Category Archives: Digital Data

When To Disclose A Data Breach

Posted on by
Reply

iCloud security wake-up call, data brach

Secure document destruction methods must be in place to comply with Data Protection laws. A confidential document destruction service will benefit your business and its Data Protection.

Technology has brought us accessibility to a global market and small businesses have benefited greatly from this boom in technology. With a greater number of devices connected to an online service has also meant that a increase in the number of cyber attacks. Small businesses in particular are now being targeted.

A report from the Wall Street Journal has shown that small law firms are targeted the most due to the potential high profile client base they may have. That being said law firms do not usually hold social security information and the information obtained by hackers may not be beneficial to them.

Under American law, law firms are required to inform the public that a breach has occurred.

Data Protection Commissioner

Under Irish law the Data Protection commissioner has Data Breach guidelines for you and your business to follow. If a breach occurs it is paramount that the matter is dealt with swiftly to minimise damage. Data Protection Commissioner data breach guidelines can be found at the link below.

https://www.dataprotection.ie/docs/Data-Breach-Handling/901.htm

The document informs you on what steps to take if a breach has occurred. With this guide you can easily follow the steps needed to take and the information to provide when informing the Data Protection commissioner.

“Failure to comply with these obligations can result in a criminal prosecution with fines up to €5,000 indictment €250,000 per offence.” 

The document also state “Prevention is better than cure.” Setting up company policies and practices for handling of sensitive data should be implemented immediately. A reputable Shredding Service will also improve Data Security within your company. A shredding service will be able to provide an onsite shredding service. Confidential shredding is paramount to shredding services.

A reputable shredding service will comply with the protocols provided by the Data Protection Commissioner. It is a governing body to help protect your personal data and the data of others.

Please visit our site for more information on a Confidential Shredding Service:

https://www.securityinshredding.com/

Full Article Wall Street Journal Report:

https://blogs.wsj.com/law/2016/03/30/when-do-law-firms-have-to-disclose-data-breaches/ 

 

American college (TCC) affected by data breach

Posted on by
Reply

Security in Shredding Data protection & destruction

Onsite paper destruction and or offsite paper destruction are services provided with shredding companies in Ireland. “Shredding Paper Ireland” will provide you with a decent result when researching for an industrial paper shredding service.

In a recent story involving an American college in Virginia were subject to a data breach involving staff and their names and social security details. 15 of the college employees who had submitted their tax returns to the IRS (American version of Revenue Office) were later told that their tax had already being done using their social security number.

Approximately 3192 employees in the Virginia college system may have being effected by the breach. It appears the details of the leaked data containing the names and social security numbers may have being sent to a fake account from the college.

While this happened in America the method as to how it happened remains the same. A false account was created to look like an official college page. The page will have asked the user to enter in or provide specific data. These scams will prey on human error or uneducated person to transfer this data.

How to protect yourself from these attacks

If you feel your business has being subject to one of these attacks here are a number of things to look out for. If you use a regular paid service whatever the format, these services will have your name on record and will be able to display it on emails and documents.

  • “Dear Customer” can be an indication of something off. A reputable service will easily be able to display your name here instead of customer.
  • Asking you to click a link from the email itself rather than going through the official website of the service provider to pay for services.
  • Do not click on links you are uncertain of going through the service provider site itself is a good practice.
  • Asking for specific details is also a sign of malicious intent. Reputable sites do not ask for this information as information such as passwords are NOT known by the service provider as these are encrypted and only known by you.

What To Do If Breach Occurs

  • Alert the service provider that a breach has occurred
  • Alert relevant authorities such as banks, revenue office so they know to monitor irregular transactions.
  • Inform employees to change passwords to the relevant accounts
  • Inform customers that may have had their data accessed
  • Sooner the better you alert the authorities the quicker and less damaging the data breach will be

The full article involving the TTC can be read here:

https://www.13newsnow.com/news/local/mycity/virginia-beach/tcc-100-employees-affected-by-data-breach/110309810

For more information on data security please
 visit:

https://www.securityinshredding.com/shredding-benefits.php

The Future Of Data Security

Posted on by
Reply

Secure Paper Shredding Hard Drive Shredding WEEE Destruction

Document shredding service are a vital part of Data Protection. Shredding services in Ireland when a clear out shredding is needed. Offsite shredding services can be incorporated into everyday business to comply with Data Protection laws and improving Data Security.

