{"id":2870,"date":"2014-06-24T00:00:00","date_gmt":"2014-06-24T00:00:00","guid":{"rendered":"http:\/\/otava.test\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/"},"modified":"2014-06-24T00:00:00","modified_gmt":"2014-06-24T00:00:00","slug":"experts-be-fast-and-forthcoming-with-details-of-a-data-breach","status":"publish","type":"post","link":"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/","title":{"rendered":"Experts: Be fast and forthcoming with details of a data breach"},"content":{"rendered":"

After the recent rash of high-profile data breaches, the Internet is ripe with tips for handling a breach at your organization. The standard experts\u2019 message: Notify consumers immediately and don\u2019t downplay the impact.<\/p>\n

The Dallas Morning News<\/em> has a keen interest in data breaches because some of the largest recent reports come from retailers headquartered in its home state of Texas: Nieman-Marcus (Dallas), Sally Beauty Holdings (Denton) and Michaels Stores (Irving).<\/p>\n

In a Sunday story, reporter Pamela Yip discussed proper handling of a breach with Javelin Security & Research senior analyst Al Pascual. His comments:<\/p>\n

\u201cIf you don\u2019t tell consumers how they\u2019ve been victimized, they can\u2019t take the necessary steps to protect themselves. Plus, it looks bad on the business. In reality, it does look like they\u2019re holding back.<\/p>\n

\u201cPeople want to place blame, so keeping the story to yourself or minimizing details to really prevent liability just exposes businesses to greater liability in the end.\u201d<\/p><\/blockquote>\n

The story claims poor breach notification strategies and a higher rate of identity fraud have resulted in a loss of customers for retailers, which tend to be punished more by the actions of consumers than other industries.<\/p>\n

More from the story:<\/p>\n

\u201cRelease clear, descriptive, and prompt notifications,\u201d Pascual said. \u201cNotifications that describe in detail how a breach occurred can bolster an organization\u2019s claims that they have corrected the security vulnerability … restoring some degree of confidence among consumers.\u201d<\/p>\n

Shutting down about information is the worst thing a business can do in a data breach.<\/p>\n

\u201cTo avoid having a breach event\u2019s narrative hijacked by the media or by adversarial organizations, prompt disclosure is imperative,\u201d Pascual said. \u201cA loss of control can imperil an organization\u2019s reputation, diminishing the trust of business partners, consumers, and shareholders.\u201d<\/p><\/blockquote>\n

Days before the Dallas Morning News<\/em> report, Healthcare IT News<\/em> associate editor Erin McCann published her own \u201cbreach response tips from experts\u201d directed at the healthcare industry. The message from the experts she contacted was strikingly similar.<\/p>\n

Along with an immediate breach response, there is another key takeaway from Gerry Hinkley, a partner at the Pillsbury Winthrop Shaw Pittman law firm: \u201cDon\u2019t give in to individuals who want to sugar coat this. \u2026 You do much better really saying what happened up front.\u201d<\/p>\n

McCann quoted Hinkley from a presentation he gave at the recent HIMSS Media and Healthcare IT News Privacy and Security Forum in San Diego. He says proper breach response can help limit cost, avoid litigation and help retain the integrity of the organization.<\/p>\n

After a breach, Hinkley suggests the following steps: 1) An internal report throughout the organization that explains the forthcoming breach notification before the Department of Health and Human Services (HHS) and media are informed. 2) Quickly report the breach to HHS. Don\u2019t wait the allowed 60 days. 3) Immediately after the breach, change passwords and authorizations and preserve all evidence. 4) Remediation, including credit monitoring and a phone line available to those affected.<\/p>\n

“What we advise, whatever the plan is, it should engender trust in your organization that you’re doing the right thing,” said Hinkley. “You can really put a lid on subsequent enforcement and litigation risk if you’re very up front; you’re apologetic; you’re very clear on what the consequences are and you provide remedies that are well-tied to what the actual risks are that are presented to the individual.”<\/p><\/blockquote>\n

