Demands what and what not the employees do on their computers becomes more and more important. Some examples, a person comes in to the reception desk with a presentation with coffee stains on it. Asks to get a new copy, please it’s on my USB drive. And the hacker is in your network! If this was after the 25:th of may 2018 your company could get fines because the employee didn’t get enough training. This is only one example, what about passwords do they use the same password to your internal network as they use on social media? Can I plugins a usb drive into your visitor registration computer? What can guests reach from the guest WiFi network?
This new laws will come in affect next year and will affect all companies that work with European citizens. It demands a good knowledge about what personal data your company stores about them and how long. What do I mean with personal data, it’s their name, email, phone number, ipadress well everything that can be used to identify them.
Knowledge, documentation and education will be required and you need to start now. This isn’t something to ignore because it might lead to 4% of total revenue or 20 million euros in fines.
Do you want to know more, feel free to contact me.