Be aware of phishing! - Tips from the Garante on how to stay safe and secure The Garante (Italian data protection authority) has recently published on its website useful infographics around phishing to enlighten the general public about 'phishing' in general, the manner by which individuals may recognize a phishing threat, and the main risks and how these risks can be addressed, especially in terms of data privacy. Phishing is an unlawful technique used to get hold of confidential information of a person or a company to carry out fraudulent activities. Examples of compromised information include an individuals' usernames and passwords, access codes (such as the PIN to access a smartphone), information on bank accounts, payment details and credit card information. Phishing messages are usually delivered through email, SMS, chat and social media. They generally ask the recipient to provide certain information or to click on a link which re-directs the individual to a webpage to collect data. The unsuspecting recipient will likely provide personal information and in some cases, critical information to a third party, which in reality is different from the purported sender of the message. The Garante shared 5 golden rules to protect against personal data phishers: 1. An individual must use good sense in assessing whether a request for information is genuine or is likely to hide a phishing threat. Information such as personal access codes, PIN numbers, bank details, etc. should never be provided through email or SMS messages. 2. It is highly crucial to be aware of signs of phishing. Phishing messages almost always contain grammatical errors, language inaccuracies or a threatening tone to force the recipient to provide the requested information. 3. It is important to adopt precautionary measures such as the installation of an antivirus software for added protection and security and the use of complex passwords, which should be changed periodically. 4. Payment instruments that do not require the sharing of information on bank account or credit cards should be preferred, e.g., pre-paid card. Last but not the least, individuals should regularly check his own financial/bank activities and set up automated alert systems, so that activities are tracked and reported. In case of doubt, it is highly advisable for the individual to contact the relevant bank or credit card company. For more information, please contact Francesca Gaudino.