Cyber Essentials is one of the most cost-effective ways to boost your organisation’s information security. But, what does Cyber Essentials cost? Designed to help organisations address common weaknesses Designed to help organisations address common weaknesses, it can...
Archives
Cyber Security
Happy third Birthday
For many new businesses, celebrating a happy third birthday is a key milestone. However, reaching three years is not easy to achieve. This week we celebrated our third birthday and we had the opportunity to sit and discuss what we did well and also what we did wrong....
What is the most secure way to transmit data?
Safe information transfer is a must for modern organisations, but not all secure data transmission methods are equal. Here we explore the options available to you. A significant issue facing businesses is implementing secure data transmission methods when sending and...
The Age Appropriate Design Code
The Children's Code The Children’s Code (or Age Appropriate Design Code to give its proper title) is a data protection code of practice for online services. This includes apps, online games, and web and social media sites that are likely to be accessed by...
The Privacy and Electronic Communications (EC Directive)
STATUTORY INSTRUMENTS 2003 No. 2426ELECTRONIC COMMUNICATIONSThe Privacy and Electronic Communications (EC Directive) Regulations 2003 Made - - - 18th September 2003 Laid before Parliament - - - 18th September 2003 Coming into force - - - 11th...
The NHS Data Security and Protection Toolkit for Care Homes
The NHS Data Security and Protection Toolkit, or as it is generally referred to, the DSP Toolkit, is for users in the care home sector. These care homes have signed up with NHSmail or have upgraded their existing account to NHSmail. Preparing your care home for the...
Your CCTV and the GDPR?
In case you didn’t know, but CCTV footage is subject to the GDPR (General Data Protection Regulation). The Regulation isn’t just about written or electronic data such as names and addresses. It applies to any information that can identify someone. That includes...
Video Conferencing and the GDPR
Due to social distancing and restrictions enforced by the UK’s tier systems, we are now used to business meetings taking place online. In particular, the video conferencing platform “Zoom” has achieved huge popularity through the pandemic. However, over the same...
Nursing home fined
Nursing home fined for a data breach after a laptop with residents' details is stolen A nursing home in County Antrim has been fined £15,000 for failing to adequately protect sensitive data about its staff and residents. This story is a look back in history but...
UK firms face high compliance costs
British firms face a bill of up to £1.6 billion if the UK government fails to win an EU adequacy decision. The decision, if granted, would allow dataflows to continue as normal. This was revealed by a new report published on Monday last (23rd November 2020). UK firms...
Black Friday 2020 scams
And how to avoid them… The scramble for bargains and supposedly unbelievable savings, whatever your thoughts about Black Friday are, brings with it a spike in cybersecurity threats. Cybercriminals will be just as keen to take advantage of you as you are desperate for...
ISO 27701 – are you privacy ready?
ISO/IEC 27701 is the international standard for privacy information management systems and is a companion standard for ISO 27001. ISO/IEC 27701 enables organisations to demonstrate compliance with all applicable privacy regulations, including the GDPR and the Data...
GP surgery secretary fined
A former GP surgery secretary has been fined for reading medical records of 231 patients in two years, the ICO reported in 2018. A trip back in time to November of 2018 for this blog. We shouldn't forget that whilst this story may have a few cobwebs on it, this could...
UK cyber-crime rate has doubled in the past five years
The number of UK businesses that have suffered cyber-attacks has doubled in the past five years, according to a new report. Hastings based Beaming’s Five Years in Cyber Security found that 1.5 million organisations fell victim to cyber-crime in 2019. This...
WE’VE CHANGED OUR PRIVACY POLICY!
GDPR and POPI - MUST SOUTH AFRICANS COMPLY? The EU’s General Data Protection Regulation (GDPR) took effect on 25 May 2018 – as heralded by the million-or-so “We’ve changed our Privacy Policy” messages we all received at the time and continue to do so. Whilst...
Helping small businesses
We’re here to help you create added value for your clients and prospects As a client of the HR Dept we know how hard you work. We also know that we talk to the same people and are often asked where the GPDR resources pack should be kept. We always say, "with...
Privacy Shield ruled invalid
The EU's Court of Justice has just invalidated the "Privacy Shield" data sharing system between the EU and the US, because of overreaching US surveillance. Privacy Shield ruled invalid after hearing. Schrems argued that there were insufficient safeguards in place and...
Is Privacy Shield all but dead?
Commission conducting ‘preparatory work’ should ECJ invalidate privacy shield The European Commission is preparing for the eventuality that the European Court of Justice (ECJ) may invalidate the EU-US data transfer agreement know as the Privacy Shield. The agreement...