General Data Protection Regulation
Cyber Security for GDPR
Data breaches and related identity theft have reached epidemic proportion. This sort of trend is bad news for a world moving towards the adoption of a digital economy.
The General Data Protection Regulation (GDPR) is the European Union’s (EU) response to the risks associated with the increased role that technology now plays in everyday life.
It comes into play in May 2018 and applies to any organisation, regardless of their location, that collects personal data of EU residents.
Preparing for the General Data Protection Regulation (GDPR)
12 Steps to Take Now
The objective of GDPR is to ensure that adequate protection is incorporated into the process of collecting personal data. It requires organisations to collect only the minimum amount of data needed for a specific purpose, and to then completely remove it when it is no longer needed.
Organisations in violation of GDPR could incur hefty fines as well long-lasting damage to their reputation and credibility.
Help with Security Implications
With GDPR comes various security implications, and that’s where we can help.
For example, GDPR requires organisations to report a data breach within three days of detection.
This can be challenging as the time between the initial intrusion and the detection of loss of data, often spans weeks or months. However, with the right security tooling and procedures in place, you can easily detect breaches or even better, prevent them in the first instance. This also allows you to demonstrate to regulators that you have robust security and privacy protections in place.
Integrated Cyber Security Strategy
We can help you implement an integrated cyber security strategy that will give you deep visibility into your entire network, and more importantly your data.
This sort of approach is essential for organisations hoping to meet GDPR requirements.
Scottish Government Launches Cyber Fund
The Scottish Government has launched a £500,000 cyber fund under the National Cyber Security Programme. The fund will support a voucher scheme to help small and medium sized organisations within Scotland achieve the Cyber Essentials or the Cyber Essentials Plus certification.
Eligible organisations can receive up to £1000 towards achieving the Cyber Essentials accreditation.
If your business meets the following criteria, you can apply for the Cyber Essentials voucher:
- You must be a small or medium-sized enterprise (SME) with fewer than 250 employees
- You must have a registered base in Scotland
- You must operate IT with a connection to the internet
If you want to learn more about Cyber Essentials certification, or would like to take advantage of the Scottish Government Cyber Essentials voucher scheme, contact Talon and let one of our security experts guide you through the process.