The Cyber Essentials scheme is a world-leading assurance mechanism for organisations of all sizes to help demonstrate that the most critical cyber security controls have been implemented. To highlight the importance and usefulness of the Cyber Essentials scheme, we’ve produced …
There are few things organisations fear more than data breaches. They cause immediate delays, are expensive and could lead to long-term reputational damage. The stakes were raised with the enforcement of the EU GDPR (General Data Protection Regulation) in May 2018. It …
Data from Lloyds Bank has revealed a 58% increase in BEC (business email compromise) attacks in the year to date. It is important to note that the “true scale of the problem is likely to be much larger” as this …
Organisations are facing increasing pressure from regulators, clients and the public to address information security, which is leading to a spike in ISO 27001 certifications. The Standard describes best practices for an ISMS (information security management system), helping organisations address …
The hospitality sector has embraced consumer-facing technology. Chatbots, AI, robotics – such as Hilton’s robot concierge, Connie, which hit the headlines in 2016 – the IoT (Internet of Things), recognition technology, virtual reality, augmented reality, automation, voice search and virtual …
This blog has been updated to reflect industry updates. Originally published 25 October 2018. There is a lot you need to do after you discover a data breach, so it’s a good idea to keep a checklist. This will help …
The past two years of Brexit negotiations have largely proved the late William Goldman’s adage that “nobody knows anything”. No one can tell you what Brexit will entail, very little has been finalised and there’s a real possibility that the …
The UK government’s amendment to the PECR (Privacy and Electronic Communications Regulations) took effect on 17 December 2018, increasing the maximum penalty for violations to £500,000. The PECR cover several areas, including electronic marketing, cookies and the security of public …
Organisations can gain certification for any number of frameworks and standards. Indeed, we regularly recommend certifying when implementing the likes of ISO 27001 and ISO 22301. But you’ll also hear us talk about ‘accredited certification’ – so what’s the difference? …
Pre GDPR… Just prior to the EU General Data Protection Regulation (GDPR) coming into effect Scotland had Britain’s best compliance record with data protection laws, with just 1.9% of a total £4.2m in fines being issued north of the Border. …