Charities reported 123 data breaches to the Information Commissioner’s Office between April and June 2019 according to a new report. 31 of these were cyber breaches, 20 phishing incidents, 7 cases of anauthorised access and 1 incident involving malware.
Which sectors are reporting the most data breach incidents?
3,091 data breaches were reported across all sectors to the ICO in the first quarter, and charities account for 4% of this total. Based on the ICO’s report, the business sector reported the most incidents (653), followed by the health sector and lastly education.
What is the most common type of security breach?
The report also detailed the most common types of security breaches. Emailing data to the wrong recipient was the most common non-cyber incident with 17 reports. Then posting or faxing to the wrong recipient and lastly, loss or theft of paper left in an insecure place.
Here are the things your Charity should put in place to avoid a breach
- Promote a culture of GDPR compliance within the charity. Make sure employees are aware of their responsibilities and duties. Provide adequate training to avoid simple mistakes like emailing data to the wrong recipient.
- Hackers are increasingly exploiting vulnerabilities in digital systems. Conduct an IT audit to safeguard your charity’s data from unauthorised access through phishing or malware.
- Hire or outsource the role of a Data Protection Officer. He or she will be responsible for monitoring compliance and act as a point of contact between your charity and the ICO.
Kazient Privacy Experts offer bespoke Data Protection, Privacy and GDPR compliance solutions in a language you understand to UK and international organisations, and has received positive media coverage across Europe. Kazient’s GDPR consultants are fully certified to be your outsourced Data Protection Officer or EU Representative. Get in touch to find out how we can help your business by visiting our website www.kazient.co.uk or calling us on 0330 022 9009.