Monthly Archives: August 2020

Developing A Plan for Data Protection

Data breaches have become so common that they are no longer news. Gartner predicts,  “as more companies look to benefit from data, there will be an inevitable increase in data use and sharing missteps.” However, organizations that have a culture of ethics for data use will be better prepared to avoid such mistakes, and to handle them well if they do occur. Read on to learn how your company can have not just a data protection plan, but a culture that revolves around protecting the personal data of your customers. 

 

Protecting Your Business and Your Customer’s Data

 

In spite of the occurrence of data breaches, your company can be protected. If you haven’t already done so, you might draw up a data-protection plan that will address what to do in case of a breach. Ideally your organization will already have technology in place to prevent data breaches–tools such as updated antivirus and anti-malware definitions and network monitoring, for instance. Hopefully, there is also a culture of ethics around use of customer information, including transparency with customers about what is done to protect their personal data. 

 

Countries and entire regions, such as Australia and Europe, have put legislation into effect to protect customers. Europe’s GDPR mandates a notification within 72 hours of a data breach. Australia’s Consumer Data Right gives its citizens the right to delete information that is no longer needed, as well as stopping data collection at any time While the U.S. has no nationwide law, individual states have their own regulations. For example, California gives their residents certain rights under the California Consumer Privacy Act, such as the right to opt out of having their data sold.  The CCPA also sets forth steep monetary penalties for failing to protect customer information. Businesses are required, among other things, to have a conspicuous link for customers to click in order to opt out of having their personal information used. Regulations may vary, but their intent–the protection of data–is similar. 

 

Using Legislation as a Data Protection Template

 

Even in areas without this legislation yet in place, businesses can develop a robust plan based on such standards. Topics to address in this plan can include what your company will do in the event of a data breach, and whether data will be shared with third-party vendors. One task for companies is to inventory their vendors; smaller vendors might not have rigorous rules for handling data. 

 

To protect your company from the consequences of a data breach is vital. To develop a plan for protecting your customers’ data, or to fine-tune one you already have, contact us today. 

Get Your Business Ready for the Cloud with a Strong Strategy

While many businesses have already adopted cloud computing to a certain extent, others are still new to the technology. Whether your business is using cloud computing already, or is considering a move, it’s never too soon to develop a strong strategy. Read on to learn more about developing a strategy to guide your business in considering cloud computing.

Strategy, Then Implementation

A key feature of a cloud strategy is that it addresses why a company might move some or all of its operations to the cloud. According to a report by Gartner, “a cloud strategy explores and defines the role that cloud computing should play in an organization.” Formulating a strategy is a task of the entire organization, not simply the IT department. Departments such as human resources, legal and finance can provide valuable input, since they will use the computing resources that the cloud can provide.

A company that has already moved some of its data and applications to the cloud can also develop a strategy moving forward. It’s easy to assume that if a business has moved to the cloud, it’s too late to develop a strategy. Quite the contrary, a strategy can help refine a company’s motivation for adopting cloud technology, based on lessons already learned. Strategists can examine how the cloud has benefited the business so far, meeting its needs (conforming to data regulations, for instance). Along with accomplishments, it gives a business  the opportunity to correct any mistakes going forward. Once a strategy has been formulated, then implementation (including choosing a provider and a cloud environment) can begin.

Contingency Plans as Part of Your Cloud Strategy

It may seem odd to consider an exit strategy at the starting point, but developing an exit strategy makes sense. An exit strategy outlines contingency plans, what to do in case of the unexpected. For instance, what if something happens to the data center that your cloud service provider uses, or if you need or want to change providers. An exit strategy entails more than simply ending a service level agreement (SLA); it also affects what happens with your data. Is it portable, as well as secure? Another option is scaling back, instead of exiting entirely. These are issues to consider in developing a strategy.

Before implementing cloud computing, and choosing a provider or cloud environment, consider the overall needs and goals of your business. For assistance in developing a strategy, contact us today.