,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.otava.com\/#organization\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/\",\"url\":\"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/\",\"name\":\"Transparency in the Time of Data Breaches | OTAVA\",\"isPartOf\":{\"@id\":\"https:\/\/www.otava.com\/#website\"},\"datePublished\":\"2012-06-14T00:00:00+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.otava.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Transparency in the Time of Data Breaches\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.otava.com\/#website\",\"url\":\"https:\/\/www.otava.com\/\",\"name\":\"OTAVA\u00ae\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.otava.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.otava.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.otava.com\/#organization\",\"name\":\"OTAVA\u00ae\",\"url\":\"https:\/\/www.otava.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg\",\"contentUrl\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg\",\"caption\":\"OTAVA\u00ae\"},\"image\":{\"@id\":\"https:\/\/www.otava.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263\",\"name\":\"Irma Brillantes\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"caption\":\"Irma Brillantes\"},\"url\":\"https:\/\/www.otava.com\/blog\/author\/ibrillantesotava-com\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Transparency in the Time of Data Breaches | OTAVA","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/","og_locale":"en_US","og_type":"article","og_title":"Transparency in the Time of Data Breaches","og_description":"While reading a lot of breach notification letters on websites over the past year or so, I\u2019ve noticed a great deal of vagueness as companies tend to gloss over the nitty gritty of how credit card numbers or health diagnoses were actually leaked, stolen or lost. Now there\u2019s hard data to back that up. The Poneman Institute and Experian Data Breach Resolution combined powers to investigate the consumer side of things. They found that more than 70 percent of people who received breach notification letters were not satisfied with the alerts and wanted more information. When something goes wrong, a lot of companies don\u2019t want to own up to it in fears of scaring off their customers. But isn\u2019t there at least some level of obligation for businesses to divulge as much information as possible to the very people that trusted and invested in them? Sixty-seven percent of affected consumers surveyed claimed the notifications didn\u2019t provide enough details. And 37 percent said they weren\u2019t even sure what the incident was about. Sixty-one percent said they had trouble understanding their notification letters. If the goal of improving patient care or customer service is, in fact, consumer-based, shouldn\u2019t we strive to be...","og_url":"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/","og_site_name":"OTAVA","article_published_time":"2012-06-14T00:00:00+00:00","author":"Irma Brillantes","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Irma Brillantes","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/#article","isPartOf":{"@id":"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/"},"author":{"name":"Irma Brillantes","@id":"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263"},"headline":"Transparency in the Time of Data Breaches","datePublished":"2012-06-14T00:00:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/"},"wordCount":555,"commentCount":0,"publisher":{"@id":"https:\/\/www.otava.com\/#organization"},"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/","url":"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/","name":"Transparency in the Time of Data Breaches | OTAVA","isPartOf":{"@id":"https:\/\/www.otava.com\/#website"},"datePublished":"2012-06-14T00:00:00+00:00","breadcrumb":{"@id":"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.otava.com\/blog\/transparency-in-the-time-of-data-breaches\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.otava.com\/"},{"@type":"ListItem","position":2,"name":"Transparency in the Time of Data Breaches"}]},{"@type":"WebSite","@id":"https:\/\/www.otava.com\/#website","url":"https:\/\/www.otava.com\/","name":"OTAVA\u00ae","description":"","publisher":{"@id":"https:\/\/www.otava.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.otava.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.otava.com\/#organization","name":"OTAVA\u00ae","url":"https:\/\/www.otava.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.otava.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg","contentUrl":"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg","caption":"OTAVA\u00ae"},"image":{"@id":"https:\/\/www.otava.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263","name":"Irma Brillantes","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","caption":"Irma Brillantes"},"url":"https:\/\/www.otava.com\/blog\/author\/ibrillantesotava-com\/"}]}},"_links":{"self":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts\/1952","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/comments?post=1952"}],"version-history":[{"count":0,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts\/1952\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/media?parent=1952"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/categories?post=1952"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/tags?post=1952"},{"taxonomy":"other_category","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/other_category?post=1952"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}