How the PCI DSS can help you meet the requirements of the GDPR

With just 3 months until the General Data Protection Regulation (GDPR) is enforced, organisations across Europe must consider how the far-reaching changes introduced by the Regulation will affect how they handle and protect personal data. While some will be worried about how to comply with the new law, those that are already compliant with the Payment Card Industry Data Security Standard (PCI DSS) … [Read more...]

Leading ISO 27001 training now in classroom format in Dublin and Cork

Why train with us? Having led ISO 27001 implementations since the Standard’s inception, IT Governance is known as the global authority on ISO 27001, and has trained more than 7,000 people around the world. For the first time, IT Governance’s ISO 27001 Foundation, Lead Implementer and Lead Auditor classroom training courses will be held in Dublin and Cork. The courses have been designed to teach … [Read more...]

Skilled workers in Ireland could see up to a 15% wage increase in 2018

Ireland’s economy had another tremendous year of growth in 2017 with close to 40,000 jobs created with the assistance of Enterprise Ireland and IDA Ireland. According to the Central Statistics Office, the number of people in employment is approximately 2.2 million, close to the high experienced in 2007. According to Morgan McKinley’s 2018 Ireland Salary Guide, many professional workers can expect … [Read more...]

How to transfer data to a ‘third country’ under the GDPR

The European Commission released a notice to stakeholders last week called “Withdrawal of the United Kingdom from the Union and EU rules in the field of data protection”. The notice states that as because the UK has triggered Article 50 and will no longer be part of the EU on 30 March 2019, it will become a ‘third country’. Unless a withdrawal agreement can be established before the withdrawal … [Read more...]

Johnson & Johnson data breach affects hundreds of Irish customers

Hundreds of Irish customers’ home addresses and emails – which may be linked to other online accounts – were leaked online by cosmetics and pharmaceutical giant Johnson & Johnson. To take advantage of a promotion for Aveeno moisturiser, Johnson & Johnson asked customers to fill in an online form. The form was checked against a text file of individuals who had already signed up, in order to … [Read more...]

How can you validate a vendor that claims to be ISO 27001 certified?

As the number of cyber attacks continues to grow, many companies are adding ISO 27001 certification as a requirement on their supplier set-up forms. This is a good idea, especially as the forthcoming General Data Protection Regulation (GDPR) focuses on vendor management. If a vendor has an ISO 27001-compliant information security management system (ISMS) in place, this provides concrete evidence … [Read more...]

How ISO 27001 can help with your GDPR project

Coming into effect on 25 May 2018, the EU General Data Protection Regulation (GDPR) will supersede all EU member states’ current national data protection laws, bringing a standardised approach to data protection throughout the EU. The Regulation also brings with it a new suite of enforcement powers for supervisory authorities throughout Europe to penalise companies that are found to be … [Read more...]

What are the main tasks of a data protection officer?

On 25 May 2018, the General Data Protection Regulation will come into effect. Even though the GDPR does not specifically require the appointment of a DPO for all organisations, it is highly encouraged by the European Article 29 Working Party (WP29) as a matter of good practice and to demonstrate compliance. Taking this into account, we look at the main tasks and mission of a data protection … [Read more...]

The GDPR is more than just an IT issue

With less than 5 months to go until organisations need to comply with the General Data Protection Regulation (GDPR), it’s more important than ever to look at what you need to do to prepare. With fines of up to 4% of annual global turnover or €20m (whichever is greater) for companies that fail to comply with the Regulation, this legislation cannot be ignored. In Ireland, there seems to be a … [Read more...]