If you need HELP, SUPPORT or just have a GDPR question please call +44 (0) 208 133 2545 or email us at firstname.lastname@example.org.
Alternatively please visit our contact page
FREE GDPR Helpline
Call +44 (0) 208 133 2545
Companies must ensure that data is adequately protected to prevent loss or theft. Where a breach has taken place, companies may need to notify individuals as well as face negative impact on the company’s brand and customer loyalty. Under the General Data Protection Regulation, companies may face fines of up to €20 million or 4% of annual turnover.
It is possible to minimise the risk of data breaches by following a number of best practices:
Ensure software is updated and patched regularly to avoid weak spots for hackers to exploit.
Carry out vulnerability assessments to review and address any changes or new risks in data protection. Consider all aspects, such as data storage and remote access for employees, and ensure that policies and procedures are adequate.
Personal data should at least be encrypted, including on work laptops issued to staff. Instead of using backup tapes that can be lost or stolen, data can be backed up to remote services using the Internet.
Train staff to follow best practices, be aware of the importance of data security and how to avoid mistakes that could lead to breaches. Awareness of sensitive data and security should be a part of the company’s culture.
When working with other companies that may be handling your customers’ data, make sure they also have adequate systems in place to protect data.
Having a third party carry out a risk evaluation allows an objective and outside view of the current breach risks. A Data Security expert can advise on the best solutions specific to each company to reduce the risk of breach. This also demonstrates a serious intention to ensure data protection.
Every single one of the 200 British NHS trusts so far assessed for cyber security resilience has failed an onsite assessment, MPs on the Public Accounts Committee were told on
Leyla Hannbeck: GDPR could have prompted more frequent use of NPA’s error reporting platform The number of errors reported to the National Pharmacy Association (NPA) increased by more than 60%
When the General Data Protection Regulation comes into effect on May 25 this year, Data Protection Officers (DPOs) will be mandatory for certain organisations. This includes organisations where the core
With Facebook’s privacy practices being investigated, it’s a good time to ask how much the company could potentially be fined.
Facebook has been ordered to stop tracking people without consent, by a court in Belgium. The company has been told
The General Data Protection Regulation will require many organisations to appoint a Data Protection Officer (DPO). But, you must remember
Carphone Warehouse has been fined £400,000 following a cyber attack in 2015. Hackers were able to access the personal data
Google is being taken to court, accused of collecting the personal data of millions of users, in the first mass
Millions of names, email addresses and mobile phone numbers were accessed Uber concealed a hack that affected 57 million customers
Hackers stole names, email addresses, and phone numbers in October 2016 The personal data was stolen from 50 million Uber
One of the biggest points to note about the General Data Protection Regulation is the potential of massive fines. It
Hot on the heels of the warning that TalkTalk would have faced a £70m fine had its 2015 data breach