Blog: Data Breach
As experts in data protection, privacy and the GDPR, we wanted to share our knowledge with you to ensure your compliance journey is as simple as possible. With a clear understanding, data protection best practice will become a natural part of your organisation’s way of working - a benefit to you and your business.
So take a look over our GDPR and data protection resources below.
Numpty Nigel gets stuck in a rut
Numpty Nigel isn’t your most dynamic individual. He likes what he knows and he knows what he likes. Which means that he doesn’t like change. Or progress. Nigel needs to move with the times. If he doesn’t, there will always be someone out there ready to take advantage. Don’t be like Nigel.
Numpty Nigel gets caught
Numpty Nigel likes to please. He likes to be helpful. He gets back to people quickly. Even people he doesn’t know. Especially if they need help. He also has an eye for a deal. If something seems too good to be true he is right in there like a rat up a drainpipe. As we know, Nigel is a numpty.
Numpty Nigel overshares
Numpty Nigel is a giver not a taker. This, of course, is probably a good thing. But unfortunately, Nigel is also an oversharer. Which is not a good thing. And we are not talking about pictures of his supposedly perfect life on Instasnap here. We are talking about potentially sensitive information that he should be keeping private.
Numpty Nigel forgets to lock the door
For many people the bathroom is a safe place. A private space. Imagine you have a state of the art Japanese toilet. The seat is heated. Your expensive bluetooth stereo system is playing your favourite tunes through hidden speakers. The air conditioning system with built in AI knows just the temperature you like it. You sit down, get nice and comfortable and then………..
Numpty Nigel presses ‘Send’
We’ve all done it. We hit ‘Send’ and then scramble to try and get the email back, or stop it sending. That sinking feeling as we realise that the email has gone. The mistake has been made. And we have to face the consequences. What is worse is where the mistake leaves a person worried that their organisation may have to report their mistake to the regulator and they may have just lost their job. That is the most common data breach we come across at the The Privacy Compliance Hub (although we’ve never seen anyone lose their job over it).
Numpty Nigel misses a Subject Access Request
Deadlines are boring aren’t they? They are meant to hurry us up. To make us do what the man wants us to do. Nobody wants to be a slave to the man. We are individuals. We should take our time. After all, deadlines are a target that can always be pushed out. Can’t they?…….. Well, not this one! It is the number one privacy fail resulting in complaints to privacy regulators.
When and how to notify a data breach
Almost all organisations have had a data breach. Some of them know they have had a data breach. Most probably don’t. People tend to think that a data breach is caused by a hacker breaking into an organisation’s systems and gaining access to customer personal information for malicious purposes. The reality is that personal data breaches are far more likely to be the result of careless mistakes by employees than the work of hackers. In fact, 90% of UK data breaches are caused by human error.
Chapter 8 : Are you sure you’re secure?
In our previous blog post, we explained that one of the two most important things in making sure that you…