14 November 2024
2 mins
Here’s a quick list of 10 things to think about when reviewing your cyber security and data protection:
- What important data do you have in your business? Think about personal data, confidential data, trade secrets, know-how and methodology to get you started.
- How is this data collected, why is it collected and where is it stored?
- How can the data and IT systems be accessed?
- What devices do you have in the business that access and use this data?
- What security measures are in place for each device apart from a password? Think about ‘end point protection’ on each device along with encryption (Apple devices usually have encrypted hard drives as standard).
- Do your team use their own devices to access any of your data or systems? If so, have you got a policy which sets out the dos and don’ts? “Bring your own device policy” is what you’ll be looking for here.
- What about remote working and using public WiFi? Doing your research on VPNs and investing in one can help here.
- Do you regularly back up your important data? If so, how, when, where and by who?
- Do you have a process for training or keeping your team updated on cyber security and data protection? An easy way of doing this one is by adding it to your new starter process.
- Have you got sensible cyber insurance in place? Have you discussed the policy with your broker and are you clear on what you need to do in order to be covered?
While we’re not experts in cyber security, we do work closely with cyber security experts that can advise you on your own security systems and processes.
What we can help you with is the data protection, policies and support that wrap around this from a legal perspective – please don’t hesitate to get in touch if you’d like to discuss.