Siliconrepublic an Irish based article site recently posted an interesting article regarding the future of Data security. Data Security is now more than ever vital for businesses to succeed. Technology has continuously improved and grown over the past number of years. The devices used has greatly helped smaller businesses compete with larger companies. With all this growth in technology aspects of the technology have being lost or information about it has become confusing and conflicting.

Data Security with technology will always be a continuous process. Between encryption, mobile devices and cyber warfare means that there will be no end to this process. Security experts can only protect against known breaches. Hackers have a small window of opportunity to work with.

Data Security Small Business

What does this mean for your business. For one, hiring a confidential shredding service that is also reputable and recognised by governing bodies. A shredding service must comply with Data Protection laws. A shredding service implemented within your business will ensure that you are protecting your data and improving data security.

Data Security is more than just electronic devices and digital data. Paper also contains data. Sensitive data in particular must be accessed and handled correctly. Who has access to this data and how this data is destroyed when no longer in use. A shredding service will handle these documents and devices and destroy them in a confidential and secure manor. ISO 9001:2008 is a good mark to look out for before hiring a shredding service for your business.

This type of data is what hackers and criminals try to achieve and will prey on human error to obtain this data. Dumpster diving will occur and if your documents are not shredded or only used a simple office shredder will not securely destroy data. Digital data can be accessed easily if the data is not encrypted or has not being wiped correctly. USB keys should be kept securely in your possession if they contain data. When shredding ask for the DIN level of shredding required to ensure secure data destruction.

Awareness to these methods is paramount to the success of your business and Data Security. If a data breach occurs then your business can be liable and receive a hefy penalty.

Read the full article here:

https://www.siliconrepublic.com/enterprise/2016/03/24/cybersecurity-future-of-security-hackers

Details for a confdential shredding service please visit:

https://www.securityinshredding.com/

Electric Ireland Phishing Scam Warning!

Posted on by
Reply

irish data breaches, Data Protection, Paper Shredding, Data Destruction

A Confidential document destruction service is one among many means of a businesses Data Protection. Data breaches can come in many forms and one method of a data breach is phising. When you hear reports of accounts being hacked or customer details have being released, this is one such method of doing this.

So what is phising?

A simple Google search of this question will provide you with the following answer

“the fraudulent practice of sending emails purporting to be from reputable companies in order to induce individuals to reveal personal information, such as passwords and credit card numbers, online.”

It is common for these type of scams to target high profile companies with a large customer base. Hackers can produce “official” looking emails to trick people into giving their details. There are steps to help protect you against these type of attacks.

Below is an example of the malicious email in circulation:

Screen Capture of malicious email

Read the full article here:

https://www.independent.ie/irish-news/news/electric-ireland-warns-customers-over-sophisticated-phishing-scam-34587520.html

The article writes that the scam was asking customers click a link and enter their username and password. The way the email is worded to convince you that it is official. To the uneducated person this will look and feel official. Asking for your details in this manner is suspicious.

Also “Dear Customer”  should not be there. If it was an official statement then Electric Ireland would have your name in place of customer. Electric Ireland will have your name on storage and will be able to use it in documents.

The links to click are also displayed in a way to deceive you creating a link can be displayed to say anything.

Prevention against phising

  • If you suspect something the report it immediately as the company may not be aware of the issue.
  • Do not click on the links on the email and go through the Electric Ireland site to login
  • If you clicked on the link and feel your details were obtained then change your password immediately and report it to Electric Ireland.
  • Avoid clicking links that display as “here” or “Click Here” etc these can be misleading
  • Asking for your details through email is common practice.
  • Report any suspicious activity.

