Kmart Data Breach: Analysis of Security Measures and Response

Verified

Added on 2021/05/31

AI Summary

This report analyzes the Kmart data breach, emphasizing the importance of data security and consumer protection. It references the Privacy Act 1998 and the obligation of organizations to notify affected customers. The report examines the need for clear communication, including website updates and call centers to address consumer concerns. It highlights the importance of notification to consumers. The report also provides insights into data breach cases, such as those involving Equifax and eBay. It suggests that Kmart should set up a centralized space on the website to facilitate communication and show the implementation of information security channels. The report concludes by referencing literature on data breaches and ethical concerns.

Data Breach and
Security

Paraphrase This Document

Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser

• Kmart online shopping store should follow the PrivacyAct
1998 the organizations that have experienced consumer
data breach are under obligation to notify the affected
customers.
• Kmart are also responsible for providing with guidelines
regarding what steps should consumers undertake to
mitigate the harm as much as practicable.
• Notifications can be send via e-mail or on the company
website. In this way the affected consumers can take
actions to combat with theft of information
• Sending notification is a necessity since under the NDB
scheme every Australian government agency, profit as
well as well non-profit institutions , health service
Notifications to Follow

• Relevant to the topic of data breach would be
Equifax data breach which handled breach
with setting up of a website for consumers.
• This website aimed to identify the potential
thieves who stole confidential data.
• Similary eBay after their major breach asked
their customers to promptly change
passwords, and personal information.
• JP Morgan breach was handled with a keen
enquiry inside the entire system that helped
them to establish approximate number of
customers affected.
Cases of Data Breach with other Companies

With the help of Simmco Data eBay was
able to provide a concrete shape and
finding to the data breach matter. The
enquiry also helped them to identify the
internet address that caused the major
crime
eBay…

Paraphrase This Document

Need a fresh take? Get an instant paraphrase of this document with our AI Paraphraser

• A clear communication plan is needed to deal with data
breach and in this creation of a centralized space on the
website which will create a platform for communication
and exchange of information can be useful.
• This should also show that the company is making use of
information security channel to probe into the crime of
breach. Furthermore, setting up of a call center to
answer client’s doubts and notify them on matters
relating to the breach can also be effective.
Communication
Pathway

Reference List
Buttrick, H. G., Davidson, J., & McGowan, R. J. (2016). The Skeleton of the
Data Breach: The Ethical and Legal Concerns. Rich. JL & Tech., 23, 1.
Cave, J. (2016). The ethics of data and of data science: an economist's
perspective. Phil. Trans. R. Soc. A, 374(2083), 20160117.
Daly, A. (2018). The introduction of data breach notification legislation in
Australia: a comparative view. Computer Law & Security Review.
Goode, S., Hoehle, H., Venkatesh, V., & Brown, S. A. (2017). USER
COMPENSATION AS A DATA BREACH RECOVERY ACTION: AN INVESTIGATION
OF THE SONY PLAYSTATION NETWORK BREACH. MIS Quarterly, 41(3).