Privacy Ref Blog by Tag

Tag "Social Media" returned 7 posts

You can lead a friend to water…

Yes, I admit I have a Facebook account. I even belong to a group or two. One of a group’s members seemed to be asking for way to much personal information over the past few weeks, but the other members really don’t seem to care. Continue reading this post…

Posted on June 20, 2014 by Bob Siegel - No Comments
Tags: , , ;


How easy are you to find using limited personal information?

This weekend I was involved in an event that allowed me to see just how easy it is to find an individual given a minimum of personal information. I knew it would be easy, but how easy was the surprise. Continue reading this post…

Posted on May 5, 2013 by Bob Siegel - No Comments
Tags: , , , , ;


Who is your staff friending?

Defining a social media policy is a difficult undertaking. It requires a balance of protecting your company’s privacy and restricting your employees’ online activities. When an employee friends a customer or vendor, a seemingly innocent post may result unintended consequences.
Continue reading this post…

Posted on February 11, 2013 by Bob Siegel - No Comments
Tags: , , ;


Mobile devices and business privacy

Before smartphones there were cameras. Businesses precluded the use of cameras within their premises by policy to protect intellectual property and privacy. Now, mobile devices have changed the rules (or at least bent them).

Smartphones and tablets have become standard tools for our every day business and personal lives. Unlike cameras, the use of these devices is usually not banned in the workplace. In fact in  many cases their use is being encouraged. The flexibility of these mobile devices, including the ability to take pictures, record voices, or take credit card charges,  add risk to the protection of privacy (personal information for customers / employees and intellectual property for the business).
Continue reading this post…

Posted on February 3, 2013 by Bob Siegel - No Comments
Tags: , , , , , ;


Facial recognition, familiarity, and the creepiness factor

Several weeks ago there were a number of articles on  British Airways googling their VIP passengers before boarding a flight. This practice allowed BA to step up their  level of customer service including recognizing these people by name as they arrived. BA could also gather all sorts of personal information about these customers so “creepy alarms” went off.
Continue reading this post…

Posted on August 20, 2012 by Bob Siegel - No Comments
Tags: , , , , ;


Social Engineering and Challenge Questions

A recent security breach of Apple’s iCloud security resulted in a journalist’s data being wiped out on his MacBook, iPad, and iPhone. The breach was accomplished through some cleaver social engineering. For those unfamiliar with the term, social engineering is the practice of manipulating people to do something that would cause them to share confidential information. This information is then used to allow someone to impersonate someone else, gaining access to financial or other accounts. Phishing would be a common form of social engineering.

The Apple situation got me to thinking about how help desks verify the identity of who they are talking to. Many company’s take the approach of asking challenge questions based on information you have provided to them or questions you have pre-answered. When creating these questions there is always a balance between selecting information that will keep the site secure versus making it easy for the customer to remember how they answered. You don’t want the answers so easy that the answers may be guessed (or found in a social networking site) and you don’t want them too difficult so that your customer cannot remember the answer themselves. I provided a list of some typical challenge questions at the end of this post.
Continue reading this post…

Posted on August 13, 2012 by Bob Siegel - No Comments
Tags: , , ;


Does your staff overshare your corporate private information

Watching the Olympics is a quadrennial event for me. There are sports I like to watch that never get any coverage except when the Olympics role around. This year for some reason I’ve started paying attention to the human interest stories featuring the athletes (something, as a guy, I am loathe to admit). There is always some things shared that might be considered private information, but that is to be expected.

During one of the stories about Missy Franklin, an outstanding US swimmer that has yet to graduate high school, a video she put together when she received her first drivers license was shown (the network appropriately blurred the personal information). I decided to search Google and YouTube to see if sharing your license information was unusual or not. I was surprised by how much I found.
Continue reading this post…

Posted on July 30, 2012 by Bob Siegel - No Comments
Tags: , , , , ;


Subscribe to our mailing list

Please fill out the form below.


Want to find out more?

Simply go to the contact page, fill out the form, and someone from Privacy Ref will be in touch with you. You can also send an email to or call (888) 470-1528.


May 31, 2019

We are now offering Privacy Professional Training from the IAPP at our Houston and Nashua offices in addition our Delray Beach location.

Latest Blog Posts

June 13, 2019

Fifty States, Fifty Laws

The big news lately is that individual states are proposing their own privacy laws. California has the California Consumer Protection Act and now New York and Maine have also proposed laws. There has been discussion of a federal law, however it seems unlikely that any kind of landmark legislation on privacy passes through to be signed. How is a business to be ready for up to 50 different laws?

Continue reading this post...

June 12, 2019

Privacy Comes at a Price
At Apple’s World Wide Developers Conference last week, the message was all about Privacy. Apple has been more privacy-minded than other tech companies – that’s not news and it’s why I have an iPhone. They’ve introduced some interesting privacy features, such as showing location tracking, which I think is pretty cool. I don’t leave my location setting on, rather turn it on when I need directions and then back off. It’s tedious, but I’m not confident that when I’ve turned off location services, apps aren’t tracking me even though I said “no”. Sadly, I don’t think no means no on the Internet. So, I’ll be able to see if I’m right or wrong. Continue reading this post...

Other Recent Posts