The document outlines essential practices for securing sensitive event data, covering types of data and security measures. It emphasizes the importance of encrypting data, implementing strict physical and social policies, and regularly updating passwords. Key recommendations include conducting penetration testing and ensuring strong vendor security standards.

1. Securing your Event Data

2. Agenda
What is sensitive data?
How to look after it
Questions to ask your potential event technology provider

3. Event
Data
Confidential information
Company plans
Product data
Pricing info
Attendee
Data
Competitive intelligence
Personal details
Regulatory duties
Audit trails
Types of Data

4. Security
Technical
Tech partner
encrypts all
data you
exchange with
them &
safeguards
devices
Physical
Establish &
enforce the
right policies
around
printing &
transferring
data
Social
Ensure
passwords are
regularly
updated &
determine team
processes

5. Technical
Secure the network
SSL on all traffic between
Secure log-in
Password hashing (SHA1,
PCI Certified

6. Technical
Penetration testing:
Web components
Mobile Apps
SSAE16 – highest level report for
services
Look for vendors to big banks and IT
firms
Favour multi-event apps

7. Physical
Data Center
Standards of security
Compartmentalization of access
Vendor office access
Security procedure
Data destruction procedure

8. Social
People are the weakest link
Establish and determine team processes
Ensure information cannot be easily shared
Regularly update passwords
Revoke access to any individual that leaves

9. We’d love to hear from you!