Since the launch of the new UK GDPR regulation in May 2018, the Information Commissioner’s Office (ICO) is yet to massively fine any UK businesses to-date.

Despite the media attention around the pre-conception that the UK GDPR could just be yet another revenue collector for the UK government, the ICO have reiterated that this isn’t the case and that as a Government Organisation, they are actually there to try to help companies as well as inform and train with regards to data storage/processing best practice within the workplace.

To date the organisation has received an average of 500 calls per week from businesses and organisations.  ICO Deputy Commissioner for Operations, James Dipple-Johnstone, told the audience during a speech to the CBI Cyber Security: Business Insight Conference held in London, September 2018.  “Around one in five of reported breaches involve cyber incidents, of which nearly half are the result of phishing. Other than that, causes involve malware (10%), misconfiguration (8%) and ransomware (6%) amongst others.”

It seems that businesses are still unclear as to what is expected of them by the ICO – knowing what they are obliged to report in terms of a serious cyber attack and / or what is determined as a lesser crime is still unclear to UK companies. Over-reporting, not completing a report, not reporting an incident within the 72hour deadline or not knowing what type of cyber security threat their business or organisation has endured are just some of the issues that companies are facing under the new UK GDPR law.

Has your business been subject to a data breach or are you looking to propel your business ahead of the situation before the inevitable happens? Here at Crendon Insurance Ltd our UK GDPR data protection advisors are on hand to support your business through the minefield of UK GDPR and data regulation legislation. To find out how we can help to protect your business or organisation, please contact us today or see our UK GDPR insurance page for more details.

Blogs used to write this article: