Charities have managed to escape a fine from the ICO for publicised Data Breaches to date as the nature of those breaches has been deemed to not cause substantial harm to the individuals affected. Breaches which have reached the glare of the media have luckily not included lost data such as sensitive payment card details. People tend to get a bit prickly when such information is leaked from a trusted source. Given so many charity donations are now digital transactions, and human error is the main cause of data loss, user awareness of information security policies and guidelines must surely be a priority for IT Directors and HR Managers in charitable organisations? The reputational risk a public Data Breach of this nature would entail would surely have much further reaching consequences than an ICO fine?
Charities, like other organisations who hold sensitive customer information, have a variety of high and low tech methods of increasing user awareness at their disposal. A Blended User Awareness Strategy is the best option to engage learners and sustain knowledge. The ICO have a great resource section on their website specifically tailored to help Charities understand their legal obligations under The Data Protection Act when handling information and marketing to the general public. You will find details of their excellent TH!NK PRIVACY campaign which advises people to ‘press the mental pause button’ when handling personal data in this section.
Metacompliance have produced a number of videos and posters designed to help your users learn best practice information security practices and policies. Our customers have taken a pro-active approach to their Data Protection responsibilities. They use these free resources alongside our User Awareness and Policy Management Software to create and sustain a Best Practice Information security posture and culture in their charitable organisation.
We are delighted to be sponsoring the CCitDG Conference 6th & 7th October. If you are attending please call to our stand for a chat where we will be giving away free glossy A3 information security posters and pointing you in the direction of other fantastic free resources which are out there for you to use.
( and If you happen to be a judge in The Lion’s Den event at the CCitDG Conference….please be gentle on Robert Pickett and I!)