Highdown House, 11 Highdown Road, Leamington Spa CV31 1XT
So, just when you thought the GDPR was all done and dusted, you hear that interminable phrase, “there’s a new ISO standard we need to conform with”.
Your heart sinks.
Your blood pressure rises.
Surely, all that hard work you put into complying with the GDPR was enough for now?
No, but there’s nothing to worry about, because this is your no-nonsense, jargon-free(ish) guide to ISO27701.
As we head towards GDPR day – May 25 – the number of scare stories about the new regulations seems to be spinning out of control.
The latest one claims half of businesses expect to be fined under the new rules: https://bit.ly/2IcnFYX . It is based on a survey which suggests businesses have put money aside in anticipation of a fine. In addition, we’ve heard of some sole traders who are so concerned about the regulations, they fear that they will need to close the shutters on their business.
The problem here is one of perception. Businesses may well be so worried that their way of dealing with the new regulations is to put money aside. But will they really be fined and does putting money under the mattress really help? The ICO has been clear on so many occasions – fines will be the last resort. More info
If we are honest, and that’s the best way to be, the GDPR has been a long time coming. The current data protection legislation was well overdue for modernisation. Most companies are already dealing with processes similar to the GDPR, but many may not have drawn those parallels. Once those parallels are recognised and acknowledged, bringing it into a business can be smoother than initially thought.
Every year as a nation we always seem to be surprised that things happen – like Christmas, or School Holidays, or Birthdays. Despite having plenty of advance notice they still creep up on us. Every time we also seem to have to reinvent the wheel – ‘this year I’ll do all my shopping online’, or ‘I’ll send a card from MoonPig as opposed to picking one up from the supermarket’. Yet deep down inside we all know what works best for us, what time and again has fitted in well to our time-starved lives to help us get through these challenges of life. More info
Leamington Cyber Security Company teams up with World Leading Management Accountants to produce film on protecting Business Data.
Video link: https://www.riskevolves.com/#video
The Leamington based cyber security and risk management company, Risk Evolves, has teamed up with CIMA, the world’s leading, and largest, professional body of management accountants, to produce a film on how businesses can protect their data from a cyber attack. More info
On the 21st October 2015, TalkTalk became aware of a major security breach. Over the following days and weeks, the severity and magnitude of that breach filled the headlines of the British and International newspapers. More than 150,000 users saw their personal information leaked. Of those, more than 15,000 users saw their bank account details compromised. More info
Once again the headlines are dominated by news of another major breach, unsurprisingly it’s Yahoo data breach which has been made apparent. More info
So just who is responsible for cyber security? Earlier this week we re-tweeted a great article from the Cyber Skills Centre about who is to blame for the current issues and challenges with cyber security in organisations.
Controversially the author, Stuart Wilkes, suggested that responsibility resides with the IT Director and not the software provider or the Criminal. Reading the article, his argument was logical and well structured. As Business Leaders, the IT Director have the responsibility for ensuring security is included in the design of systems, that they communicate with the Board / their Clients, on trends within the industry, that they are responsible for recommending changes in process and practice in the organisation and so on. More info
Welcome to the March edition of our newsletter ! More info