There’s a fast evolving area of responsibility about which some directors know very little and for which they can be held personally liable – the protection of data and real world security. This half day workshop with The Institute of Directors focuses on what directors need to do to protect their own personal positions on this issue. After all, in the space of only a year, (Q2 2018 – 2019) 16 directors were banned from holding office for a total of more than 100 years due to GDPR breaches.
It’s important too that you don’t see this as just an IT issue.
A lack of understanding of your personal GDPR obligations is not an excuse in the eyes of the law! It’s your responsibility to know these obligations and to act on these. Think of GDPR as today’s equivalent to Health & Safety regulations – you wouldn’t send one of your people up a ladder without suitable protection or risk assessment. If you did, and something went wrong, you would expect to be sanctioned for that. Well it’s the same for a loss of data.
It’s important too that you don’t see this as just an IT issue. Your business could invest heavily in protecting its IT systems from external attack, but in the final quarter of 2018 only 14% of breaches were cyber security related, whereas 50% were attributable to human error. It’s always a good idea to ensure your IT infrastructure is secure but this is also about people, processes and procedures for effective real world security governance.
In the space of only a year, (Q2 2018 – 2019) 16 directors were banned from holding office for a total of more than 100 years due to GDPR breaches.
You need to understand where your data assets are, and identify the risks. Having done so, you then need to take action to either remediate, accept or transfer that risk. Skilled teams like Net-Defence can help your business to do this, but you need to take the first step.
In the final quarter of 2018 only 14% of breaches were cyber security related, whereas 50% were attributable to human error
As technology and innovation continues to develop at a rapid pace, many Directors are finding it a challenge to effectively deliver regular Board education on all aspects of asset, data and people protection. Significantly many Directors are losing sleep with worry about liabilities and how to navigate their risk management and compliance duties. Net-Defence has partnered with the IOD and leading law firm Burness Paull to deliver workshops on how to navigate Directors’ Accountabilities in a digital era.
These Directors’ Accountabilities workshops have been designed to enable individual Board Directors to stay informed, reduce personal risk and enable them to deliver effectively on their Directors duties when is comes to digital impact on running a business.
The IOD (Institute of Directors) has been engaged with the government’s consultation on digital strategy for a future proofed economy for some time. “There is no question that internet technology – and digital communication innovation more generally – will allow economies across the world to rapidly catch up with digital leaders, far quicker than would be the case with manufacturing.” You can read more about the IOD engagement here
The next workshop which will run in Edinburgh is on 7 November 2019
This workshop will
- Take individual Board Directors through clarity on changes at the ICO which result in greater accountabilities of individual Directors and new legal accountabilities
- Educate and inform on myths and misunderstandings that are resulting in ICO fines
- Equip Directors with knowledge to evaluate if IT and Marketing teams are fully informed and compliant
- Enable Directors to better assess risk levels for you and your organisation in the future
The workshop is open to IOD members with preferred rates, and non IOD members.
Net-Defence is a real world security specialist, helping organisations protect assets, data and people in an age where there is significant risk from evolving digital threat.