GDPR

Five tips for small businesses adopting encryption

About the authorBernard Parsons is the CEO of Becrypt.The world of encryption is changing more than ever before. Today a lot of smaller businesses are looking at adding encryption for the first time, driven by recent regulations such as GDPR, and those that require encryption as part of the privacy enforcing mechanisms. However, along with…


About the author

Bernard Parsons is the CEO of Becrypt.

The world of encryption is changing more than ever before. Today a lot of smaller businesses are looking at adding encryption for the first time, driven by recent regulations such as GDPR, and those that require encryption as part of the privacy enforcing mechanisms. However, along with the benefits that encryption offers, there are also challenges that these smaller businesses are faced with when looking to adopt. 

Based on the experience and feedback that Becrypt has attained, I have summarized the top-five issues that small businesses with software should think about if they are looking at adopting disk encryption, or if they’re looking at undertaking wider roll-outs of disk encryption.

See the best secure VPN providers for encryption

Ease of use

Organisations must look for products that are easy to use, easy and quick to install. These are obvious requirements that are partly about reducing the time and expertise required to install products in the first place. An important subsequent point is also total cost of ownership. If a product is not easy to install, it is usually a good indicator of a level of complexity that will remain as a long-term business overhead. 

The more complex a product is, the more complexity there is to manage. This leads to higher levels of required expertise. It also increases the potential for support issues to occur over time. This drives up the product’s total cost of ownership for the organisation.

  • See the best in secure USB drives

Accessible support

Encryption can be a business-critical management asset, as well as a business-enabling technology. It’s therefore important that you’re working with an organisation – whether that

Read More

Be the first to write a comment.

Leave a Reply

GDPR

Box boosts cloud security with automated classification

Box has announced that intelligent, automated classification will soon be coming to Box Shield, its advanced security solution for protecting content in the cloud.It will now automatically scan files and classify them based on their content to help businesses detect and secure sensitive data. Box Shield is the fastest growing new product in the company’s…

Box has announced that intelligent, automated classification will soon be coming to Box Shield, its advanced security solution for protecting content in the cloud.

It will now automatically scan files and classify them based on their content to help businesses detect and secure sensitive data. Box Shield is the fastest growing new product in the company’s history and security-conscious and highly regulated organizations including NASA use it to to secure data in the cloud.

  • Secure your data on the go with one of the best secure drives
  • Keep your devices protected online with the best antivirus software
  • Also check out our roundup of the best business VPN solutions

workin

Read More

Continue Reading
GDPR

10 things to consider to ensure GDPR compliance

GDPR (General Data Protection Regulation) was mandated by the European Union and was enshrined in UK Law on 25th May 2018. It goes much further than the original UK Data Protection (of individuals) provisions applying before that date and lays down severe penalties for the officers (Directors, Owners and sometimes Managers) of businesses that do…

GDPR (General Data Protection Regulation) was mandated by the European Union and was enshrined in UK Law on 25th May 2018. It goes much further than the original UK Data Protection (of individuals) provisions applying before that date and lays down severe penalties for the officers (Directors, Owners and sometimes Managers) of businesses that do not comply. 

Fines can be as high as 4% of turnover. Widely reported data breaches have seen British Airways and Marriott Hotels handed fines totalling £300m. 

website of the Information Commissioner’s Office. 

GDPR affects BASDA (The Business Applications Software Developers Association) members both as companies which hold data, for example on their employees and customers, and as providers of business software which enables organisations to hold and process data on individuals. 

Historically almost any information could be held and maintained so long as it was not published. Now any information held about an individual must be fit for purpose (for example, to fulfill any obligations associated with providing a service) and as importantly, must be provided, if requested, to an individual. 

Below are 10 things from BASDA for a business to consider relating to GDPR.

  • Get your taxes in order with the best UK tax software

1. I am a Data Controller. Do I have to register my activities with the GDPR Registrar?

Yes. Data Controllers that hold, maintain and process personal data need to pay a data protection fee to the Information Commissioner’s Office (ICO), unless they are exempt. Currently the fee ranges between £40.00 and £2,500.

(Image credit: Wright Studio / Shutterstock)

2. Who exactly is covered by the provisions of GDPR?

Any individual that believes a Data Controller holds personal data about themselves. This includes employees; client staff; supplier staff; prospective client and supplier staff; people who are sent marketing information about own and third-party products and services etc.

  • Keep your business data secure with the best secure drives available

3. What are my obligations in respect of accessing data I hold?

Individuals have the statutory right to access any personal data a Data Controller may hold about them. This is commonly referred to as ‘subject access’. A request can be made for subject access for full disclosure of all information held by a Data Controller about themselves verbally or in writing and the business has one month to respond. Not responding with full disclosure carries severe penalties for the officers of the business. A fee is not normally chargeable to an individual who makes a request under the provisions of GDPR.

(Image credit: Alexskopje / Shutterstock)

4. What is the information that I may be required to deliver if I receive a request for subject access?

Any information that relates to the subject access, whether held in ‘electronic form’ (to be delivered in paper form), audio recordings, video recordings (then direct copies of these last two) or paper. ‘Electronic form’ includes data held in databases, files (word proccessed, spread sheets etc.) and emails (both business and private).

  • Also check out the best email service

5. How do I ensure internal compliance?

The first step is to

Read More

Continue Reading
GDPR

10 ways businesses can minimize the risk of identity theft

Identity theft has been a huge problem for a long time now, however fraudsters are now getting more sophisticated and trying to stay one step ahead.In the unprecedented midst of a pandemic, we are seeing a sharp increase in all types of fraud.  Experienced fraudsters are exploiting the current chaos and sadly we are seeing…

Identity theft has been a huge problem for a long time now, however fraudsters are now getting more sophisticated and trying to stay one step ahead.

In the unprecedented midst of a pandemic, we are seeing a sharp increase in all types of fraud.  Experienced fraudsters are exploiting the current chaos and sadly we are seeing more people turn to fraud in an attempt to boost their income.

best secure router on the market

  • We’ve built a list of the best ransomware protection around
  • Check out our list of the best malware removal services on the market
  • As an SME, it is important to discuss the risks with your customers and suppliers to increase awareness of suspicious emails and cold calls claiming to be from your business.

    All businesses are different and so your risks and exposure to identity theft will differ. Using some of the points below you should sit down and work out what risks you face, both as a business and on behalf of your customers. Where are the danger points and what can you do to stop them, or at least lessen the risk?

    Ensure you’re GDPR

    Read More

    Continue Reading
    GDPR

    DIFC brings its new data protection law in accordance with international best practice

    The DIFC Data Protection Law does not stipulate a maximum cap on fines, similar to GDPR, but gives the Commissioner discretion to impose a general fine on top of administrative fines, a leading lawyer said.Breaches of the GDPR can give rise to significant administrative fines of up to €10m or €20m or 2% or 4%…

    The DIFC Data Protection Law does not stipulate a maximum cap on fines, similar to GDPR, but gives the Commissioner discretion to impose a general fine on top of administrative fines, a leading lawyer said.

    Breaches of the GDPR can give rise to significant administrative fines of up to €10m or €20m or 2% or 4% of an organisations’ total annual worldwide turnover for the preceding financial year, depending on the provision of the law that has been breached.

    Article 62 of the law, she said grants the DIFC Authority Board of Directors the

    Read More

    Continue Reading