dcsimg

Things to consider when processing biometric data

Biometric data is being used in countless systems these days. If you’ve ever used your fingerprint scan to unlock your phone or facial recognition software, then your biometric data is being processed.  But like any form of data, biometrics – i.e. information relating to individual’s physical, physiological or behavioural characteristics – are potentially accessible by malicious sources, and the … [Read more...]

Tackle your GDPR compliance issues head-on with IT Governance

It’s been almost a year since the GDPR (General Data Protection Regulation) came into force, but Cisco’s 2019 Data Privacy Benchmark Study found only 59% of organisations worldwide are compliant.  If you haven’t yet begun your compliance journey, you should prioritise tackling those areas where a lack of action leaves … [Read more...]

Interested in free GDPR & ISO 27001 Gap Analysis tools?

Are you feeling the strain from your data protection obligations? Staying secure can seem like impossible, not to mention expensive and time-consuming.  We understand your concerns, but we’re also aware that nothing is as importance as effective information security. That’s why, for a limited time, we’re giving away our ISO 27001 Gap … [Read more...]

Highlights from the Data Protection Commission’s first annual GDPR report

This week, the DPC (Data Protection Commission) published its first annual report under the GDPR covering the period 25 May to 31 December 2018. The report highlights a number of interesting statistics and year-on-year comparisons, most notably:   2,864 complaints received, bringing the total for 2018 to 4,113 complaints – a 56% increase on … [Read more...]

Google fined €50 million in landmark GDPR ruling

Google has been fined €50 million by the CNIL, France’s data protection regulator, for a breach of the EU GDPR (General Data Protection Regulation).  It’s by far the biggest fine related to the GDPR, which took effect in May 2018 and gave regulatory bodies much stronger disciplinary powers.  What did Google do wrong?  The CNIL concluded that Google had violated the GDPR in two … [Read more...]

6 tools to help you manage your organisation’s security measures and GDPR compliance

The ability to prevent data breaches has become a lot more important since the GDPR (General Data Protection Regulation) took effect. You should have already been concerned about your customers’ freedom and privacy, your susceptibility to regulatory action and your ability to protect your reputation in the event of a security incident, but these have now taken on heightened significance. The … [Read more...]

What is ISO 27001 certification?

ISO 27001 certification demonstrates that an organisation has met the requirements of the international standard for information security. This is hugely beneficial compared to simply following the Standard’s requirements, because it provides proof of the effectiveness of your security systems and satisfies the demands of clients and regulators. The ISO 27001 certification process Before … [Read more...]

How cyber resilience can help you comply with the GDPR

Cyber resilience is an emerging approach to tackling the threat of data breaches and disruptions, combining elements of cyber security and business continuity management. It acknowledges that traditional approaches to cyber security are increasingly inadequate, with organisations unable to cope with the number of threats facing them. With cyber resilience, organisations don’t put all their … [Read more...]

How to document your information security policy

Information security policies play a vital role in organisational security. Getting your policy right will give you an excellent framework to build on, making sure that all your efforts follow a single goal. But if you get it wrong, you risk neglecting key issues and exposing yourself to data breaches. To make sure you get off on the right track, we’ve taken some advice from Alan Calder and … [Read more...]

Still struggling with the GDPR? Here’s how you can get started

The GDPR (General Data Protection Regulation) has been in effect for more than seven months now, but many organisations still aren’t fully compliant with its requirements, and some are still only just getting started.  That’s obviously not ideal, but the good news is that organisations that are still working towards compliance don’t need to feel as though they’ve left … [Read more...]