Identity theft is a rising concern in Australia, with millions of Australians being victimised each year. The Australian Federal Police highlights identity theft as one of Australia’s rapidly escalating criminal issues, making it imperative for our organisation to maintain consistent vigilance.
We suggest adopting the Australian Competition and Consumer Commission’s (ACCC) three-step protocol to curb identity theft:
- Thwart – Don’t provide easy opportunities for criminals to access personal information. Here are some tips: Shred if unsure. A seemingly innocuous document, like an office supply purchase order, can be manipulated by a seasoned criminal for monetary gain. Follow our organisation’s document destruction policy and dispose of all waste responsibly. Protect the disclosure of personal information. Be conscious of the fact that anything posted online could be accessible to anyone. Stay cautious while using the phone in public spaces and opt for secure mailing solutions to lessen theft risks. Safeguard personal data. Avoid leaving personal information unattended. Ensure your storage facilities are securely locked and adhere to our organisation’s security and document retention policies when managing and storing sensitive data.
- Identify – Stay vigilant for the following warning signs: Unusual financial statements. An invoice for a new flat-screen monitor and ergonomic office chair might be for a new hire or could be a ploy by a thief to equip their home office. If suspicious, always ask questions and report your concerns. Absence of regular bills. If a monthly bill or account statement is missing, it could suggest that a thief has redirected your mail to avoid being caught. Rather than assuming an error on the part of the postal service or the vendor, initiate an investigation.
- Guard – An assertive approach is the best defence against identity theft. Abide by our organisation’s security policies and collaborate with our security personnel to initiate necessary actions, such as: Alerting relevant agencies. Notify the appropriate agencies promptly about any security breach. This step helps curb further fraudulent activities and can, at times, aid in capturing the criminals. Closing all compromised accounts. Restrict the thieves’ access to additional resources, thus also limiting our organisation’s liability. Assisting law enforcement. Work in coordination with law enforcement officials to track down those responsible for the theft, helping to prevent further damage to our organisation and possibly facilitating their arrest.
Following the Thwart, Identify, and Guard approach helps to protect personal information, reducing the vulnerability of our organisation and our customers to identity theft.
