Data Privacy Day and the business case for effective security planning
January 28th is International Data Privacy Day and serves as a reminder of the growing importance of data in our organisations and how we must protect it.
Information security management is no longer driven by the fear of security breaches alone. There is now a growing urgency to meet stringent data privacy requirements of legislation, such as the new General Data Protection Regulation (GDPR). Failure to do so could soon result in hefty fines for non-compliance.
Keep reading >
Plan Now for Proposed Privacy and Electronic Communications Regulation (PECR)
The scene has been set as the next major framework in EU privacy regulations was formally proposed and published* on 10th January 2017 by the European Commission in Brussels.
The new Privacy and Electronic Communications (e-Privacy) Regulation, if implemented, would update current rules on the confidentiality of electronic communications. It aims to bring over-the-top service providers (“OTT”) within scope of the EU’s e-Privacy laws for the first time.
Keep reading >
More than just TalkTalk – A huge fine and a lesson in information security management for organisations large and small
Like many, we’ve been following the major TalkTalk personal data breach of 2015. It has been difficult to ignore!
So serious was it that it sparked a formal enquiry by the Culture, Media and Support Committee and now, the latest news from the Information Commissioner’s Office (ICO) reveals the £400k fine they have levied on TalkTalk…the largest ever!
Keep reading >
It’s not just safeguarding of people required, it’s their data too
At a time when every penny counts, the people of Hampshire will be ruing the £100k fine placed on their County Council by the ICO. What other services could be compromised to pay that penalty?
The fine came about because highly sensitive information about adults and children was found in confidential waste paper bags in a building. So what can be done to avoid situations like that in future?
Keep reading >
Ashley Madison proving information security is sexy
Just like in the aftermath of any infidelity, Ashley Madison, the ‘cheating’ website, have got some way to go to rebuild trust.
But where did it all go wrong and how could it have been prevented?
Keep reading >
Nightmare on Cyber Street – managing the risks of remote working
My first day back at my desk on Monday this week and I almost scared myself to death reading this interesting article on cybercrime in 2015. The mere names associated with cyber threats warn of their malicious nature and give you a bad case of the heebie-jeebies. Who wants to be ‘hacked’ or suffer a ‘Masque attack’ or even suffer a ‘cyber-worm’? Yuk!
However, this is no nightmare, it’s reality. It seems the threats are getting more serious, more regular and have more costly consequences.
Keep reading >
It’s my round!
Actually, it’s Wetherspoon’s turn in what is fast becoming a data breach nightmare for more than just a few regulars. The pulling power of vouchers off alcohol at pub chain JD Wetherspoon, could have cost a few punters more than their favourite tipple in last week’s announcement that the personal details of up to 657,000 customers were stolen in the latest cyber attack on a British company.
Keep reading >