Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

20140514 Protecting your Data and Business_Paul Malone


Published on

TSSG can evaluate your data handling processes and identify weaknesses, make recommendations for improvement and assist in the development of policies

Published in: Technology, Business
  • Be the first to comment

  • Be the first to like this

20140514 Protecting your Data and Business_Paul Malone

  1. 1. 5/16/14 Footer Content Here 1 Protecting your Data and Business Paul  Malone,  Security  &  Trust  Research   1
  2. 2. MEET THE TEAM Our driving innovative minds Paul  Malone   Unit  Manger   Frances  Cleary   Project  Coordinator   Tom  Curran   Business  Development   Hisain  Elshaafi   Research  Felow   2
  3. 3. Trust   Difficult  to  gain   but…   Easy  to  lose   3  
  4. 4. Your  Assets   Your  customer  data  is  your  most  valuable  digital  asset   Your  customers’  trust  is  vital  to  your  business   Your  customers  trust  you  with  their  personal  data     4  
  5. 5. You  as  the  Data  Subject…   How  would  you  feel  if  …   …  your  credit  card  details  were  not  protected   properly  by  retailers  …  ?   5  
  6. 6. Cost  of  a  Data  Breach?   ReputaNon   Trust   Customers   Business   Under  the  Data  ProtecNon  Act  Maximum   fine  of:  €100,000   6   Loss Reduction Loss Loss
  7. 7. Case  Study  Example   Client  list  taken  from  employer  A  to  employer  B   7  
  8. 8. Are  you  a  Data  Controller?   Do  you  keep  or  process  any  informaNon  about   living  people?   YES!   You  are  a  Data  Controller   (Under  the  Data  ProtecNon  Act  1983)   8  
  9. 9. As  a  Data  Controller   You  have  ResponsibiliAes   (Under  the  Data  ProtecNon  Act  1983)   9  
  10. 10. 8  Key  ResponsibiliNes   1.  Obtain  and  process  the  informaNon  fairly   2.  Keep  it  only  for  one  or  more  specified  and  lawful   purposes   3.  Process  it  only  in  ways  compaNble  with  the  purposes   for  which  it  was  given  to  you  iniNally   10  
  11. 11. 8  Key  ResponsibiliNes   4.  Keep  it  safe  and  secure     5.  Keep  it  accurate  and  up-­‐to-­‐date     6.  Ensure  that  it  is  adequate,  relevant  and  not  excessive     11  
  12. 12. 8  Key  ResponsibiliNes   7.  Retain  it  no  longer  than  is  necessary  for  the  specified   purpose  or  purposes   8.  Give  a  copy  of  his/her  personal  data  to  any   individual,  on  request.   12  
  13. 13. Further  complicaNons   MigraNon  to  cloud  services  …  ?   – Reduced  costs   – ImplicaNons  for  Data  ProtecNon   EU  General  Data  ProtecNon  RegulaNon  (GDPR)   – GlobalisaNon   – Cloud  CompuNng   – AdopNon  2014   – TransiNon  Period  of  2  years  (2016)   13  
  14. 14. EU  General  Data  ProtecNon  RegulaNon   Single  Set  of  Rules   The  Right  to  be  Forgoeen   Data  Portability   Responsibility  &  Accountability     14  
  15. 15. Are  you  compliant?   15   Are you obliged to register (annually) with the Data Protection Commissioner?
  16. 16. Do  you  have  data   handling  policies  in   place?   16  
  17. 17. Can  you  improve?   17  
  18. 18. We can help
  19. 19. We  can…   •  Evaluate  your  data  handling  processes   •  IdenNfy  weaknesses   •  RecommendaNons  for  improvement   •  Assist  in  the  development  of  policies   •  Future  proof   – MigraNon  to  cloud  services   – Future  legislaNve  changes   19  
  20. 20. How?   Under  the  Enterprise  Ireland  InnovaNon  Voucher   programme   We  can  help  you  apply  and  reduce  administraNve   barriers   20  
  21. 21. Cost?   EI  InnovaNon  Voucher  provides  you  with  a  voucher  of   €5,000   You  can  use  this  voucher  to  exploit  our  experNse  to   protect  your  business   21  
  22. 22. How  to  engage?   •  Speak  directly  with  us   •  We  will  help  with  EI  applicaNon   •  We  will  visit  your  business  and  examine  your  data   handling  pracNces   •  We  will  provide  a  report  of  our  findings  and   recommendaNons   22  
  23. 23. Summary   •  Uncertainty  about  Compliance     •  ComplicaNons  in  future  LegislaNon   •  Data  Handling  Assessment   TSSG  can  help   23  
  24. 24. Contact  Us   Paul  Malone   –  email:   24