Kroll

ODPC issues advice after data breach increase

Posted: 25/10/2018

EmmaMartins_Aug18A total of 26 personal data breaches have been reported to the Office of the Data Protection Commissioner (ODPC) in the two months up to 18 October, compared with 32 reported breaches in the previous reporting period, the three months to 18 August. 

The ODPC says the increase is likely to be because organisations are becoming more aware of their legal obligation to report breaches.

Most breaches were low level, requiring no further action. However, the ODPC has many ongoing investigations into breaches and complaints that do require further action. There has also been an increase in hacking-related incidents, particularly hackers gaining control of email accounts.

Guernsey’s Data Protection Commissioner Emma Martins (pictured) commented: "The continued high levels of compliance by local organisations when reporting these incidents is to be welcomed. Taking a proactive approach in this area will help to enhance confidence in the organisations handling our personal data."

The breach reports received suggest that organisations are exposed to the greatest risk of breach when personal data leaves their direct control, either by post or email.

ODPC recommendations

When using postal or email systems for sending personal information:
• Regularly check your email security – update patches and, if you are making any significant changes, think about whether penetration testing is necessary.
• Pause, think and check before you send – remind all staff members who post or email letters/documents containing personal data to slow down and always double-check the recipients are correct and appropriate.
• Avoid complacency – consider the potential implications of the information you are handling falling into the wrong hands and take all reasonable precautions to prevent this from happening.

In addition, when informing the ODPC that your organisation has experienced a breach, beware of the secondary breach. You don’t need to send the specific evidence of the breach, just how it happened, what personal data has been put at risk, how many people’s data are affected, the category of person affected (staff members, customers, suppliers) and the category of personal information affected.

• The Office of the Data Protection Commissioner is working to improve its online breach reporting mechanism and has asked for any comments to be submitted via enquiries@odpc.gg


Add a Comment

  • *
  • *
  • *
  • *
  • Submit

Our Magazines

Issue 1 - Feb/Mar 2009Issue 2 - Apr/May 2009Issue 3 - Jun/Jul 2009Issue 4 - Aug/Sep 2009Issue 5 - Oct/Nov 2009Issue 6 - Dec 2009/Jan 2010Issue 7 - Feb/Mar 2010Issue 8 - Apr/May 2010Issue 9 - Jun/Jul 2010Issue 10 - Aug/Sep 2010Issue 11 - Oct/Nov 2010Issue 12 - Dec 2010/Jan 2011Issue 13 - Feb/Mar 2011Issue 14 - Apr/May 2011Issue 15 - Jun/Jul 2011Issue 16 - Aug/Sep 2011Issue 17 - Oct/Nov 2011Issue 18 - Dec 2011/Jan 2012Issue 19 - Feb/Mar 2012Issue 20 - Apr/May 2012Issue 21 - Jun/Jul 2012Issue 22 - Aug/Sep 2012Issue 23 - Oct/Nov 2012Issue 24 - Dec 2012/Jan 2013Issue 25 - Feb/Mar 2013Issue 26 - Apr/May 2013Issue 27 - Jun/Jul 2013Issue 28 - Aug/Sep 2013Issue 29 - Oct/Nov 2013Issue 30 - Dec 2013/Jan 2014Issue 31 - Mar/Apr 2014Issue 32 - May/June 2014Issue 33 - July/August 2014Issue 34 - September/October 2014Issue 35 - November/December 2014Issue 36 - January/February 2015Issue 37 - March/April 2015Issue 38 - May/June 2015Issue 39 - July/August 2015Issue 40 - September/October 2015Issue 41 - November/December 2015Issue 42 - January/February 2016Issue 43 - March/April 2016Issue 44 - May/June 2016Issue 45 - July/August 2016Issue 46 - September/October 2016Issue 47 - November/December 2016Issue 48 - January/February 2017Issue 49 - March/April 2017Issue 50 - May/June 2017Issue 51 - July/August 2017Issue 52 - September/October 2017Issue 53 - November/December 2017Issue 54 - January/February 2018Issue 55 - March/April 2018Issue 56 - May/June 2018Issue 2018 - City Edition - 2018Issue 57 - July/August 2018Issue 58 - September/October 2018Issue 59 - November/December 2019Issue 60 - January/February 2019Issue 61 - March/April 2019Issue 62 - May/June 2019Issue 63 - July/August 2019Issue 64 - September/October 2019Issue 65 - November 2019 - January 2020Issue 66 - February/March 2020Issue 67 - April/May 2020Issue 68 - June/JulyIssue 69 - August/SeptemberIssue 70 - October/NovemberIssue 71 - December/JanuaryIssue 72 - March/AprilIssue 73 - May/June/JulyIssue 74 - August/September/OctoberIssue 75 - November/December/JanuaryIssue 76 - February/March 2022Issue 77 - April/May 2022Issue 78 - June/July 2022Issue 79 - August/September 2022Issue 80 - October/November 2022Issue 81 - December/January 2022/23Issue 82 - February/March 2023Issue 83 - May/June 2023Issue 84 - July/August 2023Issue 85 - October/November 2023View more

Special Editions

Issue 1 - 2018Issue 2 - 2019Issue 3 - 2020Issue 4 - 2020Issue 5 - 2021Issue 6 - 2021Issue 7 - 2022View more
Kroll

Most Read News

Guernsey stays top for captives ..

29 February 2024

2022 Top Trust Companies ranking ..

04 November 2022

Crestbridge names Europe Director ..

28 February 2024

Carey Olsen/Alter Domus guide Gyrus ..

22 February 2024
Kroll

It's easy to stay current with blglobal.co.uk.

Just sign up for our email updates!

Yes please! No thanks!