dcsimg

Are you ready for a data breach?

A new report has suggested that most SMEs (small and medium enterprises) don’t have anywhere near the estimated €102,000 it costs to respond to a data breach. InsuranceBee’s survey found that 83% of respondents had no money reserved to get back to normal following a cyber security incident, and 25% were unaware that that it would even cost money to put things right.   Breaches are … [Read more...]

43% of people plan to remove their personal data from social media

If you look someone up on Facebook or LinkedIn, you’ll be able to gather huge amounts of information about them without them ever knowing. Until recently, nobody seemed to think about the risks involved; it was just the way things were, and if you didn’t get on board, you were left out from a whole virtual world.  But thanks to the recent Facebook data scandal and the introduction of the EU GDPR … [Read more...]

Summer offers to kick-start your cyber security journey. Don’t miss out! 

IT Governance is a leading global provider of IT governance, risk management and compliance solutions, with a special focus on cyber resilience, data protection, the PCI DSS (Payment Card Industry Data Security Standard), ISO 27001 and cyber security.  We are committed to helping organisations protect themselves and their customers from the perpetually evolving range of cyber threats. Our deep … [Read more...]

How to respond to a data breach

Under the EU GDPR (General Data Protection Regulation), organisations must report personal data breaches to their supervisory authority within 72 hours of discovering or becoming aware of it. You might think that’s an impossibly short deadline, but don’t fear, you’re not expected to provide a comprehensive report at this stage. The process is simply to ensure that organisations are aware of … [Read more...]

Majority of EU member states missed NIS Directive deadline

Critical service providers across Europe are in for a bumpy ride later this year, and they have their governments to thank. These organisations are subject to the NIS Directive (Directive on security of network and information systems), which each EU member state was required to transpose into national law by 9 May 2018.  However, we’re now three months past that deadline and only 11 nations have … [Read more...]

Swedish Data Inspectorate begins first reviews under the GDPR

  The Data Inspectorate of Sweden has begun its first reviews under the GDPR (General Data Protection Regulation) to ascertain whether authorities and companies that are obliged to appoint a DPO (data protection officer) have done so. Those being examined operate in the private healthcare, insurance and financial sectors. Jonas Agnvall, a lawyer at the Data Inspectorate who is heading the … [Read more...]

3 tips for maintaining GDPR compliance

For the past year or so, cyber security experts have been asking, with increasing concern, whether you’ve complied with the EU General Data Protection Regulation (GDPR) yet. Hopefully you have, but it’s important to remember that compliance isn’t a fixed state. It’s not a point you get to where you can stop and think “mission accomplished”. It’s something that needs to be achieved and maintained – … [Read more...]

Most GDPR emails are unnecessary or illegal

The majority of privacy policy emails sent by organisations in preparation for the EU General Data Protection Regulation (GDPR) were unnecessary, and some were even illegal, a number of data protection experts have said. The problem is with organisations’ interpretation of the GDPR’s consent requirements. Many believe that organisations need to obtain everybody’s consent again or else delete them … [Read more...]

The GDPR and junk mail

Lawmakers and journalists have made bold claims about the EU General Data Protection Regulation (GDPR) over the past few years. ‘It will mitigate the threat of cyber attacks’. ‘It will give individuals more control over their personal data’. ‘It will lead to strict punishment for poor data protection practices’. These are all true, or at least there’s ample evidence to suggest as much. But some … [Read more...]

How to create a strong password

“My password was hacked”: it’s the go-to excuse for people who post something regrettable on social media. Numerous celebrities, famous athletes and politicians have attempted to negate scandals by framing themselves as victims of a cyber attack. Perhaps some of them were telling the truth, but they’re hardly admonishing themselves of blame by admitting to being – or pretending to be – so bad at … [Read more...]