How many customer records do you keep on file?

  • 1
    Speed Metrics
    Active
  • 2
    Quality Metrics
    Incomplete
  • 3
    Results

Question 1 of 6: Notify Regulators

How quickly will your company provide written or verbal notice of the data breach and the circumstances to regulators?

  • Performance
    Bar
  • Within
    72 Hours
  • Within
    7 Days
  • Within
    8-14 Days
  • Within
    15-30 Days
  • Within
    31-60 Days

Question 2 of 6: Notify Customers

How quickly will your company provide written notice to each customer affected by the breach, sent via first class mail, email or substitute notice website?

  • Performance
    Bar
  • Within
    72 Hours
  • Within
    7 Days
  • Within
    8-14 Days
  • Within
    15-30 Days
  • Within
    31-60 Days

Question 3 of 6: Launch Customer Website

How quickly will your company launch the website that describes the ID protections being offered, news updates, FAQs, and how to determine if you are affected?

  • Performance
    Bar
  • Within
    72 Hours
  • Within
    7 Days
  • Within
    8-14 Days
  • Within
    15-30 Days
  • Within
    31-60 Days

Question 4 of 6: Customer Call Center

How quickly can your company launch a call center to have a sufficient number of live, trained agents taking calls and responding to email and social media posts?

  • Performance
    Bar
  • Within
    72 Hours
  • Within
    7 Days
  • Within
    8-14 Days
  • Within
    15-30 Days
  • Within
    31-60 Days

Question 5 of 6: Launch Identity Protection

How quickly will your company provide services to mitigate the risk of identity theft including identity repair, fraud alerts, credit monitoring, dark web monitoring and insurance?

  • Performance
    Bar
  • Within
    72 Hours
  • Within
    7 Days
  • Within
    8-14 Days
  • Within
    15-30 Days
  • Within
    31-60 Days

Question 6 of 6: Launch Two-Factor Authentication

How quickly will your company provide an option for customers to “lock” their accounts with 
two-factor authentication to stop the thieves from using stolen identities against them?

  • Performance
    Bar
  • Within
    72 Hours
  • Within
    7 Days
  • Within
    8-14 Days
  • Within
    15-30 Days
  • Within
    31-60 Days

Question 1 of 8: Clarity of Communication

Are all of your company’s communications clearly written, comprehensive and understood by the average customer?

  • Performance
    Bar
  • Yes, Ready
    To Go
  • Partially
    Prepared
  • Planned, But
    Needs Work
  • Nothing is
    Prepared
  • I Don't
    Know

Question 2 of 8: Consistency of Communication

Are customers hearing consistent communication through the media, website, notices, call center, and store employees?

  • Performance
    Bar
  • Yes, 100%
    Consistent
  • 90%
    Consistent
  • 80%
    Consistent
  • 70%
    Consistent
  • I Don't
    Know

Question 3 of 8: Secure Communication

What communication channels do you currently have in place to prevent customers from further scams and attacks such as Phishing emails and malicious websites?

  • Performance
    Bar
  • 1st Class
    Mail
  • Incident Response
    Website
  • Email
    or Text
  • Email with
    link to info
  • I Don't
    Know

Question 4 of 8: Identity Protection Offering

How well do agents address identity theft questions and explain the protections offered?

  • Performance
    Bar
  • Excellent
  • Very Well
  • Acceptable
  • Not
    Very Well
  • I Don't
    Know

Question 5 of 8: Average Handle Times

How quickly are customer calls, emails, messages and social media posts answered?

  • Performance
    Bar
  • Immediately
  • 1-5
    Minutes
  • 5-10
    Minutes
  • over 10
    Minutes
  • Over 30
    Minutes

Question 6 of 8: System Availability

Will the phone system, website and supporting applications remain available and responsive during the massive demand spike?

  • Performance
    Bar
  • 100% Availability
  • 95% Availability
  • 90% Availability
  • 80% Availability
  • I Don't Know

Question 7 of 8: Fraud Resolution

How quickly and effectively are fraud cases resolved? (unresolved cases fuel regulator escalations, fines and lawsuits)

  • Performance
    Bar
  • Acceptable 

    Time Period
  • Within 

    30 Days
  • Within 

    60 Days
  • More Than
    
90 Days
  • Not Sure

Question 8 of 8: Escalations

How quickly are regulator information requests and 
customer escalations closed?

  • Performance
    Bar
  • Within 

    24 Hours
  • Within 

    48 Hours
  • Within 

    1 Week
  • Within 

    2 Weeks
  • I Don't
    
Know

Your assessment

You have landed in the Redemption Quadrant. Your company is in a good position to respond to a Data Breach with Speed and Quality. For additional information – download our Breach Management Workbook to stay in the top quadrant and protect your company and your customers.

Warning! You have landed in the Negligent Quadrant. Your company ranked high in speed of notification but failed provide quality in responding, which can anger your customers and hurt your brand. We can help. Download the AllClear ID Breach Management Workbook to identify gaps and prioritize improvements. Then contact us to conduct a table top assessment to help your company improve their breach response plan.

Warning! You have landed in the Negligent Quadrant. Your company ranked high in quality of response but failed to notify customers with speed, leaving your customers in the dark. We can help. Download the AllClear ID Breach Management Workbook to identify gaps and prioritize improvements. Then contact us to conduct a table top assessment to help your company improve their response plan.

Danger! You have landed in the Tragic Quadrant. Your breach response is a tragedy waiting to happen and could result in loss of customers, loss of executive leadership and create maximum destruction for your company and brand. But the good news is, we can help. Contact us today to learn how we can help you prepare and respond to a data breach.