Up next in our Ask the Expert series, Ben Rothke, Senior Information Security Manager, reviews two certifications that should be part of your information security strategy: Service Organization Control (SOC) 2 Type 2 and International Organization for Standardization (ISO) 27001. Tapad, a part of Experian, is 27001 and SOC 2 Type 2 compliant.
Two information security certifications you can trust
Seals from Good Housekeeping and Underwriters Laboratories give consumers confidence that they can trust the product that they’re buying. For IT solutions or service providers, what, or who can you turn to for that seal of approval? There are many equivalent third-party attestations you can use. But which should you trust?
- The International Organization for Standardization (ISO) 27001
- The American Institute of Certified Public Accountants (AICPA) System and Organization Controls (SOC)
International Organization for Standardization (ISO)
27001 is an international standard for information security from the ISO. ISO 27001 is globally acknowledged and sets requirements for controls, maintenance, and certification of an information security management system (ISMS). This international standard provides organizations with a framework to identify, manage and reduce risks related to the security of information
System and Organization Controls (SOC)
The SOC, as defined by the AICPA, is a set of audit reports. SOC reports, like 27001 certificates, are used by service organizations to give their customers the confidence they have adequate information security controls in place to protect the data that they handle.
SOC 2 is an assessment of controls at a service organization regarding security, availability, processing integrity, confidentiality, and privacy. The purpose of the report is to provide extensive information and assurance to a broad range of users about the controls at a service organization that are relevant to the security, availability, and processing integrity of the systems that process user data, as well as the confidentiality and privacy of the information processed by these systems.
Why ISO 27001 and SOC 2 are important
The value of these third-party attestations is two-fold:
- Organizations can show they have passed an independent external audit
- Third-party attestations save organizations the time of having to do their own audits
In addition to 27001 and SOC 2 Type 2 compliance, we are also certified with ISO 27017 and 27018, which are add-ons to 27001 that are specific to cloud computing. We take the security and privacy of our customers’ data as seriously as they do.
Every cloud service provider (CSP) has a responsibility matrix that details what security and privacy tasks they are responsible for and which ones the customer is responsible for. Any cloud customer that needs to be made aware of what their security tasks are is putting themselves at risk.
So, when you want to engage a CSP, ask them for their attestations. They worked hard for them and will be proud to share their compliance.
We’re powered by decades of setting standards in marketing services
At Experian, we’re a privacy-first business. We’re highly focused on respecting people, their data, and their privacy. We continue to show our dedication to information security by completing these security audits every year.
The constant changes to data compliance regulations can be challenging to navigate, but you don’t have to do it alone. Contact us today. We will be your guide so you can ethically and confidently reach your customers.
About our expert
Ben Rothke, Senior Information Security Manager
Ben Rothke, CISSP, CISA, is a Senior Information Security Manager at Tapad, a part of Experian. He has over 25 years of industry experience in information systems security and privacy. His areas of expertise are in risk management and mitigation, security and privacy regulatory issues, cryptography, and security policy development. Ben is the author of Computer Security – 20 Things Every Employee Should Know (McGraw-Hill), and writes security and privacy book reviews for the RSA Conference Blog and Security Management magazine.
Latest posts
2020 has been a year of change and challenges for businesses and consumers alike. With the global pandemic, we have seen stay at home orders put in place, a shift to work from home for many, major events canceled, schools shifted to online format, graduations and other end-of-year activities canceled, and more. As we move through the phases of reopening, everyone is figuring out how to navigate the ‘new normal’ in the wake of new safety requirements, businesses are working to determine what their day-to-day operations will look like as they reopen. The changing times have implications on how consumers act, what and how they purchase, and how they manage their daily lives. With these changing times, consumers are quickly adapting their lifestyles which impacts the choices they make on how they shop, bank and provide for their families. Businesses across the United States are trying to understand how consumers are feeling during this time and how that might correlate with their visitation patterns. Using Experian’s Mobile Location data, coupled with Consumer Sentiment data, we looked at foot traffic and sentiment trends in the retail space throughout the pandemic. As you can see from the chart, there has been a steady increase in household visits to retail locations since March that correlates with the rise in sentiment. Note the differences in visitation patterns across the regions. You can see some foot traffic spikes, which correlate to reopening phases in several states during the week of May 4th and Memorial Day weekend. However, you see a lower average of foot traffic in the Northeast U.S. where reopening phases are rolling out at a slower pace. It is going to be essential for businesses to craft marketing strategies on a regional level as guidelines for reopening are the state-level. This means that a business’s consumers look different based on where they are located and might require more targeted and sensitive messaging. For example, using Experian’s Mosaic segmentation, we further delved into what consumers look like today by analyzing those Mosaics who have the most positive change in regard to the pandemic, versus those that had the most negative. You can see in the charts that there is a significant difference between the Mosaics trending positively versus those trending negatively. Consumer segments have drastically different sentiment, and foot traffic patterns and understanding how your consumers are feeling and where they are shopping will help improve your ROI. Having a comprehensive and targeted marketing plan will be essential for companies as they navigate the intricacies of reopening. Experian’s Reopening Package allows brands to take a phased approach to better understand and reach both new and existing customers through targeting, analytics and key insights. Companies can analyze their consumers’ sentiments and visitation patterns during the pandemic, segmented by Experian Mosaic® lifestyle segmentation group. Businesses can then take those insights and apply them to other models, or create their own models, to build out and run effective marketing campaigns that target current and prospective customers. A successful long-term marketing strategy needs to be data-driven, leveraging data and analytics to help craft targeted messaging. We can see that consumers want to shop again – foot traffic patterns appear to have increased since June, and sentiment is up – now it is necessary to understand where your customers fit into the spectrum. Missed our recent webinar, How COVID-19 Has Shaped Consumer Behavior for Retailers? Access the on demand version here.
