Scotland Archive

Why is the GDPR still something I should be concerned about?

The EU’s GDPR (General Data Protection Regulation) superseded all laws based on the EU’s Data Protection Directive, including the UK’s Data Protection Act 1998, on 25 May 2018. The Regulation expands the rights of individuals to control how their personal data is collected and processed, and places a range of stricter obligations on organisations, making …

How Cyber Essentials can help secure your devices and software

The Cyber Essentials scheme is a world-leading assurance mechanism for organisations of all sizes to help demonstrate that the most critical cyber security controls have been implemented. Although not adequate in the – relatively uncommon – case of a cyber criminal targeting your organisation using bespoke tools, Cyber Essentials’ controls can prevent 80% of …

Cyber resilience: What does this mean for Scotland?

Organisations face an increasing number of threats from ransomware, data breaches and weaknesses in the supply chain, according to the NCSC’s (National Cyber Security Centre) annual report published earlier this year. This has become evident from the recent high-profile attacks on British Airways and Bristol Airport. Such attacks do not only cost …

Cyber resilience in the Scottish public sector: meeting the Cyber Essentials certification deadline

Protecting Scotland’s digital networks and infrastructure, and ensuring they are resilient to cyber attacks, is essential to the country’s prosperity and reputation. The Scottish government therefore launched Safe, secure and prosperous: a cyber resilience strategy for Scotland in 2015 to …