Tackling data security risks under the GDPR

By Lancashire Business View

09 May 2018

andrew-stellakis-q2q-1000x500.jpg
By Andrew Stellakis, managing director, Q2Q IT

It’s been a dot on the horizon for months, but now the 25 May is looming and the GDPR is well and truly in sight, data security has never been so important for SMEs.

The level of scrutiny surrounding cyber security in the media means that a data breach could cause significant reputational damage – a mere glance at the headlines reveals companies being named and shamed for failing to protect sensitive information relating to customers or employees.

And under the GDPR, the consequences for such an error will be even more severe. When it comes to financial penalties, for instance, a data breach could result in fines as high as £17m or 4 per cent of global turnover – whichever is more.

Of course, for smaller businesses with limited time, budgets and human resources, implementing Fort Knox levels of defence isn’t as achievable as for larger corporations. But when it comes to mitigating risks and ensuring that personal data is effectively protected, there are a number of measures that SMEs can take.

Firstly, it’s crucial for companies to understand what sensitive information they hold, the risks out there and the rules governing data processing under the GDPR. It’s only by identifying existing gaps in defences that these can be filled.

Increasing awareness of these issues amongst all employees is essential – an SME’s workforce can either be its most effective shield or biggest vulnerability in the data security battle, so team training is vital.

The security principle of the legislation rules that “appropriate technical and organisational measures” must be taken to protect data.

So, when it comes to guarding against external threats, companies should ensure that robust processes such as file encryption and two-factor authentication are implemented, all software and hardware is regularly updated and cyber-security defences are installed – including firewalls and anti-malware.

SMEs with a Bring Your Own Device (BYOD) approach should be especially vigilant, and introduce a policy to ensure that any laptop, tablet or smartphone used to access business data is adequately protected.

Permissions should also be limited, to ensure only those who need file access to fulfil their role are granted it. Similarly, it’s important for companies to actively minimise the volume of personal data that they store and process – the GDPR rules this must be “limited to what is necessary”, so irrelevant information should not be held for the sake of it.

In the event that a breach does occur, having an effective back-up and data recovery procedure in place is invaluable.

Duplicate versions should be stored off-site or via the cloud and adequately protected, so that data can be restored if the primary files are compromised. For added peace of mind, enlisting an experienced IT provider can also be a cost-effective solution for companies that don’t have the in-house capacity or expertise to tackle data security effectively.

Latest news

1

fulfilmentcrowd ships 200,000 items on Black Friday Fulfilmentcrowd Black Friday

fulfilmentcrowd ships 200,000 items on Black Friday

01 Dec 2023

2

Blackpool's civil service hub hits construction milestone Civil Service Hub Construction

Blackpool's civil service hub hits construction milestone

30 Nov 2023

3

Don't judge, not everybody's got a great brand, ok? Laura Weldon Studio LWD

Don't judge, not everybody's got a great brand, ok?

27 Nov 2023

4

Empowering businesses of all sizes with our pallet delivery service Pallet Services 01.jpg.jpg

Empowering businesses of all sizes with our pallet delivery service

03 Dec 2023

5

Glitz, glamour and generosity see Rainbow Hub ball raise £70,000 Rainbow Hub Ball 2023.jpg.jpg

Glitz, glamour and generosity see Rainbow Hub ball raise £70,000

01 Dec 2023

2664LBD980x120gif
Background image for hub sign up block

LBV Hub

Reach 50,000 members of the Lancashire business community

Post your news
Post your events
Post your offers
Company profile
Social reach
Magazine coverage
Sign-up
Events
Help to Grow Management Course
Collaboration v3.png.png
LBV Hub Seminars
31 Oct 2023 - 14 Feb 2024

Help to Grow Management Course

University of Central Lancashire, School, Online and face-to-face , UCLan, PR1 2HE

09:30 - 11:30

Business Networking in Chorley - BNI Endeavour
EVENT LISTING SIZING Endeavour.png.png
LBV Hub Networking
05 Dec 2023

Business Networking in Chorley - BNI Endeavour

Oak Royal, Bury Lane, Withnell, Chorley, PR6 8SW

06:30 - 08:30

Business Networking in Blackburn - BNI Vista
EVENT LISTING Networking In Halifax (1).png.png
LBV Hub Networking
05 Dec 2023

Business Networking in Blackburn - BNI Vista

Hampton by Hilton, Blackburn, BB1 3AL

06:45 - 08:30

Using your existing Pension to invest in Commercial property
Chris Montgomery SmgTvepind4 Unsplash
LBV Hub Webinar
05 Dec 2023

Using your existing Pension to invest in Commercial property

Zoom, Burnley, BB11 1JG

09:00 - 09:45

Business Networking in Preston - BNI Diamond
EVENT LISTING BNI Diamond.png.png
LBV Hub Networking
06 Dec 2023

Business Networking in Preston - BNI Diamond

Norman Jepson (Beefeater), Bluebell Way, Preston, PR2 5PZ

07:15 - 09:00

Business Networking in Lancaster - Eden Business Network
Eden Business Network.png.png
LBV Hub Networking
06 Dec 2023

Business Networking in Lancaster - Eden Business Network

The Borough, 3 Dalton Square, Lancaster, LA1 1PP

18:30 - 20:30

Business Networking in Burnley - BNI Kudos
EVENT LISTING BNI Kudos.png.png
LBV Hub Networking
07 Dec 2023

Business Networking in Burnley - BNI Kudos

Prairie Sports Village, Windemere Avenue, Burnley, BB10 2FU

06:45 - 08:30

The Business Network Central & East Lancashire
LBV Hub Networking
07 Dec 2023

The Business Network Central & East Lancashire

Stanley House, Blackburn, BB2 7NP

11:30 - 14:30

Twas the night before ransomware
Event Graphic 3.jpg.jpg
LBV Hub Seminars
07 Dec 2023 - 07 Dec 2023

Twas the night before ransomware

The Lowry Theatre, Salford Quays, M50 3AZ

14:00 - 17:00

Discover the power of BNI - Business Networking in Preston
Preston.png.png
LBV Hub Networking
07 Dec 2023

Discover the power of BNI - Business Networking in Preston

Samlesbury Preston Hotel, Preston New Road, Samlesbury, PR5 0UL

09:30 - 11:00

Business Networking in Lancaster - BNI Castle
EVENT LISTING BNI Castle.png.png
LBV Hub Networking
07 Dec 2023

Business Networking in Lancaster - BNI Castle

Vale of Lune RUFC, Powder House Lane, Lancaster, LA1 2TT

06:45 - 08:30

Business Networking in Blackburn - BNI Infinity
EVENT LISTING BNI Infinity.png.png
LBV Hub Networking
08 Dec 2023

Business Networking in Blackburn - BNI Infinity

Hampton by Hilton, 2 Frontier Ave, Blackburn, BB1 3AL

06:30 - 08:30

Advertise with us

Reaching 50,000 members, our print, digital and event platforms offer a fantastic way to raise your business profile and help you grow.

Find out more LBV Advertising Visual NovDec
Subscribe now

Weekly news bulletin