• GDPR to put a high price on security breaches

        • Security breaches are already costly; not just financially, but in terms of brand damage, customer dissatisfaction and downtime. For companies that do business with residents of the European Union (EU), the financial fallout from a security breach is about to get much more expensive. That’s why it’s imperative for organisations to get ready for GDPR now, so they’re not playing catch-up. Ronald Sens, EMEA Director, A10 Networks explains more.

          What is the GDPR?

          With the introduction of the General Data Protection Regulation (GDPR), the EU is enacting a set of mandatory regulations for businesses that go into effect soon, on 25th May 2018. Organisations found in non-compliance could face hefty penalties of up to 20 million euros, or 4 per cent of worldwide annual turnover, whichever is higher.

          The GDPR is not just applicable to businesses in the EU, it applies to the data of all EU citizens, regardless of where it’s stored. That means if a citizen of the EU has data stored with a company inside the US, then GDPR applies.

          Under the GDPR, data controllers must report a data breach to the supervising authority within 72 hours of becoming aware of the breach. From there, individuals must be notified if an adverse impact is determined, and the data processor must notify a controller without undue delay after becoming aware of a personal data breach.

          Neither the processors nor controllers, however, must notify data subjects if anonymised data is breached, meaning if the controller has implemented encryption and other measures to protect data. GDPR also gives consumers and individuals more power. Article 17 of the GDPR is the ‘right to erasure,’ which is more commonly known as the ‘right to be forgotten.’

          Prepping for GDPR

          Gartner recommends a good starting point for GDPR prep is to create two new roles dedicated to data protection: One who acts as a contact point for the data protection authority and data subjects, and the other a data protection officer to ensure processing operations maintain compliance.

          From there, companies should be proactive and transparently demonstrate accountability for all processing activities, examine how data flows across borders within the EU and outside of it, and ensure they have systems in place notify individuals and authorities should a breach occur and to comply with the right to be forgotten should an individual ask for their data to be erased.

          It’s also imperative that companies have systems in place to prevent breaches in the first place. Notification is not required for breaches involving anonymised data, but companies should examine their encryption solutions to ensure their private data is and remains private.

          Tools That Can Help Protect Your Data

          A dedicated decryption can ensure encrypted data is decrypted for visibility and inspection, in a secure decrypt zone, and companies can opt to bypass certain types of traffic that should remain encrypted and anonymised such as personal data as policies dictate. That gives organisations the benefit of decryption services, while still complying with GDPR.

          Companies can also institute stronger identity hygiene practices to ensure attackers aren’t attempting to crack into networks to steal data. Simple steps like multi-factor authentication, and swiftly depreciating expired employee accounts can help ensure access is only granted to authorised personnel.

          Analytics solutions, can help by enabling companies to quickly and accurately detect security anomalies. Having an understanding of how applications are performing in real-time and their security posture could alert an organisation in the event of a breach or an attempted data theft.

        • Stay up to date - Click here and register for FREE OEN online membership and enjoy unlimited access to a host of benefits including the exclusive members area of the website, downloadable business tools, current and back issues archive, priority breaking news alerts, weekly e news summary and the OEN app

        • Related Articles

        • 2/3 employees concerned about catching COVID-19 at work

          2/3 employees concerned about catching COVID-19 at work

          Monday 17th May 2021 by clareb
          More than two-thirds of employees (68%) are worried about contracting Coronavirus when they return to their place of work after UK restrictions ease, a new survey has found. The survey, carried out by JD Cooling Group, an independent supplier of...Read More...
          2/3 European businesses to increase IT spend in 2021

          2/3 European businesses to increase IT spend in 2021

          Tuesday 11th May 2021 by clareb
          Dynabook Europe has revealed the results of its new research report, ‘The Hybrid Shift: Managing an increasingly remote workforce’, which shows that 65 per cent of European IT decision-makers have access to increased IT budgets this year ...Read More...
          Totality Services marks World Password Day with top tips

          Totality Services marks World Password Day with top tips

          Thursday 6th May 2021 by clareb
          Since 2013, the first Thursday of May each year marks World Password Day, promoting better password habits to stay safe online. With so many people working at home due to the ongoing pandemic, often without the IT support and protection provided...Read More...
                • About Us

                  OEN is the leading source of business news and information for buyers of office equipment, supplies and services within mid tier and up sized organisations. Our multi-platform approach delivers relevant, engaging and focussed content via our main printed magazine, bespoke guides and supplements, website, digital editions, apps, and newsletters with an unrivalled reach across the industry. A highly trusted and respected brand for many years, the print version of OEN last year celebrated its Diamond anniversary.

                  For our latest Media packs and more details on our range of services click here

                • View Latest Issue