Overview Chartable leverages The Tapad Graph to improve cross-device attribution rates and remove non-addressable IPs for clients. Challenge Chartable needs to differentiate between consumer and potential business IP addresses to provide accurate household modeling and reduce excess data for their customers. Podcasting generally only has access to IP addresses as a form of digital ID which limits its ability to connect activity to individuals and extend it across all devices. The Tapad + Experian solution Using Tapad, now a part of Experian, Chartable is able to cut through the noise of IP data and discard any addresses deemed a shared IP or business. Then, Tapad + Experian connects individual users to their other digital IDs and users in their household; creating a richer attribution model for Chartable customers. Increase in podcast attribution rates Get started with The Tapad Graph For personalized consultation on the value and benefits of The Tapad Graph for your business, email Sales@tapad.com today!
With the growth of digital marketing and the targeting capabilities associated with online outreach, many predicted that this would mark the end of direct mail advertising. But if Millennials have anything to say about it, that’s not going to happen anytime soon. Yes, believe it or not, Millennials are driving the resurgence of direct mail advertising, and many leading brands are now pivoting their omnichannel marketing plans to include direct mail. And with the USPS reporting more than 75.7 billion in marketing mail volume in 2019, this trend shows no sign of slowing down. Including direct mail in your plans may give your brand a better chance of reaching your audience. Why? 1. Millennials actually like getting mail.While most of us have decried “junk mail” as being environmentally unfriendly or just a pain to deal with, Millennials actually enjoy physical mail. Valassis recently cited research from USPS Customer & Market Insights stating that Millennials spend the most time sorting mail (about six minutes compared to the average, which is four minutes), plus they’re opening mail and reading it (at eight minutes versus the average of seven minutes). Valassis also conducted a study that showed that 68% of Millennials read print ads or inserts from retailers, and 64% prefer getting them through the mail. So, while digital outreach may be convenient, it hasn’t completely decimated the desire for that old-school, hands-on experience of opening and reading something that’s addressed to you. 2. Millennials respond to a multi-channel approach.Oftentimes, marketers think of omnichannel as being a combination of digital and TV, but when you add print into the mix, it can make an even bigger impact on Millennial audiences. Valassis found that 60% of consumers are more likely to make a purchase after seeing an ad when it’s presented across both offline and online channels, while 72% of Millennial parents say print ads encourage them to go online and make a purchase from that retailer. 3. Millennials think physical mail makes for a more personal approach.You’d think that e-mail would feel more personal, but with the influx of spam most people get, that’s just not the case. In fact, 67% of people see physical mail as being more personal than an e-mail, with seven out of 10 saying they prefer receiving actual mail over digital mail. And for marketers looking to make a one-to-one connection, this is music to their ears. With changing marketing plans, the mailbox has less competition than the inbox. Getting a catalog at their door with the perfect offer at the perfect time helps the marketer make the direct connection. 4. Direct mail lasts longer than digital mail.That may seem like an obvious statement, but there’s more to it than you think. When an e-mail arrives in someone’s inbox, it’s easy to ignore it, read the subject line and forget about it, or even just randomly delete it, if spam filters don’t take care of that on their own. But the average lifespan of a piece of direct mail is 17 days, which may account for how direct mail generates purchases five times larger than e-mail campaigns. It’s harder to ignore when it’s in your house and you have to physically handle it as opposed to just clicking a mouse to get rid of it. 5. Millennials trust direct mail.It’s true—research shows that 90% of Millennials think direct mail advertising is reliable. Plus, Millennials are 24% more likely to show mail to others, compared to 19% of non-Millennials… which means if they find a deal they like in the mail, they’re probably going to spread the word. Visit our Retail Marketing Solutions page to learn more about how we can help you find new customers and have more meaningful engagements with existing ones.