Information Security Issues on eBay Essay Example

numbers, and e-mail.

It is mandatory, meaning, all organizations that process data must comply. eBay, as its initiative, has tried to resolve this problem. One important counter measures that eBay is implementing is their ID Verify program. It is a program that validates registering members by cross-checking the contact information submitted with a third party company’s (Equifax in the U. S.

) consumer and business database. B. Credit Card FraudThis type of internet crime can be a result to the previous type which is identity theft. Credit card fraud is the use of stolen credit card information to acquire services or pay goods. There are many ways of stealing credit card information. The simplest way is copying information from retailers.

Hackers can obtain big amount of credit card information by penetrating companies’ databases. Table 1 shows total loss to credit card fraud in UK. There is no specific counter measure that eBay has written about card fraud. However, it has provided some useful tips in preventing this kind of fraud.One of which is ‘not to submit card information’ in unsafe sites as your account might be stolen and used in fraudulent transactions.

Another issue that is of great significance in eBay is its strength in protecting its databases from being hacked. Well, there is really no safe database considering that technology is always changing and that hackers might someday figure out how eBay database works. As of now, eBay uses its own data encryption system in securing the data supplied by its users. Only time will tell when will the hackers will be able to decode its robotic encryption.Another issue that affects eBay’s service is

its banning of selling virtual goods from the game to the actual people as it was against the provisions of free-market trade system. Truly it is but according to eBay, it is just the steps they take to simply prevent any future legal recourse from companies who own any of those goods.

In fact, they have a program called the Verified Rights Owner (VeRO) Programme where the intellectual property rights owners can request for removal of item listings that infringe their intellectual property rights. This helps protect buyers from buying counterfeits or unauthorized sale.eBay’s Privacy Policy The company provides information about how it handles its customer’s personal information. eBay collects and stores the following personal data: contact information, transactions, shipping and billing, IP address and web log information, and other supplemental information from third parties. eBay understands that it needs to protect the information the user submits to them. It does not sell information to third parties who might use the data for their marketing purposes without the customer’s explicit consent.

eBay, however, knows and understands the limits of privacy.It said it can disclose personal information in response to legal requirements, intensify site security, respond to claims, or secure all users’ rights, property, or safety. In addition, eBay encourages its customers to disclose his privacy practices and respect the privacy of others. Conclusion eBay is an web-based retail company.

It faces many issues in information security on its legal and ethical aspect. Some of the major issues that affect eBay are the following: i) how does eBay handle internet fraud that affects the privacy of its customer;ii) how does eBay protects its databases from hideous

hackers; iii) how does eBay protects itself from possible legal recourse from other companies who own the items it sells. The presence of these issues did not hinder the growth of eBay. It provided counter measures to these legal and ethical issues.

It fulfills its duty of protecting its customer’s confidentiality through its privacy policy. Recommendation The following are recommendations to the company in its continuous struggle for success in business and customer service:i) the company should provide a program against credit card fraud; ii) the company should intensify its implementation of ID Verify program so that only legitimate owners of personal data will be able to use their own information in setting up an account at eBay; iii) the company should, as much as possible, allow virtual goods and other products as long as the company permits them to sell the products so that it will not disappoint some customers who want to earn money in a clean way; and,iv) the company shall include as an option to the customers privacy settings, a button/checkbox where the user can use to prevent publishing of his personal data over the internet.References: (Blackwell; Office, March 2003; Shermach, 2006; Wolverton, 2002) "e-commerce. " The Columbia Electronic Encyclopedia, Sixth Edition.

Columbia University Press. , 2003. Answers. com 25 Feb. 2007. eBay, Inc.

Security Center: Rules & Policies. Retrieved Feb 26, 2007 from http://pages. ebay. com/securitycenter/rules_policies. html