Microsoft have a detailed list to help protect you against phising scams. Awareness is key to scams like these the more you know the easier it is to protect your data and company reputation from data breach.

Microsoft Tips: https://www.microsoft.com/en-us/security/online-privacy/phishing-faq.aspx

For more information on Data Protection please visit our shredding specialist site

Data Destruction What Is It?

Posted on by
Reply

harddrive destruction, Media Destruction, Confidential Shredding Service

Off site document destruction and or onsite document destruction can be implemented for a purge clear out in business. Secure document shredding services in the Dublin area and throughout the country are necessary to comply with Data Protection laws.

Data destruction is the process of destroying data stored on tapes, hard disks and other forms of electronic media so that it is completely unreadable and cannot be accessed or used for unauthorized purposes. A good data destruction process in your company or business will ensure you are complying with data protection laws. Protecting sensitive data is paramount for a business and if data breaches occur a business or company will receive a hefty penalty if a breach occurs.

On Site Media Destruction Service

Incorporating a on site media destruction service to your daily business will benefit both you and your customers. In today’s market any form of a data leak or breach is a make or break for business and in particular for e-commerce businesses. A reputable confidential shredding service should be sought when the service is needed.

There are a number of reasons for getting your media and a good shredding service will be able to provide most of the following:

 

  • Hard Drive Shredding – Large Quantities

  • Data Erasure

  • Hard Drive Degaussing

  • Hard Drive Crushing

  • Hard Drive Shredding

  • Lockable Bins for Hard Drive Storage

  • Tape Destruction

  • Remote Employee Services

Off Site Media Destruction

Services needed do not always require an on site destruction. Medium to large businesses can avail of off site destruction service where bulk destruction can take place. A good and reputable shredding service would be able to accommodate this.

Knowing weather to go for a on site or off site service will come down to the business owner or manager and enquiring with the shredding service as to which option is recommended and most shredding services will offer free consultation.

Data Destruction Shredding Process

The shredding process of hard drives will occur in a secure environment and is destroyed beyond reconstruction to ensure its security Below is a video description of the shredding process.

 

For more information on Data Destruction and Data Protection or have any enquires about a confidential shredding service please visit:

https://www.securityinshredding.com/

 

Data Protection Ireland Today

Posted on by
Reply

Data proccesser and data commissioner

Secure document destruction in Ireland can come in the form of an onsite paper shredding service or an off site paper shredding service. Data comes in many forms and The Data protection Act is in place to ensure that this data is protected.

Data Protection is a vital for a business to succeed and remain in business. If customers or users know that your service does not protect your data. It will be a massive loss to business and business reputation. Your business can suffer from a severe penalty for not protecting your data.

An interesting article written by Colm Gorey titled “3 issues defining data protection in Ireland today  The issues discussed are relevant to today’s business. The 3 topics discussed were:

  1. ISO 27018: Cloud computing privacy standard – one year on

  2. Personal data and your right to access it — Ireland vs the UK

  3. Challenges to data protection under the internet of things

The first point talks about the governing of personal data through cloud based systems. Standards have being created to ensure the protection of data and were received well by Data Security experts. The ISO 27018 standard can be read here. Cloud computing has become a major asset to business functionality and knowing what cloud based systems are doing with your data should be investigated and researched when changes if any occur.

The second point refers to Irish and English law. Although both countries have similarities the law for each country does vary and in particular with personal data and access to it. Your business must abide by the rules in place of the country it is based in. A good example of how country laws differ can be read at this link.

Awards of Damages for Data Protection Breaches – UK and Irish Approaches Contrasted

Thirdly the internet of things (IOT) refers to the general use of internet and internet services. Governments and official bodies are trying to develop ideas or frameworks that will regulate the internet of things. What has happened is the EU 28 data protection bodies.

for more information on data protection and a confidential shredding service please visit: https://www.securityinshredding.com/

 

 

Paper Vs Digital Data

Posted on by
Reply

Paper Data vs Digital Data

Paper Data & Digital Data are both equally as important to protect from data breaches. A Paper Shredding Service should provide a Din 66399 Standard when shredding documents. This ensures that documents are destroyed beyond repair. While this deals with paper data and documents. Your digital data is just as vital to protect. 

