The Classification Conundrum #ISO27001

An important step to effectively manage information security risks is identifying how many information Classifications you have. The ISO27001 standard supports through clause 8.2.1 “Information should be classified in terms of legal requirements, value, criticality and sensitivity to unauthorised disclosure or modification”.  There is no standard answer to how many are needed. It is one… Read More

Will marketing make companies miss the May 2018 GDPR deadline?

We all do marketing to make us stand out from the competition and show the compelling reasons to have the product or service we provide. But sometimes a marketing message doesn’t give the complete picture. For the General Data Protection Regulation (GDPR), this could lead companies to believe they comply but actually have several outstanding issues to address.… Read More

The SMEs guide to the General Data Protection Regulation (GDPR)

The General Data Protection Regulation (GDPR) will replace the Data Protection Act (DPA) in May 2018. The headline-grabbing impact of the GDPR are the fines; up to €20m or 4% of global turnover (whichever is the higher) depending on the scale of the issue you have with personal data. But it also presents OPPORTUNITIES; to improve… Read More

Apple and Differential Privacy – is it different and is it private

Apple has announced that iOS10 will use ‘differential privacy’ to maintain the privacy of the data is collecting. Apple SVP Craig Federighi said that the ‘…great work in iOS 10 would be meaningless if it came at the expense of your privacy’. I will admit that I had not come across Differential Privacy before so… Read More