Hello all
I am currently putting together some information for a call centre
regarding processes for any disclosure to 'members of the public' calling
for information. This may relate to circumstances where they want to check
on status, amend details, check on which address information has been sent
to, the time and location of an event etc.
Can anyone point me towards a solid verification procedure to validate the
identity of the caller to ensure we maximise customer satisfaction but
minimise the security risk of disclosure?
Naturally, I understand that the more sensitive the data and the higher the
likelihood of damage and distress, the tighter the verification must be.
However, I would be really grateful for any tried and tested procedures.
Regards
Jonathan
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
www.jiscmail.ac.uk/user-manual/summary-user-commands.htm
all commands go to [log in to unmask] not the list please!
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|