\n

RESOURCES:<\/strong>
\nHealth IT News:<\/strong> Breach response tips from experts<\/a>
\nDallas Morning News:<\/strong> Businesses should be open about data breaches<\/a><\/p>\n

\n

RELATED CONTENT:<\/strong>
\nMobile Security white paper<\/a>
\niHT2 recommendations for HIPAA-compliant cloud business associates<\/a>
\nWhat to look for in a HIPAA cloud provider<\/a>
\nTop 5 healthcare cloud security guides<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

After the recent rash of high-profile data breaches, the Internet is ripe with tips for handling a breach at your organization. The standard experts\u2019 message: Notify consumers immediately and don\u2019t downplay the impact. The Dallas Morning News has a keen interest in data breaches because some of the largest recent reports come from retailers headquartered in its home state of Texas: Nieman-Marcus (Dallas), Sally Beauty Holdings (Denton) and Michaels Stores (Irving). In a Sunday story, reporter Pamela Yip discussed proper handling of a breach with Javelin Security & Research senior analyst Al Pascual. His comments: \u201cIf you don\u2019t tell consumers how they\u2019ve been victimized, they can\u2019t take the necessary steps to protect themselves. Plus, it looks bad on the business. In reality, it does look like they\u2019re holding back. \u201cPeople want to place blame, so keeping the story to yourself or minimizing details to really prevent liability just exposes businesses to greater liability in the end.\u201d The story claims poor breach notification strategies and a higher rate of identity fraud have resulted in a loss of customers for retailers, which tend to be punished more by the actions of consumers than other industries. More from the story: \u201cRelease clear, descriptive,…<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[],"other_category":[],"class_list":["post-2870","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"acf":[],"yoast_head":"\nExperts: Be fast and forthcoming with details of a data breach | OTAVA<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Experts: Be fast and forthcoming with details of a data breach\" \/>\n<meta property=\"og:description\" content=\"After the recent rash of high-profile data breaches, the Internet is ripe with tips for handling a breach at your organization. The standard experts\u2019 message: Notify consumers immediately and don\u2019t downplay the impact. The Dallas Morning News has a keen interest in data breaches because some of the largest recent reports come from retailers headquartered in its home state of Texas: Nieman-Marcus (Dallas), Sally Beauty Holdings (Denton) and Michaels Stores (Irving). In a Sunday story, reporter Pamela Yip discussed proper handling of a breach with Javelin Security & Research senior analyst Al Pascual. His comments: \u201cIf you don\u2019t tell consumers how they\u2019ve been victimized, they can\u2019t take the necessary steps to protect themselves. Plus, it looks bad on the business. In reality, it does look like they\u2019re holding back. \u201cPeople want to place blame, so keeping the story to yourself or minimizing details to really prevent liability just exposes businesses to greater liability in the end.\u201d The story claims poor breach notification strategies and a higher rate of identity fraud have resulted in a loss of customers for retailers, which tend to be punished more by the actions of consumers than other industries. More from the story: \u201cRelease clear, descriptive,...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/\" \/>\n<meta property=\"og:site_name\" content=\"OTAVA\" \/>\n<meta property=\"article:published_time\" content=\"2014-06-24T00:00:00+00:00\" \/>\n<meta name=\"author\" content=\"Irma Brillantes\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Irma Brillantes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/\"},\"author\":{\"name\":\"Irma Brillantes\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263\"},\"headline\":\"Experts: Be fast and forthcoming with details of a data breach\",\"datePublished\":\"2014-06-24T00:00:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/\"},\"wordCount\":620,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.otava.com\/#organization\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/\",\"url\":\"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/\",\"name\":\"Experts: Be fast and forthcoming with details of a data breach | OTAVA\",\"isPartOf\":{\"@id\":\"https:\/\/www.otava.com\/#website\"},\"datePublished\":\"2014-06-24T00:00:00+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.otava.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Experts: Be fast and forthcoming with details of a data breach\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.otava.com\/#website\",\"url\":\"https:\/\/www.otava.com\/\",\"name\":\"OTAVA\u00ae\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.otava.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.otava.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.otava.com\/#organization\",\"name\":\"OTAVA\u00ae\",\"url\":\"https:\/\/www.otava.