Thinking now about security related issues. If you became aware that personal information that was being held by an organisation you dealt with had been accessed by an unauthorised person, would you take any of the following actions?
1. Stop dealing with that organisation, such as closing your account (85 / 10 / 4)
2. Continue dealing with the organisation but not online (24 / 67 / 8)
3. Take legal action (47 / 43 / 10)
4. Publicly expose the issue (64 / 30 / 6)
5. Change your passwords on that organisation's website and any other sites you are concerned about (88 / 5 / 6)
This means that when presented with a data breach (such as Taste or Lush), Australians would be most likely to change passwords (good!), stop dealing with the organisation (knee-jerk , but if they want to...), publicly expose the organisation (presumably via Facebook, Twitter, but also word-of-mouth), take legal action (yeah, sure!) and least likely to continue dealing, but not with their on-line entity (uh-huh).
Continued on the next page.
"Clearly, there are very real business and financial implications from the loss of customer trust and confidence. Data security is not just an IT issue - it is a business issue," Mr Kendall said.
iTWire would prefer to respond that these results represent a whole lot of wishful thinking mixed in with a bunch of telling the surveyor what they want to hear.
For a start, how can 43% of respondents have the genuine desire and the wherewithal to instigate legal action?
Furthermore, reading the forum associated with the Taste breach, we see numerous concerned people, but not one threatening to abandon the service (or sue).