Eliminating the mobile risk of GDPR compliance

Whilst businesses have been doing everything they can to change and alter their policies in time for the GDPR deadline, there is one main area that is easily overlooked, the area of mobiles.

Whilst businesses have been doing everything they can to change and alter their policies in time for the GDPR deadline, there is one main area that is easily overlooked, the area of mobiles. It is important to remember that GDPR is not a one-time implementation, but an evolution of consistently high security standards and mobile devices need to be a part of your ongoing GDPR plan, to ensure complete compliance. To help you achieve this, here, Mike Puglia, Chief Strategy Officer at Kaseya, discusses the top five tips in achieving compliance with your mobile network. 

  1. Conduct a gap analysis and compliance assessment:  A gap analysis is a useful way to show exactly where your organisation is already in compliance, revealing existing compliance programme trends within the company as well as highlighting which areas need work and steps that must be taken to ensure complete adherence. The compliance plan will define what is good and working and will also recommend specific improvements.
  2. Shine a light on shadow IT:  Examples of shadow IT include Dropbox, Skype and Evernote, which are applications, systems and hardware that are used by individuals without company support or sanction. They pose significant compliance risks. If an individual is using a system that you don't know about, to store or transfer data that comes under GDPR, this puts the company at risk of a breach. Internal policy should be clearly communicated throughout the organisation, as well as keeping a record of doing so, employees should all be aware that they should not be using these systems without company approval. 
  3. Practise proper patch management:  A patch management solution should automatically update servers, remote computers and workstations with software and patches, which can also include operating system fixes. This is a crucial yet challenging task for those that rely on manual IT means, so automation of patch management is a simple, efficient way of ensuring this is carried out correctly.
  4. Secure mobile devices:  Mobile devices are often overlooked in the world of GDPR compliance but in actual fact, they should be as compliant as their desktop counterparts. Applications can have offline functions which means that any data transferred via that app, will also be stored locally on the device which can fall outside of your network's security, breaching your GDPR guidelines and leaving this data at risk. This means that all apps, both supported and shadowed, should be reviewed regularly to minimise risk.
  5. Decommission devices: 
    Any type of device that is lost, or stolen, should be decommissioned immediately to prevent anyone else from procuring confidential company data through it. The same policy should apply to equipment belonging to ex-employees, particularly when an employee has been terminated. 
More News
2 hours ago
Almost half businesses see scanning as step to digitisation
PFU (EMEA) has unveiled the findings of the ‘Scanning As An Enabler For Digital Transformation’ report in which Quocirca explored IT employees' views towards scanners and paper use in the workplace. The report finds that almost half (44%) of businesses consider scanning as an important part of their digitisation strategy, whilst 75 per cent of businesses are intending to invest further in scanning technology.
3 hours ago
Community-based care & support organisation chooses CallSwitch UCaaS
TelcoSwitch, a provider of unified communications and compliance solutions, has recently provided a CallSwitch cloud-hosted UCaaS solution to support community-based care and not-for-profit organisation, The Lantern Community in Dorset UK.
4 hours ago
Woodbank Group acquires Datatech Systems
Woodbank Office Solutions has acquired Wirral-Based Print Management business, Datatech Systems Ltd, seeing further expansion of the Woodbank Group’s presence in Liverpool and the Wirral.
1 day ago
Circular Computing launches RaaS to help businesses re-use tech
Circular Computing, a remanufacturer of laptops, is announcing the roll-out of Remanufacturing-as-a-Service (RaaS), to larger businesses across the UK and other geographies.
1 day ago
Kate Humble to champion climate action for Staffordshire Businesses
TV Presenter Kate Humble is set to join select speakers from across the green industry at the Staffordshire Climate Expo taking place at Uttoxeter Racecourse on30th Sept. The Animal Park presenter will be celebrating Staffordshire-based businesses in their efforts to tackle climate change in her keynote address at the conference.
4 days ago
Research reveals modernisation needed for business communications
Mitel has shared the findings of a business communications research survey conducted by analyst research firm Techaisle, which unveils insights into the needs of organisations seeking to modernise their business communications to support hybrid work.
5 days ago
Virtru data protection solutions approved for G-Cloud 13 Framework
Virtru, experts in data protection, has announced its acceptance and approval onto the G-Cloud 13 Framework, the latest version of the UK Government’s procurement platform for suppliers of cloud hosting, software, and support services to the public sector.
6 days ago
The ISO standard helping UK businesses with energy crisis
With the current energy crisis and price increases happening worldwide, now is a perfect time to put out content on technology-based energy solutions. Matthew Margetts, Director at Smarter Technologies explains how businesses can save money and reduce energy consumption.
6 days ago
Overcoming the risk of relying on email for law firms
Reliance on email is a standard business practice to effectively communicate both internally and externally. This has proven to be of utmost importance as most workforces have transitioned to hybrid working, but this, in turn, has also increased the size of the threat landscape, with cyber attackers targeting vulnerable workers who are away from the immediate support from IT teams.
1 week ago
Kinaxis selected by tea giant to digitally transform supply chain
Kinaxis has announced that it has been selected by ekaterra to break down silos, and introduce concurrent planning to enable a more agile, and accurate supply chain.

Login / Sign up