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg\",\"contentUrl\":\"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg\",\"caption\":\"OTAVA\u00ae\"},\"image\":{\"@id\":\"https:\/\/www.otava.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263\",\"name\":\"Irma Brillantes\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g\",\"caption\":\"Irma Brillantes\"},\"url\":\"https:\/\/www.otava.com\/blog\/author\/ibrillantesotava-com\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Experts: Be fast and forthcoming with details of a data breach | OTAVA","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/","og_locale":"en_US","og_type":"article","og_title":"Experts: Be fast and forthcoming with details of a data breach","og_description":"After the recent rash of high-profile data breaches, the Internet is ripe with tips for handling a breach at your organization. The standard experts\u2019 message: Notify consumers immediately and don\u2019t downplay the impact. The Dallas Morning News has a keen interest in data breaches because some of the largest recent reports come from retailers headquartered in its home state of Texas: Nieman-Marcus (Dallas), Sally Beauty Holdings (Denton) and Michaels Stores (Irving). In a Sunday story, reporter Pamela Yip discussed proper handling of a breach with Javelin Security & Research senior analyst Al Pascual. His comments: \u201cIf you don\u2019t tell consumers how they\u2019ve been victimized, they can\u2019t take the necessary steps to protect themselves. Plus, it looks bad on the business. In reality, it does look like they\u2019re holding back. \u201cPeople want to place blame, so keeping the story to yourself or minimizing details to really prevent liability just exposes businesses to greater liability in the end.\u201d The story claims poor breach notification strategies and a higher rate of identity fraud have resulted in a loss of customers for retailers, which tend to be punished more by the actions of consumers than other industries. More from the story: \u201cRelease clear, descriptive,...","og_url":"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/","og_site_name":"OTAVA","article_published_time":"2014-06-24T00:00:00+00:00","author":"Irma Brillantes","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Irma Brillantes","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/#article","isPartOf":{"@id":"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/"},"author":{"name":"Irma Brillantes","@id":"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263"},"headline":"Experts: Be fast and forthcoming with details of a data breach","datePublished":"2014-06-24T00:00:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/"},"wordCount":620,"commentCount":0,"publisher":{"@id":"https:\/\/www.otava.com\/#organization"},"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/","url":"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/","name":"Experts: Be fast and forthcoming with details of a data breach | OTAVA","isPartOf":{"@id":"https:\/\/www.otava.com\/#website"},"datePublished":"2014-06-24T00:00:00+00:00","breadcrumb":{"@id":"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.otava.com\/blog\/experts-be-fast-and-forthcoming-with-details-of-a-data-breach\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.otava.com\/"},{"@type":"ListItem","position":2,"name":"Experts: Be fast and forthcoming with details of a data breach"}]},{"@type":"WebSite","@id":"https:\/\/www.otava.com\/#website","url":"https:\/\/www.otava.com\/","name":"OTAVA\u00ae","description":"","publisher":{"@id":"https:\/\/www.otava.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.otava.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.otava.com\/#organization","name":"OTAVA\u00ae","url":"https:\/\/www.otava.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.otava.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg","contentUrl":"https:\/\/www.otava.com\/wp-content\/uploads\/2025\/03\/otava-logo.svg","caption":"OTAVA\u00ae"},"image":{"@id":"https:\/\/www.otava.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.otava.com\/#\/schema\/person\/35774075f8f4fcdd4eae80cb72034263","name":"Irma Brillantes","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d5251bebc1699793a698d1a6158603cb3cdc50a095a12357e42d415b3e5546c2?s=96&d=mm&r=g","caption":"Irma Brillantes"},"url":"https:\/\/www.otava.com\/blog\/author\/ibrillantesotava-com\/"}]}},"_links":{"self":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts\/2870","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/comments?post=2870"}],"version-history":[{"count":0,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/posts\/2870\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/media?parent=2870"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/categories?post=2870"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/tags?post=2870"},{"taxonomy":"other_category","embeddable":true,"href":"https:\/\/www.otava.com\/wp-json\/wp\/v2\/other_category?post=2870"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}