With GDPR regulations coming into enforcement and all over the news, digital data security is more important than ever, and it’s in the spotlight. Here’s a few steps any user can start doing to help keep their data secure and comply with GDPR.
- Screen-locking – Most computers lock or sleep after several minutes of being inactive – this means no keyboard or mouse usage whatsoever. To properly comply with GDPR, it’s important to set an automatic lock point. This means having an unattended desk will not be a data breach hazard in your workplace. Upper management normally chooses this lock timer, and it’s best to choose a time that you are confident will make your office IT secure. If somebody entered your office, and saw an unlocked computer, they could potentially access large amounts of customer’s personal data.
- Passwords – Passwords are the most important aspect of data security. Many companies that we work with have a policy of requiring employees to change their password every 30 days or so. This helps prevent unauthorised access. It’s also very important to not have your password written down somewhere very obviously on your office desk – one we see a lot is a post it note stuck to the front of your monitor. This makes it very easy for somebody to access your computer and the data it protects. Along with this; it’s important to have different passwords for different things; like emails, social medias, work log in, PayPal – this stops somebody having access to everything if they get one password.
- Malicious Emails – Most people who have used email before have heard of spam emails – but they are constantly evolving and becoming more and more believable. Falling for them and clicking links/downloading attachments can have bad results on a personal level – but for a business it could potentially be a breach reaching thousands of customers, as well as a possible GDPR fine. If you receive an email that you aren’t sure about it, check the email address – the most recent phishing email we received was one from appleeid@idapplee – which is a very fake looking Apple email address. It’s best practise to not open random files without checking them properly and delete them if they ever ask for passwords or personal information. A real company would never do this. If you are unsure, forward them to us or give us a call, as we are always happy to take a look.
- Pop-up adverts – Much of the advice for phishing emails applies here too – but keeping safe while surfing the internet is also very important. Pop-up adverts about competition wins or detected viruses are always scams – they are trying to get personal information from your computer. They could also infect your computer with damaging viruses, which is why having up-to-date anti-virus software is essential.
- Installing updates – Taking time out of your working day to install computer updates can be frustrating and many people put them off – but ignoring them puts your computer at a higher risk of security breach. The updates can often have security patches that will make your computer operating system secure. It can be tempting to click the ‘remind me later’ button forever, but you are actively leaving holes in your security system. An update will fix these.
Got some questions about data security? Or after some advise? We’re always happy to help.
Call 01212700808 or email to firstname.lastname@example.org