The news of another massive online data breach may make you feel powerless to safeguard your financial privacy. But you can take some concrete steps to protect yourself in the aftermath of the recent Capital One case, as well as other breaches.

“If you needed yet another nudge to start keeping an eye on your credit report to protect against identity theft, Capital One has delivered it,” explains Federal Trade Commission (FTC) attorney Seena Gressin in an article on the FTC website.

Individuals and Businesses Affected

If you were a victim of the recent Capital One breach, you’re not alone. About 100 million people in the United States were initially reported to be affected. These were credit card customers and applicants (both individuals and small businesses), according to Capital One. The company has acknowledged that the compromised information included:

  • Credit scores,
  • Credit limits,
  • Balances,
  • Payment history and
  • Contact information.

Other information potentially gained includes home and email addresses, birthdates, phone numbers and self-reported income. Particularly concerning may be the revelation that 140,000 Social Security numbers were initially estimated to be compromised.

Safeguarding Your Information

There’s no way to guarantee that your personal information won’t be hacked in today’s online environment. But you should consider these seven protective measures.

1. Get answers. Capital One has established a hotline at 1-800-227-4825. The company also answers some basic questions in this frequently-asked-questions page.

2. Check for suspicious activity. Sign up for online or text alerts of credit card usage. “We encourage customers to monitor their credit card accounts for unusual or suspicious activity. If they notice any activity that they do not recognize … call the number on the back of their Capital One card or on their statement as soon as possible.” Capital One states that “free credit monitoring and identity protection is available to everyone affected.”

3. Change passwords. This advice applies not only to a Capital One account affected, but also to any other accounts that use the same password. In the Capital One incident, the company estimates that about “80,000 linked bank account numbers of our secured credit card customers” were exposed. Updating your password may seem annoying but it helps protect your accounts from hackers. The FTC’s advice on picking a new password: “Make your password long, strong and complex. That means at least twelve characters, mixed with uppercase and lowercase letters, numbers, and symbols.”

4. Take advantage of a free annual credit checkup. Under the Fair Credit Reporting Act, you’re allowed to obtain free annual credit reports from major reporting firms Equifax, Experian and TransUnion. This can be done by going to or calling 1-877-322-8228. The form to request credit reports can also be mailed. When reviewing your reports, keep an eye out for items that seem unfamiliar. Identity theft can be spotted in accounts or activity that you don’t recognize.

5. Put your credit in a “deep freeze” to make it harder for criminals to prey on you. A credit or security freeze is done by requesting the credit reporting agencies — Equifax, Experian and TransUnion — to block access to your credit files. It makes it harder for someone to open a new account in your name. And it’s also free under federal law. However, keep in mind that a credit freeze won’t prevent a thief from making charges to your existing accounts. You can request a freeze from the credit companies online or by phone.

6. Ask the credit reporting agencies to place a “fraud alert” on your credit report. This will warn creditors that you may be a victim of ID theft. Fraud alerts are free from all three major credit reporting agencies. When you have an alert on your report, a business must verify your identity before it issues credit. The alert stays on your report for a period of time and can be renewed.

7. Be aware of post-breach “phishing scams” by criminals taking advantage of the news. Both the FTC and Capital One warn against answering emails purportedly from the bank about the scandal. Capital One tells consumers that it won’t ask for personal information in emails. And the same warnings go for unsolicited phone calls. Online or off, it’s always a good idea to confirm the legitimacy of anyone who claims to be handling your financial information — and who is seeking personal details from you.

Stay Vigilant

News of the Capital One breach comes just one week after the FTC announced that Equifax agreed to pay at least $575 million to settle a lawsuit brought by the FTC, the Consumer Financial Protection Bureau, and 50 states and territories. The lawsuit alleged that Equifax failed to take reasonable steps to secure its network and that failure led to a data breach in 2017 that affected approximately 147 million people.

Data breaches, like those at Capital One and Equifax, are an unfortunate part of life today. As a result, ongoing credit monitoring is essential. Proactive consumers must continue to watch their credit card and bank accounts closely for unusual activity.

Contact your financial advisor for more details on how you can strengthen your private financial information against misuse and fraud.


As we’ve grown, so have our administrative and payroll needs. That’s why we’ve partnered with HR&P. HR&P supports us every day with human resources, payroll, benefits and compliance so we can focus on being the best BB’s Cafe we can be!

Brooks Bassler, Owner, BB's Cafe

Since 2010, my company has grown to over five hundred employees. With our tremendous growth we needed a human resources and payroll company that could grow with us. That company is HR&P. And as laws have changed, like the Affordable Care Act, HR&P has kept us in compliance. I focus on growing Twin Eagle. I trust HR&P with the rest.

Chuck Watson, Chairman, Twin Eagle

We are the industry leader in Oil Spill Cleanup Products and have dealt with numerous Oil Spill disasters. Knowing up close what a disaster looks like we choose to avoid them in our offices. HR&P guides us through the land mines of HR, Payroll and Benefit compliance so my team can focus solely on helping our clients with their problems, and we avoid our own.

Chad Clay, Owner, CEP Sorbents

One of the best things we did for our business was to partner with HR&P. They’re the experts in human resources, payroll and benefits administration.
HR&P’s web based solutions make it easy for us to manage our employee’s needs. They also help us stay compliant with the Affordable Care Act and with “the alphabet soup” of constantly changing Governmental regulations.

Ken Dennard, CEO, Dennard—Lascar Associates

I run a restaurant, from early in the morning to late at night, our team works hard to deliver great food in a fun atmosphere.
But there’s a lot more to running a business like human resources, payroll, benefits and compliance. So we turn to HR&P.
Outsourcing to HR&P keeps us focused on our business.

Marcus Payavla, Co-Owner, Orleans Seafood Kitchen



To receive more HR articles and tips that keep you informed, sign up for our newsletter.


What to Do: Find out how your state regulates access to personnel files. Then, organize employee files and allow access to records according to these guidelines:

  • Limit information in files to material relevant to legitimate personnel and business decisions.
  • Tell employees and applicants how their personnel records will be used.
  • Give employees access to their files.
  • Require employees to submit signed request forms to inspect files.
  • Allow employees to correct inaccurate information.
  • Have employees sign statements that they have reviewed their records. Statements include: time and date of the review, a list of copied documents, a summary of alterations made to the file.
  • Require employee consent before releasing information to third parties.
  • Limit released information to factual statements. Example: Jack was employed as a machinist at XYZ Company from January of 2008 to June of 2010.