Automotive Dealership Information Security Consulting Services
|
Automotive dealerships are being heavily affected by new regulatory requirements and are relying more and more on technologies such as the Internet to provide customers quick access to dealership information such as inventory, financing options, repair shop, order parts, points-of-contact for the dealership, hours of operation, etc. While it’s very important to provide customers access to information it is also equally important to provide adequate protection around customer and employee data. Your customers have concerns about identity theft, unauthorized sharing of information and inadequate controls and process in place to ensure the protection of their personal data.
FTC Standards for Safeguarding Customer Information; Gramm-Leach-Bliley Act (GLB Act) Section 501(a) and FTC Privacy Rule; and, US Patriot Act require dealerships to ensure that adequate technical and non-technical security controls are in place to protect customer data. This is not only the law but pf | Pulliam feels it makes good business sense. When a dealership, such as yourself, shows a customer that you care about the security of their personal information you increase their level of confidence in your organization. The increased attention being paid to consumer privacy can also provide an opportunity to gain a competitive edge over competitors. Automotive dealerships can do this by: demonstrating to customers that their personal information is being handled in accordance with the law and their individual wishes, and more effectively utilizing customer information to provide targeted offers that increase revenues while reducing marketing expenses.
Being aware of and compliant with the applicable regulations provides numerous opportunities for dealerships to gain a competitive edge : a dealership can mine information to offer distinct services or products to the customers, and information can shared with affiliates such as insurance companies as a profit margin.
pf | Pulliam will assist your dealership in complying with laws and regulations by acting as your Computer Security Officer (CSO). As the CSO, pf | Pulliam staff will complete the following tasks on a yearly basis:
1. Conduct Risk Assessment (1st Task) to determine if adequate controls are in to protect customer data
2. Conduct a Regulatory Compliance Review (Annual process to ensure dealership remains in compliance with regulatory requirements)
3. Develop and Present Security Awareness & Training to all employees (Quarterly)
4. Develop and/or Update Information Security Policy (Annual process to ensure dealership policy remains up-to-date)
5. Develop and/or Create Employee “Security Statement in Regards to Protecting Customer and Dealership Data” (Annual process to ensure that all employees remain aware of their role in protecting customer data)
Contact pf | Pulliam for further information on our automotive dealership service offering.
|
|