Below is an extract from an article that was published on http://www.smallbusiness.co.uk
Half of UK small businesses still believe that the loss or theft of data from their organisation would have no impact on their company.
The survey of 1,000 UK businesses by Shred-it finds that more than two thirds of small and medium-sized enterprises (68 per cent) either never train their employees on information security procedures< and protocols (30 per cent), or do so only on an ad hoc basis (38 per cent).
This news comes despite last year’s enhancement of the powers of the Information Commissioner’s Office to fine organisations up to £500,000 for serious breaches of the Data Protection Act.
Just 4 per cent of companies report actively changing their information management procedures as a consequence of the changes, while 58 per cent of businesses confessed that they were not even aware of the enhanced powers.
PragmatIT has extensive experience in this field having worked in the legal and financial services industries for over 15 years. We can help in building a Information Security Management System designed around your business. We can identify all your information stores and perform a risk assessment to separate the real threats from the perceived threats. Action plans can be then put in place to reduce the impact or likelihood of the risk occurring.
Robert Guice, EMEA executive vice president of Shred-it says, ‘Ignorance is no defence in the eyes of the law and UK businesses need to wake up quickly to the fact that failures to store and dispose of confidential information in a secure manner could have far-reaching and potentially financially damaging impacts upon their operations.
‘As a company owner or manager, understanding your legal obligations in view of the Data Protection Act, and developing policies and procedures to comply with them in a consistent and reliable manner is absolutely essential.’
Chief executive of the Forum of Private Business Phil Orford adds, ‘It’s time companies got wise to the seriousness of data theft and the importance of protecting their information. Quite apart from the implications for the commercial viability of a business, failing to secure data properly could lead to a potentially huge fine.
‘It might be tempting to push issues like this under the carpet but that would be a grave mistake – and there is support, advice and guidance available to make sure you are fully secure and protected. Use it.’