Business Security Services provided by R & I ICT Consulting Services Pty Ltd
Need help, these products could help
If you have been living in a cave for the last 6 months then you probably have not heard about the universal implications of the EU’s GDPR. (General Data Protection Regulation)
If you have been following the introduction of these regulations then you know. They are going to have a profound effect on businesses and organisations all over the world, not just in the european union.
Strict protection and compliance is the name of the game, but for most of the SME’s in Australia where “she’ll be right” is the foremost thought when it comes to compliance there are going to be some serious issues.
The regulations ensure that all EU personal data collected by an organisation is to have the same governance and compliance around it as if it was managed by an EU organisation.
But I am not in the EU you say,
The regulations apply to any citizen of the EU in your database.
With the internet making every organisation global, how do you stop it from happening to you. You could geofence your web site, but there are always ways to get around it if someone wants to purchase your product.
This is a major issue.
I have been harping on about NIST, compliance and a business security framework for the last 13 years.
The GDPR is going to ensure that you can significantly damage you organisation if you do not put something around it to comply with the regulations.
This is what you need to do
NIST, compliance and business frameworks are not easy to implement, manage and control but they have to be done to protect every organisation from a cyber event.
Some of the questions you need to ask are:
Who do I know who can help with a framework
How much will compliance cost
How much would a breach cost
How complex is the job of implementation
What risks do we have to mitigate, remove or remediate
What do we have to do to comply with GDPR.
What answers did you get?