Friday, 21 July 2017

Is it safe?

We’ve talked about the legal obligations of storing data but what about the safety of the data itself?  How secure are your systems and how prepared are you for a cyber attack?
Businesses are only as good as the data they own and anything that could destroy that data or hold it to ransom, as happened with the WannaCry attack on the NHS and other organisation recently, can have devastating consequences.

And criminals have figured out that small and medium-sized enterprises, which make up 98 per cent of the firms in the UK, are prime targets in this regard.  New figures suggest that cyber attacks on UK SMEs have doubled in the second quarter of the year, with one in three small business owners believing that an attack is a matter of ‘when, not if’.  However, even though many see this as a foregone conclusion, they are still not doing enough to prevent it and often don’t have the resources or knowledge to defend themselves against an attack.

It’s very shortsighted not to be prepared, as attacks are costly in so many ways; last year cyber attacks and breaches cost UK businesses an average of £1,570 per attack.  Not only that, but an attack can get in the way of productivity, harm the business’s reputation, cause it to lose its competitive edge or even close it down.

The trouble is, we’re all connected

With the preferred targets being connected Internet of Things (IoT) devices, most small businesses are woefully unprepared for attacks such as fraudulent emails, phishing or malware such as Ransomware. Moreover, most are not investing enough in technology that will adequately protect their business or are relying on staff to be vigilant, often when these same workers have had no training or formal processes to follow in the event of an attack.
However, with UK businesses being targeted more than 700 times each on a daily basis, it’s vital that business owners get up to speed and protect their files.

Things you can do to protect against cyber attacks 

In the same way that there’s no point in a castle defending the gates when there’s a hole in the wall at the back, businesses need to keep their defences up-to-date and prioritise security over convenience. But there are fairly simple things that can be done to keep data safe:
  • Use a good firewall between your computers and the Internet
  • Regularly back-up files and store copies in a secure place, ideally away from the premises
  • Use strong passwords and update software whenever necessary
  • Make sure you have a staff policy in place
  • Encrypt sensitive data, such as payroll details 
  • If you use Windows, update software against ransomware 

After the deluge

If business owners and directors have put protection in place, hopefully they won’t fall prey to cyber criminals, but everyone should have a ‘plan B’ in place in case the worst actually happens.  Sadly, however, most small businesses haven’t, if recent reports are anything to go by.
According to the latest research, almost 75 per cent of small firms haven’t put any money aside to deal with the aftermath of a cyber attack and a staggering 43 per cent said they would “just react” if or when an attack happened.  This is madness, as apart from the disruption to day-to-day business an attack could cause, there are any number of other factors to consider, from irrecoverable loss of data, reputational damage and loss of customer and stakeholder trust.

Show your strength

Rather like having a burglar alarm on the wall when your neighbour doesn’t, the hope is that if a criminal thinks there might be easier targets, he’ll leave you alone.  And there might be some truth in that.  So, businesses should make it less attractive for intruders to try and scale the walls; one way of doing this is by obtaining a Cyber Essentials badge to advertise the fact that you’re following government-endorsed standards for cyber security. 
One of the best ways you can protect your data is to have us look after it for you.  We offer comprehensive IT services  including cyber security, vulnerability and compliance assessments and managed firewall and wif-fi services.

Tuesday, 30 May 2017

Storing personal data under GDPR

There is now less than a year to go before the UK’s Data Protection Act (DPA) is replaced by the EU’s General Data Protection Regulation (GDPR), which will have huge implications for any business that stores personal data online.

Monday, 24 April 2017

Auto-enrolment and the workforce

Although the groundwork for auto-enrolment was laid in the 2008 Pensions Act, it wasn’t officially launched until October 2012 and not all employers have started the process yet, although more than 7.5 million people have already been enrolled.  The government’s plan is to turn this figure into 10 million people by 2018 so that workers have something to rely on in retirement apart from the state pension.  In fact, according to the Department for Work & Pensions (DWP), auto-enrolment will lead to £17bn more a year in workplace pension savings by the end of the 2019/20 tax year.

Monday, 27 March 2017

Not Making Tax Digital

Back in January, we urged readers to prepare for the implementation of Making Tax Digital (MTD), the Government’s attempt to digitise tax returns for all business owners and the self-employed.  This was due to come into effect for large businesses from next April and for small businesses the year after but now the plans have been shelved.

Tuesday, 28 February 2017

Mind the Gender Pay Gap

From April 2017, private and voluntary sector organisations in England, Wales and Scotland with 250 or more employees will have to publish the differences between what they pay men and women in salaries and bonuses.  Failure to comply with the new legislation will constitute an “unlawful act”, meaning that the Equality and Human Rights Commission could take enforcement action. There are no published penalties for non-compliance as yet; however, this will be reviewed if levels of compliance are “not satisfactory”.

Monday, 13 February 2017

Are you prepared for Making Tax Digital?

Although there has been widespread criticism of the Government’s Making Tax Digital (MTD) proposals, business and political groups agree that the only way forward for taxation is for it to go online, so it looks as though, whether next year or by 2020, businesses will have to get to grips with the changes.

Wednesday, 21 December 2016

How will your business be affected by the apprenticeship levy?

When it was first announced, the apprenticeship levy came under heavy fire from organisations representing British businesses. There were plenty of arguments against its introduction. The CBI warned that the levy would impose huge costs on employers with no improvement in training given. After a period of consultation and review, the scheme has been revised and agreed.