This week, the ICO (Information Commissioner’s Office) prosecuted and fined a former deputy headteacher for unlawfully obtaining personal data from two schools he had previously worked at. Darren Harrison was suspended from Isleworth Town Primary School only six months into …
Finding a qualified DPO is arguably one of the GDPR’s hardest requirements, but is it something that schools need to be concerned about? The EU GDPR (General Data Protection Regulation) contains particularly strong requirements for protecting children’s data. These can …
Tens of millions of O2 customers were stripped of internet access yesterday after the telecommunications giant’s data network collapsed. O2, which also shares infrastructure with Tesco Mobile and GiffGaff, claimed the outage was due to a “global software issue”. Deprived …
Follow our advice to make sure your organisation is GDPR-compliant and avoids disciplinary action. After a relatively quiet few months, the EU GDPR (General Data Protection Regulation) is back in the news. Organisations have been waiting uneasily since the dramatics …
A recent survey by Ping Identity shows that customers move away from brands that have suffered data breaches. Data breaches are now a common occurrence – big-name brands affected in 2018 include FIFA, British Airways, Vision Direct, Eurostar and Marriott. …
To comply with ISO 27001, the international standard for information security, you need to know how to perform a risk assessment. This process is at the core of your compliance measures, as it helps you identify the threats you face …
The question and answer site Quora has released information about a data breach it recently suffered. A post on its website reads: “We recently discovered that some user data was compromised as a result of unauthorized access to one of …
Although the EU General Data Protection Regulation (GDPR) has come into effect, a large number of organisations are not yet compliant. A Ponemon Institute survey found that almost half of companies would not meet the 25 May 2018 deadline. So, …
In November, Lush – the high-street store known for its fragrant, eco-friendly beauty products – temporarily lost the ability to take card transactions after a member of the IT team “deleted the till system by accident”. As a result, Lush …
The ISO 27001 implementation and review processes revolve around risk assessments. This is where organisations identify the threats to their information security and outline which of the Standard’s controls they must implement. The process begins by defining a methodology, i.e. …
