dcsimg

10 steps to GDPR compliance: How prepared are you?

This blog has been updated to reflect industry changes. Originally published 16 October 2017.  It’s not too late to comply with the GDPR (General Data Protection Regulation). The Regulation might have come into effect last year, but it’s requirements need to be regularly reviewed. As such, it doesn’t matter what your compliance posture was six months or a year … [Read more...]

The most common causes of data breaches and how you can spot them

The longer a breach goes undetected, the more embarrassing it is for the organisation in question. But what’s a good target for identifying an incident?  According to Ponemon Institute’s 2018 Cost of a Data Breach Study, it’s 100 days. The average cost of an incident discovered within this timeframe was $5.99 million (about €5.3 million), but if it takes longer, the average rises to … [Read more...]

Gardaí issues Black Friday cyber crime warning

Black Friday and Cyber Monday – the busiest time of the year for online retailers – are almost here. Customers look forward to these dates to grab a pre-Christmas bargain, but with cyber crime at an all-time high in Ireland, it’s more important than ever to ensure the website you’re browsing is trusted and legitimate. Here are a few tips to protect yourself against cyber criminals. Do your … [Read more...]

How ISO 27001 can help you comply with the requirements of the GDPR

If you are struggling with the EU GDPR (General Data Protection Regulation), you should look no further than ISO 27001.   ISO 27001 is the International standard for information security and is a perfect launchpad for a GDPR compliance project.  Getting ISO 27001 certified means you’re already halfway to GDPR compliance and unlike the GDPR, ISO 27001 helps you protect the personal data your … [Read more...]

Believe it or not, GDPR compliance saves money!

For many organisations, especially in the financial services and healthcare industries, complying with the GDPR (General Data Protection Regulation) should be high on the agenda.   A recent Ponemon Institute report found that non-compliance costs 2.71 times more than maintaining or meeting compliance requirements. These non-compliance costs are based on business disruption, fines, penalties, … [Read more...]

Could your organisation report a breach within the required 72 hours?

With data breaches on the rise and affecting Irish organisations of all sizes, it may be time you took the GDPR (General Data Protection Regulation) seriously and began to implement a compliance plan.  Could your organisation report a breach to the DPC (Data Protection Commissioner) within the required 72 hours?  Reporting a breach within 72 hours is not easy, which is why IT Governance … [Read more...]

Are you GDPR compliant? Take our quiz and see how you score!

With data breaches on the rise and affecting Irish organisations of all sizes, it may be time you took the GDPR (General Data Protection Regulation) seriously and began to implement a compliance plan.  Could your organisation report a breach to the DPC (Data Protection Commissioner) within the required 72 hours? Reporting a breach within 72 hours is not easy, which is why IT Governance Europe has … [Read more...]

Swedish Data Inspectorate completes first GDPR Reviews

400 organisations and public authorities have been audited by the Swedish Data Inspectorate in its first review, to ascertain whether a DPO (data protection officer) has been appointed where required. The review showed deficiencies in nearly 25% of the organisations and authorities selected. Under the GDPR (General Data Protection Regulation), all public authorities and certain organisations are … [Read more...]

PCI DSS compliance demonstrates security for your customers, stakeholders and brand

Meeting the PCI DSS (Payment Card Industry Data Security Standard) requirements involves drafting detailed data protection policies and documentation to ensure security for your customers, stakeholders and your brand. From policy to procedure to configuration standard, a significant proportion of PCI DSS compliance begins with documentation. Nearly one in five data breaches caused by human … [Read more...]

The 5 most common reasons for implementing ISO 27001

If you’re considering implementing ISO 27001, the international standard for information security, you’ve probably heard experts like us talk about the benefits. However, it’s always best to find out what organisations with first-hand experience think, which is why we created our ISO 27001 Global Survey.  We asked 128 professionals from around the world about their experience with ISO 27001 and … [Read more...]