Loading

72 hours and counting: Reporting data protection breaches…

The first 72 hours after you discover a data breach are critical. Why? The GDPR (General Data Protection Regulation) requires all organisations to report certain types of personal data breach to the relevant supervisory authority.  More specifically, Article 33…

Top tips for data retention under the GDPR

Under the GDPR (General Data Protection Regulation), organisations must be vigilant about how long they retain personal information. If you keep sensitive data for too long – even if it’s being held securely and not…

3 reasons cyber security training is essential

Organisations are always looking for ways to improve their cyber security defences, but they often overlook the value of enrolling their employees on cyber security training courses. According to a study by Centify, 77% of…

72 Hour Countdown: Reporting Data Breaches Under The…

The first 72 hours after you discover a data breach are critical. Why? The EU GDPR requires all organisations to report certain types of personal data breach to the relevant supervisory authority.  More specifically, Article 33…

How can Scottish businesses prepare for a cyber…

Cyber attacks and data breaches are inevitable, and with 41% of executives saying they spend at least twice as much on investigations and relation interventions as is lost to cybercrime, it is in every organisation’s…

What is a cyber security incident?

You often hear the term ‘cyber security incident’ when an organisation’s systems are compromised rather than ‘breach’ or ‘hack’. What is the difference between those terms? The word ‘incident’ sounds relatively harmless, but have you…

Loading

Free DPO resources

This week we’re focusing on the final stage of becoming #BreachReady: oversight.   ‘Oversight’ describes the requirement for a DPO (data protection officer) or other responsible manager to oversee the breach and reporting process, ensuring the organisation focuses its efforts…