# What to Do When a Company Loses Your Data
It seems like every other week there is a new headline about a major company experiencing a data breach. Whether it is a hotel chain, a cell phone provider, or a popular app, the notification is always the same: "We take your security seriously, but some of your information may have been exposed."
It is frustrating, and it can feel like your digital safety is completely out of your control. But while you cannot prevent a company from getting hacked, you have total control over what happens next. Here is exactly what to do when you get that dreaded data breach email.
The very first thing you should do is log into the affected account and change your password. Do not click any links in the breach notification email itself, as scammers often send fake breach alerts to steal your login details. Instead, type the company's website directly into your browser.
If you have been using the same password for that account on other websites, you need to change those too. Hackers know that most people reuse passwords, so they will take the stolen password and try it on banking, email, and shopping sites.
*Practical Tip:* Use a password manager to generate and store a unique, complex password for every single account. This way, if one site is breached, your other accounts remain perfectly safe.
If the breached account offers two-step login (also known as two-factor authentication), turn it on right now. This adds a second layer of security, usually a code sent to your phone or an authenticator app, that is required in addition to your password.
Even if hackers have your new password, they will not be able to get in without that second code. It is one of the most effective ways to stop unauthorized access.
Download the free 5-Minute Personal Security Audit Checklist — a plain-language list of the most important steps to protect yourself online. No tech knowledge required. Takes about five minutes.
No spam, ever. Unsubscribe anytime.
If the breach included financial information like credit card numbers or bank details, you need to keep a close eye on your statements. Look for any small, unexplained charges. Hackers will often test a stolen card with a tiny purchase, like a $2 coffee, before trying to buy something expensive.
If the breach included your Social Security number, you should consider placing a fraud alert or a credit freeze on your credit reports. This makes it much harder for someone to open a new credit card or loan in your name.
*Practical Tip:* Set up automatic alerts on your bank and credit card accounts. You can usually configure them to text or email you every time a purchase is made over a certain amount, or whenever an online purchase occurs.
After a breach, you might see an increase in spam calls, texts, or phishing emails. Hackers will use the stolen information, like your name and email address, to make their scams look more convincing. Be extra cautious of any unexpected messages asking for personal information or payment.
Data breaches are an unfortunate reality of modern life, but they do not have to be a disaster. By taking a few quick steps, you can neutralize the threat and protect your accounts.
If you want to make sure your foundational security is solid before the next breach happens, download our free "5-Minute Personal Security Audit Checklist" at brightpathcyber.com. It is a practical guide to locking down your most important accounts today.
For a comprehensive strategy on managing your digital footprint, setting up bulletproof passwords, and protecting your family online, our full "Click with Confidence" e-book provides the step-by-step guidance you need to stay safe and in control.
Every article we write is one piece of the puzzle. The free Personal Security Audit Checklist puts it all together in one place. Download it now and know exactly where you stand.
No spam, ever. Unsubscribe anytime.