There has been no shortage of data breaches in the news recently, the likes of Dixons Carphone, Air Canada and Butlins all suffering. But how much attention do we pay, until it is our personal information that has been compromised? Recently, a member of our team here at The DDC Group was involved in a breach at the Royal Museums Greenwich (RMG).
The email received was rather detailed in terms of what had occurred and how they plan to proceed. What isn’t clear is what steps were in place to avoid this taking place in the first instance. It seems that the issue revolves around a third party – which will be frustrating for the RMG but unfortunately the responsibility still sits with them.
Further, the email suggests that the breach was identified on a Thursday, whilst the email was sent on the following Monday. This is reasonable, but if we read between the lines, that suggests it has taken time to implement any reaction as opposed to an existing plan being implemented immediately.
So, what can an organisation do to ensure that firstly, these kinds of breaches are avoided? Secondly, that they can be actioned immediately. Here at DDC Analytic Solutions, we have been supporting organisations with our RiskView software with their data requirements. Not only accounting for GDPR but IP loss and theft, phishing and security, plus others. RiskView also assists validation of the supply chain to ensure third-party providers are adhering to the same compliance and security standards.
- 12th September 20192019 on track to be the “worst year on record” for data breach activity
- 10th September 2019Leaving the EU: Brexit and GDPR
- 9th September 2019Data Breaches: Did you know?
- 5th September 2019What should you do if your data has been breached?
- 3rd September 2019GDPR was just the beginning
- 14th August 2019The dangers of Subject Access Requests
- 12th August 2019Is GDPR now being taken more seriously?
- 5th August 2019The financial impact of Subject Access Requests
- 1st August 2019DDC AS Launches SmartRedact
- 31st July 2019Don’t be blindsided by your organisations handling of data