The Federal Trade Commission (FTC) provides the following high-level guidelines for Protecting Personal Information:

• Take stock - Know what personal information you have in your files and on your computers.
• Scale down - Keep only what you need for your business.
• Lock it - Protect the information you keep.
• Pitch it - Properly dispose of what you no longer need.
• Plan ahead - Create a plan to respond to security incidents.

 The FTC guidelines apply to both electronic and physical information. The following technology solutions help protect your digital identity:

• Privacy Protection - Software that protects your identity by finding and securing or deleting your personal information. You should run privacy protection software on a regular basis to discover and protect information added to your computer through web browsing, emailing, and general computer use.
• Firewall – A software or hardware firewall is the first line of defense against computer hackers or intruders. You should enable or install a firewall and make sure it is configured properly.
• Anti-Virus Protection - Help protect your entire PC by adding anti-virus software that monitors your computer for worms and viruses. Your anti-virus software should be configured to continually scan your computer for threats.
• Anti-Spyware Protection - Anti-spyware programs are designed to block or rid hard drives of any unwanted cookies or applications. You should run checks for spyware on a regular basis to find and eliminate any new applications.
• Spam Filters - Filtering software helps block and filter unwanted e-mail and blocks unwanted addresses, reducing the likelihood of receiving viruses, worms, and spyware from unknown senders. You should enable a spam filter for your e-mail program or use an internet mail service with anti-spam capabilities.
• Ad-Blocking - These tools and features enable blocking or limiting of pop-ups and other types of ads. Take advantage of your web browsers' built-in features or install a third-party ad blocker.
• Operating System & Software Updates - Over time software companies may release updates (e.g., patches, fixes, or service packs) to their applications to increase security. You should install these updates as soon as they become available. If your operating system or application has an "auto-update" feature, you should consider enabling it. All operating systems - Windows, Mac, and Linux - require periodic updates.

But, protecting against online risks is only part of the equation to securing your identity. You should also follow the recommendations below:

• Shred personal information - Tearing and shredding are not the same thing, as only shredding ensures private information is destroyed into unidentifiable pieces. Shred all unsolicited, pre-approved credit card offers, paper bills that are no longer necessary, unneeded tax forms, government documents, and anything else with your personal information printed upon it.
• Check your credit report periodically - Americans are entitled to receive a free copy of their credit report from each of the 3 reporting agencies once per year. Visit http://www.annualcreditreport.com
• Review your monthly credit card and bank statements - Promptly and thoroughly check for any errors or unauthorized purchases. Notify your credit or debit card issuer immediately if you suspect someone is using your account without your permission.
• Protect critical documents - When possible, limit what you carry. If you have your wallet or purse lost or stolen, it’s easier to track fewer credit cards. Don’t keep your Social Security card and any information that includes your Social Security number in your wallet or purse.
• Be aware of your surroundings - Thieves may eavesdrop and overhear the information you give out orally, look over your shoulder while you type or use an ATM, or use a camera phone or other technologies to steal your information.

 As a business you must protect your private information, that of your employees, and that of your customers. While the above guidelines apply to you as well, there are additional steps that you should take to safeguard against, and prepare for, identity theft and data leakage.

The National Cyber Security Alliance (NCSA) provides guidelines, which are summarized below:

• Prepare Your Employees - Your employees are your greatest allies in keeping your information and systems secure. Update your written procedures and training programs to make cyber security second nature to your staff.
• Prepare Your Systems - System upgrades seem to be a constant outlay of your precious resources. Develop plans so you can make smart decisions when updates and changes to your systems are necessary.
• Prepare Your Customers- Communicate effectively with your customers. By helping them understand vulnerabilities and your aggressive stance to keep them safe, you will help build trust and keep all parties safe in cyber space.

The following actions can help you meet those goals:

• Build In Security for New, Current, and Departing Employees - For all employees, conduct background checks, have everyone sign confidentially and privacy statements, and conduct periodic training and awareness programs. When employees depart, follow policies to deactivate accounts, change passwords and codes, revoke physical access, and recover cardkeys.
• Build Security Processes into the Management of Your Systems - Ensure that computer accounts have effective passwords, especially those of administrators and privileged users. Install security and privacy software on all of your desktops and servers and keep all software up-to-date with security patches. Perform periodic audits for unsecured private information and mis-configured systems.
• Build Trust with your Customers - Understand your applicable privacy and data breach laws. Proactively communicate with your customers and let them know what you are doing to protect their privacy and what you will do in the event of an incident. Be prepared with a hotline and email address as well as a single point of contact for the media.