nking Archive
Sensitive data is one of an organisation’s most important assets, so it makes sense that you prioritise its security. Information security is “the practice of preventing unauthorized access, use, disclosure, disruption, modification, inspection, recording or destruction” of sensitive records. This …
Third-party suppliers are a common source of confusion for organisations considering their GDPR (General Data Protection Regulation) compliance requirements. When the Regulation was first introduced, the issue of third-party suppliers and their relation to organisations’ own GDPR compliance received a …
It’s been two years since the GDPR (General Data Protection Regulation) took effect, and despite many people saying it was a lot of fuss over nothing, it has had a significant effect on the way organisations operate. For one, DSARs …
One of the early challenges of conducting an ISO 27001 risk assessment is how to identify the risks and vulnerabilities that your organisation faces. It’s a deceptively tricky task, because although it doesn’t require the practical application of information security …
Risk assessments are at the heart of organisation’s information security practices, as they help identify relevant threats and the most appropriate way of dealing with them. But what should the process look like? ISO 27001, the international standard for information …
Law firms are likely to have a higher information risk profile compared to organisations in many other sectors – and this needs to be managed accordingly. The question is – how?
Data protection is a major concern for organisations large and small. Recent announcements by the UK data protection authority, the ICO (Information Commissioner’s Office), of significant penalties for British Airways (more than £183 million) and Marriott (more than £99 million) …
Any organisation within the scope of the GDPR (General Data Protection Regulation) must conduct regular risk assessments. This is the only way that you can be sure that you’re properly identified potential security incidents and that your defences measures are …
Are you part of an in-house finance team? Or do you work for a finance provider – an accountancy firm, perhaps, or a financial advisory company? Like professionals in any other sector, you are subject to the EU’s GDPR (General …
Robust information compliance has never been so high-profile. The introduction of the EU GDPR (General Data Protection Regulation) in May 2018 put personal data protection firmly in the public consciousness. Cybercrime continues to grab headlines, with attacks causing massive disruption …
