Remember, protecting information means much more than phishing and passwords. Here are some tips for beefing up your physical security and related policies:

  • Be aware of unauthorized attempts to access restricted spaces through “tailgating” and social engineering. Also, be aware of people that might be trying to see sensitive information on your computer screens.

  • Don’t leave sensitive data in plain sight. Keeping sensitive documents or removable storage media on your desk, passwords taped to your monitor, or other sensitive information in visible locations puts the data at risk to be stolen. Keep it securely locked in your drawer when not in use. Also, don’t leave documents laying around printers or FAX machines.
  • Put that shredder to work! Make sure to shred documents with any personal, medical, financial, or other sensitive data before throwing away.


  • Be smart about recycling or disposing of old computers and mobile devices. Make sure to properly destroy your computer’s hard drive. Use the factory reset option on your mobile devices and erase or remove SIM and SD cards.
  • Lock your devices. Protecting your mobile devices and computers with a strong password or PIN provides an additional layer of protection to your data in the event of theft. Set your devices to lock after a short period of inactivity; lock your computer whenever you walk away. If possible, take your mobile devices and/or laptop with you. Don’t leave them unattended, even for a minute!
  • Lock those doors and drawers. Leaving the office? Make sure you lock any drawers containing sensitive information and/or devices and lock the door behind you.