Tackling data security risks under the GDPR

By Lancashire Business View

09 May 2018

andrew-stellakis-q2q-1000x500.jpg
By Andrew Stellakis, managing director, Q2Q IT

It’s been a dot on the horizon for months, but now the 25 May is looming and the GDPR is well and truly in sight, data security has never been so important for SMEs.

The level of scrutiny surrounding cyber security in the media means that a data breach could cause significant reputational damage – a mere glance at the headlines reveals companies being named and shamed for failing to protect sensitive information relating to customers or employees.

And under the GDPR, the consequences for such an error will be even more severe. When it comes to financial penalties, for instance, a data breach could result in fines as high as £17m or 4 per cent of global turnover – whichever is more.

Of course, for smaller businesses with limited time, budgets and human resources, implementing Fort Knox levels of defence isn’t as achievable as for larger corporations. But when it comes to mitigating risks and ensuring that personal data is effectively protected, there are a number of measures that SMEs can take.

Firstly, it’s crucial for companies to understand what sensitive information they hold, the risks out there and the rules governing data processing under the GDPR. It’s only by identifying existing gaps in defences that these can be filled.

Increasing awareness of these issues amongst all employees is essential – an SME’s workforce can either be its most effective shield or biggest vulnerability in the data security battle, so team training is vital.

The security principle of the legislation rules that “appropriate technical and organisational measures” must be taken to protect data.

So, when it comes to guarding against external threats, companies should ensure that robust processes such as file encryption and two-factor authentication are implemented, all software and hardware is regularly updated and cyber-security defences are installed – including firewalls and anti-malware.

SMEs with a Bring Your Own Device (BYOD) approach should be especially vigilant, and introduce a policy to ensure that any laptop, tablet or smartphone used to access business data is adequately protected.

Permissions should also be limited, to ensure only those who need file access to fulfil their role are granted it. Similarly, it’s important for companies to actively minimise the volume of personal data that they store and process – the GDPR rules this must be “limited to what is necessary”, so irrelevant information should not be held for the sake of it.

In the event that a breach does occur, having an effective back-up and data recovery procedure in place is invaluable.

Duplicate versions should be stored off-site or via the cloud and adequately protected, so that data can be restored if the primary files are compromised. For added peace of mind, enlisting an experienced IT provider can also be a cost-effective solution for companies that don’t have the in-house capacity or expertise to tackle data security effectively.

Latest news

1

Bensons for Beds returns to Burnley with six-figure investment in new store PDA260717 12631

Bensons for Beds returns to Burnley with six-figure investment in new store

17 Jul 2026

2

FW Capital strengthens its portfolio team with a new appointment Simon Robb And Gary GuestUNP FW Capital 47974 Manchester005

FW Capital strengthens its portfolio team with a new appointment

17 Jul 2026

3

Freshfield appoints Megan Leeming to senior PR role Megan LeemingFreshfield Senior Manager

Freshfield appoints Megan Leeming to senior PR role

17 Jul 2026

4

Lancashire Business View launches issue 129 LBV Issue 129 Launch Event

Lancashire Business View launches issue 129

17 Jul 2026

5

Four council future for Lancashire Lancashire County Council County Hall

Four council future for Lancashire

16 Jul 2026

Blackburn College (July-Aug 26)
Background image for hub sign up block

LBV Hub

Leverage Lancashire Business View platforms

Post your news
Post your events
Post your offers
Build your network
Improve your SEO
Gain coverage in the magazine
Sign-up
Events
LBV130 September/October Magazine Networking Event
Jan/Feb Networking Event - Entrance
Networking
17 Sep 2026

LBV130 September/October Magazine Networking Event

The Beehive Blackburn, Shadsworth Business Park, BB1 2QS

08:30 - 10:30

Built Environment Conference 2026
BEC Listing
Networking
24 Sep 2026

Built Environment Conference 2026

08:30 - 13:00

Sub36 Awards 2026
Awards
16 Oct 2026

Sub36 Awards 2026

Park Hall Hotel & Spa , Chorley

18:00 - 00:00

LBV131 November/December Magazine Networking Event
Jan/ Feb Networking Event - Talking
Networking
19 Nov 2026

LBV131 November/December Magazine Networking Event

Lancashire

08:30 - 10:30

Lancashire Business Day 2026
LBD Listing
Networking
27 Nov 2026

Lancashire Business Day 2026

Burnley Football Club, BB10 4BX

12:00 - 17:00

Legacy & Leadership – Planning for Lift, Death and business continuity
Logo.jpg.jpg
LBV Hub Seminars
21 Jul 2026

Legacy & Leadership – Planning for Lift, Death and business continuity

Lancaster & Morecambe College, Lancaster, LA1 2TZ

09:00 - 10:30

Preston Freelancer Meet-Up July
LBV Hub Networking
21 Jul 2026

Preston Freelancer Meet-Up July

Society1, Coworking Space, Preston, PR1 3LT

10:00 - 12:00

Preston Tech Connection Coworking Day at Society1
PTC coworking day FB 900 Square.png.png
LBV Hub Networking
23 Jul 2026

Preston Tech Connection Coworking Day at Society1

Society1, Coworking Space, Preston, PR1 3LT

10:00 - 12:00

The AI Lab: Marketing Multiplier
LBV Hub Roundtables
31 Jul 2026

The AI Lab: Marketing Multiplier

Door4, Burnley Wharf, Manchester Road, Burnley, BB11 1JG

09:00 - 11:30

Chamber Breakfast Networking – August
Logo.jpg.jpg
LBV Hub Networking
04 Aug 2026

Chamber Breakfast Networking – August

Morecambe Golf Club, Morecambe, LA4 6AJ

08:00 - 10:00

Morecombe Bay Walk
Morecambe-25-web-gallery4.jpg.jpg
LBV Hub Fundraisers
08 Aug 2026

Morecombe Bay Walk

Arnside, Carnforth, LA5 0HD

13:00 - 18:00

The Ultimate Network
Logo.jpg.jpg
LBV Hub Networking
13 Aug 2026

The Ultimate Network

Garner Hotel , Preston, PR5 0UL

16:00 - 18:00

Advertise with us

Reaching 50,000 members, our print, digital and event platforms offer a fantastic way to raise your business profile and help you grow.

Find out more LBV124 Online Graphic
Subscribe now

Weekly news bulletin