Well it’s that time of the year when we reflect on what happened in the previous 12 months and polish the Risk Evolves crystal ball to see whether we can predict what may happen in the future.
2018 was the year that saw the biggest change in data protection legislation and regulation in a generation as the General Data Protection Regulation and UK Data Protection Act (2018) were introduced. At the same time we saw the increase in phishing emails and businesses succumbing to hacks and data breaches which GDPR is trying to protect against!
Contingency for when things go wrong, do you think about your Plan B?
Having a Disaster Recovery/Business Continuity Plan sounds like something for companies to do and you’d be absolutely correct. It’s important that ALL employees know what to do as it may come down to one individual and it’s vital they know what to do to keep operations moving. More info
I’ve recently returned to the office following a great holiday abroad. Our journey back involved a ferry between two islands and whilst watching our holiday destination disappear over the horizon, my eye was caught by the route that the ship was taking. Although our journey was a direct one from one port to the other, the captain was steering the boat in a zig zag, adjusting the direction to cope with the swell of the sea, the keen cross wind and the ocean currents. More info
I don’t believe that any one of us working in any type of organisation, regardless of whether you’re a small business, a charity, a school or even a sole trader today can operate without the products or services of a 3rd party provider. We may well have chosen to outsource our accountancy, HR, IT and compliance management requirements. Equally, our clients outsource to us e.g. audit requirements, Data Protection Officer and so on. Our Clients all have a dependency on us to deliver services. Here at Risk Evolves – we’re no different. We’re great examples of the fact that very few, if any, organisations can operate without the support of a 3rd party. A 3rd party could be providing IT, critical resource, logistics support, payroll services, catering, cleaning etc. And yet, how many of us step back and analyse exactly what we would do if one of those third parties wasn’t available one day. What happened if they were to suffer a flood to their premises so that they couldn’t operate, if they were to go out of business, cease to provide the service that we are reliant on, be acquired by another organisation – the list goes on. More info
For anyone that’s met me, they’ll know that I’m passionate about the value of certifications and standards. Whether it’s Cyber Essentials, ISO9001, OHSAS18001, Safe Contractor, FORS – all have a value to a business. Some are international standard applicable across any industry, others are industry specific. Some may be a requirement in order to enter a supply chain and will be adopted grudgingly by an organisation. For organisations who just need the ‘certificate on the wall’, there is likelihood that they are not realising the full benefits that adoption of a standard may bring. More info