We now live in a digital age. With the increase in usage of electronic devices and data is accessed and viewed digitally. This has caused a decrease in print media. Forbes magazine released a interesting article about the benefits of print media.

Over the past decade media has switched to digital based as people now access information through digital media. While there wont be a switch back to print media recent neuroscience research has shed new light on this form of media.

“Direct mail requires 21% less cognitive effort to process than digital media (5.15 vs. 6.37), suggesting that it is both easier to understand and more memorable. Post-exposure memory tests validated what the cognitive load test revealed about direct mail’s memory encoding capabilities. When asked to cite the brand (company name) of an advertisement they had just seen, recall was 70% higher among participants who were exposed to a direct mail piece (75%) than a digital ad (44%).

load-recall

The study continues and explains how paper causes an emotional response to the brain:

  • Physical material is more “real” to the brain. It has a meaning, and a place. It is better connected to memory because it engages with its spatial memory networks.
  • Physical material involves more emotional processing, which is important for memory and brand associations.
  • Physical materials produced more brain responses connected with internal feelings, suggesting greater “internalization” of the ads.

Your recall is better from paper media. So don’t throw out the printer just yet. Accessibility of data may be easier digitally but data will be read and learned better from paper. Whatever method you choose it is important to know that the data needs to be protected.

Data protection laws are in place for businesses that contain sensitive data. With paper a confidential shredding service should be implemented for your business to dispose of sensitive data in a secure manor.

For information on a confidential shredding service please visit:

https://www.securityinshredding.com/

Read the Forbes full article here:

https://www.forbes.com/sites/rogerdooley/2015/09/16/paper-vs-digital/#5d5ee8301aa2

 

Data Protection A Human Right

Posted on by
Reply

Amnesty International Data Protection a Human Right

Confidential document destruction services are vital part of business data protection. paper shredders / shredding services in Ireland have governing bodies in place to enforce and ensure people are complying with Data Protections laws.

“Encryption is a basic prerequisite for privacy and free speech in the digital age. Banning encryption is like banning envelopes and curtains. It takes away a basic tool for keeping your private life private,” said Sherif Elsayed-Ali, Amnesty International’s Deputy Director for Global Issues.

It can be hard to comprehend the benefit of encryption when using a device. What happens in the background on devices and applications can even confuse even the most informed individual. The above statement from Elsayed does put it into perspective. With a major organisation such a Amnesty international in support for data protection, ensuring your business protects its data needs to be paramount.

The Data Protection Act is an EU standard that ensures that the access and movement of personal data is protected accordingly. These standards are in place to protect your personal information. Online usage has grown and is still growing. Access to online services and devices to use it are widely available in particular mobile devices are now becoming the no.1 method of transactions for e-commerce sites.

Using these sites or services requires and stores personal data and this data is sensitive and businesses must ensure that this data is protected. If a business does not secure its data it can be ruin a companies reputation and not to mention the penalties for a data breach from unsecured data.

There are many ways to store and display data. Weather it is electronically or paper, if it contains sensitive data it needs to be stored and destroyed securely. A document destruction service should be sought when destroying documents. A simple office shredder will not securely destroy your documents.

Media devices such as hard drives if being replaced or recycled should be destroyed if they contain sensitive data. Wiping the drive or formatting the drive does not remove the data entirely and can be retrieved.

Din 66399 Standard is a standard set for paper shredding. This standard ensures the highest security when shredding documents and devices. When hiring a reputable shredding service this standard should be sought after.

For more information on a confidential shredding service please visit:  https://www.securityinshredding.com/

Read Amnesty International full report here:

https://www.amnestyusa.org/research/reports/encryption-a-matter-of-human-rights

Dangers Of Data Breaches For Small Businesses

Posted on by
Reply

Heartbleed Data Theft

Secure document shredding in Dublin and throughout the country are services needed to ensure your business is complying with Data Protection laws. These laws are in place to ensure businesses that possess sensitive data are protecting against vulnerabilities both physically and digitally.

