Reading:
Who is responsible for data protection? Blame HR, apparently…
Share:
Sign-up to a data breach claim today - use our quick and easy form to begin your claim for thousands of pounds in compensation.
According to some recent and rather worrying research, the question as to who is responsible for data protection is that it’s a HR problem, some executives say.
According to a spread of UK executives who were asked about where the responsibilities are in terms of compromised credentials, like stolen or misused passwords, it’s a HR training issue.
It’s understood that one-fifth of respondents placed the responsibility in the hands of HR departments, with close to a thousand executives questioned. Some respondents also considered compromised credentials and weak passwords as very little risk to the business as well.
Is this kind of attitude simply passing the buck? The question as to who is responsible for data protection in an organisation is incredibly important, and it goes above and beyond one person or one department.
With so many UK businesses still failing to respect cybersecurity, it’s no wonder there are constantly breaches hitting the news.
Simply put, everyone within an organisation is responsible for data protection, and although HR training may be a key factor in learning and enforcement, company executives need to take personal responsibility for it as well.
The Equifax data breach was a classic example of leaving the responsibly being with just one – or a small number of – person(s). The addition of a security patch was somehow forgotten, and this led to a huge breach last year affecting 700,000 UK residents.
If an organisation is responsible for breaching important data protection laws, here’s what they may face:
And that’s just three reasons. So, company executives, having read through those reasons, shall we ask again: who is responsible for data protection? Is it a matter to pass off on your HR department, or is the potential of your company paying out £22,000,000.00 (twenty-two million) in damages and fines, using the above example (which doesn’t include legal fees or the impact of profitability), something to think about?
Compromised credentials can actually be a huge risk to organisations, whether it stems from stolen information or weak passwords resulting in systems and servers being broken into. Even the smallest of data breaches can lead to huge problems for victims and the organisations.
Given so much of businesses these days are linked together and online / in the cloud, even one administrator’s compromised credentials could allow a hacker to gain access to personal and sensitive – and even financial – information within the organisation.
Hackers are not fools. They’re usually highly intelligent, good at what they do and are incredibly innovative.
So, who is responsible for data protection? In reality, we all are. It’s everyone’s problem and everyone’s responsibility.
EasyJet admits data of nine million hacked
British Airways data breach: How to claim up to £6,000 compensation
Are you owed £5,000 for the Virgin Media data breach?
Virgin Media faces £4.5 BILLION in compensation payouts
BA customers given final deadline to claim compensation for data breach
Shoppers slam Morrisons after loyalty points stolen
Half a million customers can sue BA over huge data breach
Lawyers accuse BA of 'swerving responsibility' for data breach
The biggest data breaches of 2020
Fill out our quick call back form below and we'll contact you when you're ready to talk to us.
