London, UK, 24th May 2017: With 12 months until the EU’s General Data Protection Regulation (GDPR) comes into force, AllClear ID, the world leader in customer security, launches in Europe. The company, which has successfully handled over 5,000 data breaches, including the three largest customer breach response operations in history, plans to offer its 72-hour Reserved Response Programme to Europe in anticipation of GDPR’s breach notification requirements. AllClear ID provides the expertise, manpower and infrastructure to quickly notify and respond to customers after a data breach in order to reduce the risk of executive loss, customer loss and brand damage.
Data breaches are growing in magnitude. Over three million records are compromised daily, with 59% of breaches reportedly related to identity theft. This is expected to rise further, despite a Gartner survey forecasting an €80 billion spend on cyber security technology as businesses seek to fortify porous systems.
From the 25th of May 2018, regulators will have the power to levy punitive damages including a €20m fine or 4% of global turnover – whichever is greater – if the following requirements are not met:
- All breaches must be reported to regulators within 72 hours of the organisation becoming aware of it
- The regulator must also be informed of “effective, proportionate and dissuasive” measures taken/proposed to address the breach and/or mitigate its effects
- If the breach is sufficiently serious to warrant notification to affected customers, the organisation responsible must do so without undue delay
AllClear ID is planning to introduce its unique Reserved Response service that guarantees 72-hour deployment of the expertise, manpower and infrastructure required to respond to a GDPR data breach. Reserved Response has been operational in the U.S. since 2015 and remains the only service of its kind. In just two years, 75 of the largest consumer brands in the world have adopted Reserved Response to keep their customers safe. AllClear ID’s Reserved Response service will guarantee businesses:
- have a proven and pressure tested breach response plan in place so the regulator is informed of measures taken
- have an emergency breach response team with the experience and scale required to deal with mass customer notifications, inbound enquiries and identity repair cases
- have a secure, instant communications channel to their customers to minimise the impact of phishing attacks posing as the official breach notification
- reduce the risk of executive loss, customer loss and brand damage that arise from a poorly managed response
With its in-app eNotification capability, AllClear ID can communicate with millions of affected customers of breaches instantly and securely. This slashes notification time and eliminates postage costs that could run to €2.2m for 10m affected customers, according to a Ponemon Institute study.
Ultimately, how a company responds to a data breach determines the severity of the consequences more so than the breach itself. Companies with reserved manpower and infrastructure are tangibly more resilient to disruption from an attack. “Companies cannot guarantee that they will not have a GDPR breach, but they can mitigate the consequences by guaranteeing a swift, and high quality response that scales to meet customer demand,” concluded Holland.
About AllClear ID
AllClear ID is the world’s leading provider of data breach customer notification and response. It provides the specialist manpower and infrastructure needed to enable fast and effective customer support in the event of a data breach to protect customers, mitigate risk, repair customer relationships, and protect brand reputation. AllClear ID’s Reserved Response service guarantees an emergency breach response team with the experience, infrastructure and scale required to deal with mass customer notifications, inbound enquiries and identity repair.
Founded in the US in 2004, AllClear ID has expanded to Europe following its acquisition of Norwegian mobile authentication specialist Encap Security. Their combined expertise helps European businesses comply with GDPR regulations and provide a guaranteed 72 hour customer notification response to a data breach, with strong multi-factor authentication as mandated by PSD2.
All Clear ID has handled 3 out of 4 of the largest breaches in history, and has notified over 250m consumers of data breaches. It is relied on by over 75 of the world’s largest companies, and boasts a 100% customer fraud resolution success rate.