How cyber resilience can help you comply with the GDPR

Cyber resilience is an emerging approach to tackling the threat of data breaches and disruptions, combining elements of cyber security and business continuity management. It acknowledges that traditional approaches to cyber security are increasingly inadequate, with organisations unable to cope with the number of threats facing them. With cyber resilience, organisations don’t put all their … [Read more...]

Still struggling with the GDPR? Here’s how you can get started

The GDPR (General Data Protection Regulation) has been in effect for more than seven months now, but many organisations still aren’t fully compliant with its requirements, and some are still only just getting started.  That’s obviously not ideal, but the good news is that organisations that are still working towards compliance don’t need to feel as though they’ve left … [Read more...]

The 3 Biggest Offenders of the GDPR

2018 will go down as the year that the rules changed for data privacy and data protection standards. I’m of course referring to the GDPR that was enacted in May 2018. … [Read more...]

78% of customers won’t go back to a breached organisation

A Ping Identity study has revealed that 78% of people would no longer use a retailer’s online site if it had suffered a data breach. The 2018 Consumer Survey, which polled more than 3,000 people across Europe and the US, also found that: 48% of people won’t sign up for an online service if the organisation has recently been breached;56% of people won’t accept an increased service fee in … [Read more...]

The GDPR: Why your organisation needs to conduct DPIAs

DPIAs (data protection impact assessments) help organisations identify, assess and mitigate privacy risks to data processing activities. They are particularly important when introducing new data processes, systems and technologies. They are also essential for demonstrating compliance with the GDPR (General Data Protection Regulation). When are DPIAs necessary? Article 35 of the GDPR … [Read more...]

A quick guide to the GDPR’s data breach notification requirements

One of the biggest talking points of the GDPR (General Data Protection Regulation) is its data breach notification requirements. The rules, which include a strict 72-hour deadline for reporting incidents, have caused many organisations to question how they could possibly comply, and many will be tempted to put off their duties and deal with data breaches if and when the time comes. But make no … [Read more...]

Preparing for the cyber threats of tomorrow

Organisations are being overrun with vulnerabilities. For an idea of how rapidly the problem is growing: there were 6,000 new vulnerabilities identified in 2016, 15,500 in 2017 and so far more than 16,000 in 2018. This growth is partly because Internet-connected devices and applications are much more widespread than they were a few years ago. But it’s not just a case of ‘more networks means … [Read more...]

The GDPR: What have we learned so far?

It seems like just the other day that organisations were making their last-minute plans to comply with the GDPR (General Data Protection Regulation), but it was nearly seven months ago. In that time, the public’s attitude has largely gone from panic to indifference, with commenters quick to point out the lack of penalties that have been issued. The first GDPR fine was levied in Austria in … [Read more...]

Does your dashcam put you within scope of the GDPR?

Dashcams have become a common feature on vehicles, with drivers eager to document their innocence when it comes to accidents or legal matters. Some insurers even offer drivers discounts for installing such devices in their cars. However, Ireland’s DPC (DataProtection Commission) has warned that dash cams might be more hassle than they’re worth. It issued guidance last week stating that the … [Read more...]

Facebook under investigation by the Irish Data Protection Commissioner

Last Friday, Facebook announced that it has uncovered a bug that may have affect up to 6.8 million of its members. This bug gave third-party apps access to more users’ photos than they originally thought. The bug was found in software that used Facebook’s login to grant third-party apps access to a user’s photos on the platform. This bug was active for 12 days between 13 and 25 … [Read more...]