Businesses wishing to avoid high-profile data recovery scandals must place the security of confidential information among their highest priorities.
This is the view of partner at commercial law firm McClure Naismith Scott Kerr, who told the Scotsman that ensuring staff only have access to data they require for their day-to-day functions is essential.
He highlighted a recent case where an employee of one of the UK’s largest supermarkets disclosed the personal information of more than 100,000 of the chain’s customers after sending the information to a national newspaper and also publishing it online.
While this may be an extreme case of a data breach, the lessons are evident for all businesses to learn – namely, that access to and the restriction of the transfer of sensitive data should also be seen as of paramount importance by companies.
Mr Kerr went on to note the impact of a large-scale data breach can be far-reaching for businesses, including a significant impact on reputation among consumers, as well as the potential for sanctions and fines from the UK’s data protection bodies, including the Information Commissioner’s Office (ICO).
The ICO holds the power to inflict fines of up to £500,000 on companies that neglect their responsibilities to adequately secure sensitive data, and in many cases a hefty fine such as this could “prove fatal” for the continuing operation of many businesses.
Recognising their obligations under the Data Protection Act are therefore crucial for all firms and this means putting in place measures to limit access to sensitive information.
By controlling access to files and utilising the latest data security protocols, companies can reduce the risk of suffering such a high-profile breach, although with the growing prominence of big data and the rising amount of information held by many firms this is an area businesses will have to increasingly focus on in the years ahead.
It is wise to choose a data recovery company who has a track record in recovering from the type of data loss you have experienced.