dcsimg

How Ireland’s Credit Unions can meet their penetration testing requirements

Credit unions in Ireland are required to conduct a penetration test once a year, and send the results to the Central Bank of Ireland for review.  According to a report published by the Bank last year, credit unions are getting better at doing this. But for those that are still unsure how to complete this process or simply want to get better at it, this blog explains everything you need to know … [Read more...]

What do SMEs need to do to comply with the PCI DSS?

Organisations that accept card payments are responsible for the security of customers’ payment information and must comply with the PCI DSS (Payment Card Industry Data Security Standard). The PCI DSS is a set of tools and measures to help you protect payment card data. It applies to all organisations that transmit, process or store such information, but SMEs (small and medium-sized organisations) … [Read more...]

FAI hit with data breach

The FAI (Football Association of Ireland) confirmed yesterday that servers in its Dublin headquarters were breached in an external hack over the weekend.  In a statement released on Wednesday, the FAI said that the breach affected its email services, but not customers’ payment details or ticket sales as this information is stored offsite.   The FAI has hired a forensic computer scientist … [Read more...]

Helen Dixon reappointed as Ireland’s Data Protection Commissioner for a second term

Helen Dixon has been reappointed as DPC (Data Protection Commissioner) until 2024 following government approval.   Announcing the decision, Charlie Flanagan, Minister for Justice and Equality, said: “Helen is internationally well regarded for her expertise in this area. This is a very important role as Ireland’s Data Protection Commission is the EU’s lead regulator for the many multinational … [Read more...]

The GDPR: When do you need to seek consent?

One of the most misunderstood aspects of the GDPR (General Data Protection Regulation) is its consent requirements. Many people believe that organisations must get consent to process personal data, but that’s not true. Consent is only one of the six lawful grounds you can seek, and it’s generally regarded as the least preferable option. Where possible, you should seek one of the following … [Read more...]