Escolar Documentos
Profissional Documentos
Cultura Documentos
alone,
typical
breaches
being
reported
by
Clearly, our data is leaking at an alarming rate and organisations that have a
duty to protect it could do much more.
EU & UK Law
The Data Protection Act has been in force since 1998 and lays down some
principles for data security:
design and organise your security to fit the nature of the personal data
you hold and the harm that may result from a security breach;
make sure you have the right physical and technical security, backed up
by robust policies and procedures and reliable, well-trained staff; and
Moreover, the EU General Data Protection Regulation (GDPR) was ratified in April
2016. This regulation takes data protection to a significantly higher level and
organisations that hold personal data on citizens of member states have until
25th of May 2018 to comply with it. The UK Information Commissioners Office
has stated its opinion that, even if the Regulation isnt passed into UK law, it will
still be relevant for many organisations here. GDPR is designed to produce a
Single Digital Market by harmonising the existing 28 sets of national data
protection laws into one set of requirements. Fines for breaching GDPR are
potentially serious for organisations that lose data and will be to up to 4% of
turn-over, or 20 million, whichever is higher.
87% of organisations with ISO 27001 are positive or very positive about its
benefits
78% of certified organisations reported improved levels of legal
compliance
56% or organisations reported a reduced number of security breaches
47% of organisations reported a reduction on downtime of IT systems
43% of organisations reported an increase in sales