Cyber criminals will target small businesses. In the UK the minister for the digital economy Ed Vaizey outlined (2015) that a major security breach for a small business in the UK could cost as much as £310,800. This figure also applies to Irish businesses and any small business in operation.

Dataprotection.ie have detailed descriptions on how to protect your business and improve its security. The site has guidelines to improve your business security. Researching online can be difficult because you will read conflicting reports and incorrect information. The data protection site provides you with useful and up to date information from a governing body to help improve your business security and data protection.

On the site is a guideline to improve your data security. It covers the law to software and IT support to use. With a little bit of know how and awareness to possible threats will benefit you and your business greatly.

There are 19 steps in total on the guideline page which can be read in full at data security guideline page, below are a steps from said list.

1. Install an Anti Virus Software

It is a necessity for any electronic device that transfers data. Anti Virus software protects more than just your computer, it also protects your emails and personal details when online. Malware is a big threat to computers and using a reputable ant virus will benefit.

Remember to update the anti virus software regularly as anti virus software can only protect against known viruses.

2. Firewalls

Firewalls are a essential form of protection where there is external connection. Always on internet is now a common practice for businesses. This makes a properly configured firewall a good form of security.

3. Wireless networks

When using a wireless network in your own business network make sure that proper encryption is setup on the wireless network. Be aware when using public networks such hotels and airports can potentially a risk. Use it if necessary and if you are transferring personal data make sure to be in a secure session on the device.

4. Human Factor

Is often over looked and is often used to breach a business. For example cyber criminals have accessed user accounts by using passwords such as “123456” and or “password.” Sounds crazy but happens more often than you would think. Use a more cryptic password. What the password contains will help its strength but the more characters used the greater the strength.

Also be aware of printed documents that may contain sensitive data and if not disposed properly can be accessed. Having a reputable Shredding Service dispose of your documents securely and safely.

For more information on a secure shredding visit: https://www.securityinshredding.com/  for more information.

 

Data Protection And Data Encryption

Posted on by
Reply

secure data

Industrial paper shredding of private documents should be destroyed by a secure paper shredding service. Shredding paper is among one method of Data Protection.

In light of the recent event involving the F.B.I and Apple involving Apple’s security feature on the iPhone 6’s data encryption and fail-safes. With the iPhone once a passcode is entered incorrectly 10 times, the phone is then locked and the data cannot be retrieved by anyone other than the owner. Apple do not have access to the user’s phone. Any current mobile or electronic device will have encryption available.

Now more than ever companies and organisations need to be aware of the devices they use and what security and encryption they are using. Encryption protects your data on devices. It essentially scrambles data from anyone trying to access the data. A password or code is usually the only way to view the data.

It is worth knowing what encryption if any do software programmes use. Unencrypted data can be accessed by people with a little bit of know how. Data Protection is vital part of business as data breaches will have a hefty penalty if a breach occurs they occur.

Any media device your organisation uses, that is being replaced should be destroyed by a shredding service. WEEE Ireland is a recycling service for electronic devices and batteries. All digital data stored on a device should be destroyed if the device is no longer in use. A reputable shredding service will destroy these devices in the correct manner.

Information on WEEE Recycling https://www.weeeireland.ie/

Simple things to remember when using electronic devices can massively improve on your security. These methods are often overlooked and hackers and criminals will prey on these oversights as the vast majority of electronic breaches can be broken down to human error. The following methods can improve your data security:

  1. Passcode on your mobile and electronic device
  2. Ensure that software used has encryption on data
  3. Use various passcodes on your devices to ensure security
  4. Destroy your devices when no longer needed

For more information on media destruction visit https://www.securityinshredding.com/

For information on device destruction visit https://www.securityinshredding.com/it-media-destruction.php