With the Notifiable Data Breaches Scheme commencing on February 22nd, 2018, businesses across Australia are scrambling to protect their client and stakeholders’ sensitive personal information. A serious breach of this information is costly for your business and reputation, with fines of up to $360,000 for individuals and a whopping $1.8 million for corporations. If you don’t know about the Notifiable Data Breaches Scheme – or feel unprepared for these significant changes. Find out more about it here.
Take the steps you need to protect your client and stakeholders’ personal information. Find out the top tips for locking down their information with rock-solid procedures and policies.
The Mandatory Data Breaches Notification Scheme
Here’s a summary of what you need to know:
- Businesses and not-for-profits with a turnover of over $3 million and public sector organisations must comply with this mandatory scheme.
- A serious data breach is one that involves the leak of sensitive personal information such as credit card details, medical history, confidential employment records or other information that could cause damage to an individual’s livelihood, reputation or wellbeing.
- Within 30 days of a suspected breach, an organisation must notify the individuals who are affected and the Office of Australian Information Commissioner.
Know the requirements for your industry
Not only does the size of your organisation determine the level of protection that you need to offer when handling client’s confidential data, but different industries have their own unique set of requirements. Legal, accounting, financial and health industries have a range of industry mandated requirements regarding the collection, storage and management of sensitive information.
Firewall and Anti-virus
The first line of defence for your business is a firewall and anti-virus software. Although this may seem like a minor detail, an effective and up-to-date system will ensure the protection of your data, systems, hardware and network. At Essential Tech, we use Sophos XG firewall which provides enterprise level end-to-end security.
Do your staff understand issues relating to cybersecurity? Do they know how to protect your company from malicious email spam and how to handle confidential client information? Although cyber attacks occur from outside hackers and malicious agents, employees can expose you to risk due to human error, lack of training or a lack of understanding of cyber privacy laws.
Are your employees aware of the risks of using unsecured Wi-Fi connections in public places such as cafes, libraries or hotel rooms? Although most employees use computers in their day-to-day work, don’t assume that they have the specialist knowledge they need in this area.
Turn off computers at night
Turn off your work computers at night and ensure that you use a secure password to start your operating systems.
Aside from being vigilant against email spam and never opening suspicious email attachments, other security measures include sending sensitive email attachments as password protected pages and removing the metadata before emailing.
Protect sensitive information, files and folders with encryption. Whether it is desktop computer encrypted software or a cloud-based solution, choose software with the latest security measures.
Get a security audit for your business
Essential Tech is a Brisbane IT Security Consultancy who have the expertise to protect your client’s sensitive confidential information. Book a SECURITY AUDIT of your business today and get the peace of mind knowing that your clients’ sensitive information is safe. Protect your business from costly fines, the loss of business and the irreparable damage of a serious data breach. HURRY! This is your last chance to get prepared for a February 22nd, 2018 deadline.